Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/9ca4PA6K1HXE-bOudgUxxx9OtQ4.roa
File: 9ca4PA6K1HXE-bOudgUxxx9OtQ4.roa (raw, json)
Hash identifier: GF84Xo920oQzb1cVhn6HueFWBVSQhvrnOAeoL6QBR6c=
Subject key identifier: F5:C6:B8:3C:0E:8A:D4:75:C4:F9:B3:AE:76:05:31:C7:1F:4E:B5:0E
Certificate issuer: /CN=56a022deb0928f5d1a0a5fb00e96cad4c7d911d8
Certificate serial: 126AF22D
Authority key identifier: 56:A0:22:DE:B0:92:8F:5D:1A:0A:5F:B0:0E:96:CA:D4:C7:D9:11:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VqAi3rCSj10aCl-wDpbK1MfZEdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/9ca4PA6K1HXE-bOudgUxxx9OtQ4.roa
Signing time: Sat 01 Jan 2022 02:58:34 +0000
ROA not before: Sat 01 Jan 2022 02:58:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48374
IP address blocks: 185.141.144.0/22 maxlen: 22
2a07:2500::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 308998701 (0x126af22d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56a022deb0928f5d1a0a5fb00e96cad4c7d911d8
Validity
Not Before: Jan 1 02:58:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5c6b83c0e8ad475c4f9b3ae760531c71f4eb50e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:39:0c:33:da:3c:30:20:92:1b:52:ff:3f:2d:
d1:95:ea:14:d3:b7:1d:3e:fb:47:f0:18:06:54:83:
55:46:16:07:9c:6f:24:a9:d2:6b:81:5e:ee:68:7d:
7e:31:b4:b8:db:67:56:3f:f1:ce:21:b5:35:c9:33:
11:0f:08:b3:1c:26:d4:d1:04:1d:bf:e4:75:7b:b0:
e2:94:6d:11:36:f8:02:0e:fb:1c:5d:5f:ba:b2:18:
37:c4:14:e6:fa:98:fd:0c:c9:f1:70:f2:68:2b:d9:
25:e5:fa:47:08:a3:f6:36:67:aa:be:36:a5:96:ef:
88:90:9b:8a:d3:f2:3a:8d:f5:ab:68:10:cd:cb:53:
62:f7:5b:9f:8c:42:ec:3b:8d:56:3d:5d:ef:18:72:
c9:76:00:e4:ad:23:b7:6f:39:f8:bd:26:d7:e8:bf:
57:db:a2:b7:a0:9a:90:fd:2d:2a:76:ad:1d:b2:f0:
2c:1d:73:2f:e4:60:38:5a:19:5f:60:d6:5b:1c:34:
69:1c:80:b1:ce:f9:96:28:c7:40:c6:cf:87:47:94:
80:0e:58:e3:f4:02:2f:10:82:01:b6:b5:4c:0f:89:
68:a2:d0:2c:fa:c0:0c:75:12:be:4c:34:5d:33:e1:
01:2e:7e:f5:f6:9a:1f:01:5d:a9:18:fe:bc:9b:24:
bd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:C6:B8:3C:0E:8A:D4:75:C4:F9:B3:AE:76:05:31:C7:1F:4E:B5:0E
X509v3 Authority Key Identifier:
keyid:56:A0:22:DE:B0:92:8F:5D:1A:0A:5F:B0:0E:96:CA:D4:C7:D9:11:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VqAi3rCSj10aCl-wDpbK1MfZEdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/9ca4PA6K1HXE-bOudgUxxx9OtQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/VqAi3rCSj10aCl-wDpbK1MfZEdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.144.0/22
IPv6:
2a07:2500::/29
Signature Algorithm: sha256WithRSAEncryption
2b:6a:55:ee:5e:3b:a1:f6:76:eb:3f:62:d6:3c:8b:ae:c0:65:
cd:2a:c6:17:a5:f6:cf:db:2c:55:34:ac:7e:db:73:a0:7c:05:
57:8c:dc:54:5a:2d:6b:ad:a5:a5:9e:a9:13:25:db:1e:dc:9c:
c7:3d:bc:a3:02:a2:92:e7:a0:31:60:e1:a1:fa:d8:70:c0:7d:
53:88:80:55:ea:f2:ac:3c:56:60:51:29:5d:2b:7e:6c:85:fe:
f1:d0:28:47:92:56:d7:2b:6e:9b:15:28:2c:40:ce:87:9f:77:
0b:84:42:02:6b:65:04:3d:62:e3:01:fe:3d:f5:57:88:e6:0a:
d6:ef:d9:52:4f:82:70:51:78:58:b3:e9:2a:d8:d8:e3:e2:62:
3d:5a:7d:f5:bb:7a:d2:a0:1e:06:56:21:e2:f4:2f:a0:79:f6:
de:39:8f:4c:83:39:a1:b6:bc:ee:26:bc:34:db:ed:f8:8e:4d:
60:ec:ae:94:8c:15:da:db:51:07:58:e0:ac:ee:ce:9b:e7:ef:
b5:d3:02:a9:f4:5f:a6:b2:74:c3:2a:18:49:89:f6:75:c4:66:
4a:1c:a6:97:9b:49:48:73:47:09:bc:b5:d7:f2:cb:22:c0:e7:
58:81:c2:74:49:d2:8f:d8:69:0e:d6:d4:9e:ea:e2:de:2b:a9:
8c:a1:23:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:30 2024 by rpki-client on console-ams.rpki-client.org