Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/xTq-iAhj_nfui5WkNNZUD4Gww1k.roa
File: xTq-iAhj_nfui5WkNNZUD4Gww1k.roa (raw, json)
Hash identifier: UNGsC5sF+DXZltGuY7ZMkF5mM6jVpcI0RyNSGTwdUIs=
Subject key identifier: C5:3A:BE:88:08:63:FE:77:EE:8B:95:A4:34:D6:54:0F:81:B0:C3:59
Certificate issuer: /CN=ef1f01881b73c8e9b5d92239229a6e512eca4e7c
Certificate serial: 0DAD4369
Authority key identifier: EF:1F:01:88:1B:73:C8:E9:B5:D9:22:39:22:9A:6E:51:2E:CA:4E:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7x8BiBtzyOm12SI5IppuUS7KTnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/xTq-iAhj_nfui5WkNNZUD4Gww1k.roa
Signing time: Sat 01 Jan 2022 15:05:16 +0000
ROA not before: Sat 01 Jan 2022 15:05:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42037
IP address blocks: 185.155.182.0/24 maxlen: 24
2a00:8c40:238::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229458793 (0xdad4369)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1f01881b73c8e9b5d92239229a6e512eca4e7c
Validity
Not Before: Jan 1 15:05:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c53abe880863fe77ee8b95a434d6540f81b0c359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e1:77:0d:fb:5e:06:eb:45:de:e5:38:b2:ea:
0c:89:bb:bb:c9:3c:49:e3:42:6f:46:14:a0:c0:e3:
5d:a3:ae:ea:f5:93:9b:4f:86:cd:15:d9:5a:4a:71:
68:ab:b3:f8:bd:f6:bb:22:b2:2a:57:d3:dc:84:fc:
60:11:d9:3c:30:65:e3:11:92:7a:88:92:9c:7f:51:
e7:e1:6c:08:33:89:2e:17:2b:80:d9:2a:1b:04:47:
70:cf:d4:69:c8:e2:98:65:a1:59:cf:3f:51:60:98:
70:14:dd:16:14:da:4b:42:7c:36:36:4e:bf:ee:0b:
94:5a:ad:c0:7a:c2:f3:64:9d:f0:f5:f8:c7:a8:e6:
cb:1b:25:3d:7d:bf:75:e5:6a:63:9b:3e:27:f3:2a:
1c:17:0f:bc:7a:e5:7f:14:66:df:00:0a:3f:72:d8:
a4:2b:9c:fa:24:dd:81:20:80:e6:ae:1e:d1:7e:fb:
86:94:0d:d1:37:38:58:bc:37:fd:23:03:79:8d:a7:
41:01:c8:c5:3d:8e:10:88:52:1a:2e:ee:e8:dc:0b:
f4:11:f6:12:d5:d0:0b:f4:37:95:6a:f1:07:ca:9c:
f9:ee:ed:36:8d:8e:bb:ba:e8:06:e9:20:b7:97:29:
b3:50:4d:ff:bc:f0:3b:b6:e6:5b:3e:9f:a7:c6:5f:
30:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:3A:BE:88:08:63:FE:77:EE:8B:95:A4:34:D6:54:0F:81:B0:C3:59
X509v3 Authority Key Identifier:
keyid:EF:1F:01:88:1B:73:C8:E9:B5:D9:22:39:22:9A:6E:51:2E:CA:4E:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7x8BiBtzyOm12SI5IppuUS7KTnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/xTq-iAhj_nfui5WkNNZUD4Gww1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/7x8BiBtzyOm12SI5IppuUS7KTnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.182.0/24
IPv6:
2a00:8c40:238::/48
Signature Algorithm: sha256WithRSAEncryption
92:b5:c4:d3:03:af:53:e7:de:94:ab:d7:d5:67:c4:a4:46:ad:
45:62:a0:c0:fc:be:48:77:4a:1e:e4:7f:19:af:83:fd:40:6c:
b0:c2:05:72:f6:e0:9d:fc:d7:01:04:eb:b0:59:dc:15:86:78:
95:20:a1:14:9e:4f:12:14:46:a0:05:b6:b0:a7:49:ba:0b:da:
72:f9:0b:9b:31:0e:4f:ac:6d:8f:74:39:76:4b:6b:e2:b4:8e:
da:77:f9:34:0c:e6:28:83:cd:8a:97:f1:03:a5:10:3e:7b:b4:
d9:63:83:2e:20:ff:bd:88:0c:47:79:cd:8a:70:a9:ce:41:ee:
82:57:c7:7b:61:05:e3:9c:8b:9c:92:c8:bd:7d:94:db:ce:e4:
91:05:64:16:61:44:e8:7e:4f:22:8b:82:b9:d2:a9:3b:54:eb:
06:32:85:50:48:d8:dd:a9:67:c1:4f:32:1b:7a:37:ae:37:26:
ca:4e:7e:33:7b:55:fb:08:45:ea:f4:a2:2c:b3:ec:a3:21:f1:
86:a5:9a:83:ef:7e:47:4e:80:93:cc:a4:dd:47:68:fd:b7:de:
00:ec:1e:57:b4:e3:6b:95:7d:df:a3:e3:ef:56:ca:d8:01:86:
ed:cd:9b:e6:3f:64:14:b2:37:c3:82:75:d4:c5:86:59:f9:9a:
3d:6e:3a:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:45 2024 by rpki-client on console-fra.rpki-client.org