Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/pow47Tgs9M-ifOmBTRYMcqDLE-o.roa
File: pow47Tgs9M-ifOmBTRYMcqDLE-o.roa (raw, json)
Hash identifier: D2TgJGXSMDV+R1hDDpALUV0whitNtdyBSGbpc3IC5TM=
Subject key identifier: A6:8C:38:ED:38:2C:F4:CF:A2:7C:E9:81:4D:16:0C:72:A0:CB:13:EA
Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Certificate serial: 37F38497
Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/pow47Tgs9M-ifOmBTRYMcqDLE-o.roa
Signing time: Sat 01 Jan 2022 06:01:03 +0000
ROA not before: Sat 01 Jan 2022 06:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206270
IP address blocks: 185.188.100.0/22 maxlen: 32
2a0a:10c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938706071 (0x37f38497)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Validity
Not Before: Jan 1 06:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a68c38ed382cf4cfa27ce9814d160c72a0cb13ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:07:17:31:bb:b2:4a:0b:90:df:5c:17:3e:9a:
2f:a7:96:d5:49:f1:b0:2d:a3:86:65:53:bb:29:77:
6e:07:69:61:45:bc:7f:dd:a9:8f:fa:f1:a4:6c:22:
50:87:9d:09:45:92:1a:36:49:38:fa:7c:bd:2e:28:
cc:88:8c:cf:3e:6d:c0:cd:ab:90:0e:fe:98:1c:d6:
1c:6a:19:6b:11:e7:0d:9c:1c:2a:4e:4d:98:23:93:
1f:b1:6e:4c:9e:61:c0:19:8c:af:86:62:b1:19:5a:
97:0c:f3:06:f8:df:13:a8:b9:9f:be:bd:b7:88:09:
7e:08:19:8c:d0:e5:3c:49:a6:ae:07:69:7b:aa:0d:
cf:8c:e2:e6:1b:3a:be:83:ed:bf:a7:55:79:64:ef:
4d:19:96:a9:39:a4:c4:f5:f8:c4:57:dc:35:90:9f:
7d:4e:a7:ba:92:4a:8d:67:aa:73:e7:a2:b2:44:58:
f4:d7:f7:2a:89:56:27:0e:20:71:4a:c4:1d:1d:2c:
b1:10:94:b6:94:8e:58:e9:1d:20:65:9c:3f:b7:50:
5e:f7:45:55:11:da:5b:89:f7:f9:a0:b4:ce:de:7d:
95:5d:94:a0:84:02:42:14:6a:64:90:59:82:05:f5:
a6:bf:4c:e0:39:df:78:e1:68:db:ac:25:18:4d:97:
6c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:8C:38:ED:38:2C:F4:CF:A2:7C:E9:81:4D:16:0C:72:A0:CB:13:EA
X509v3 Authority Key Identifier:
keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/pow47Tgs9M-ifOmBTRYMcqDLE-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.100.0/22
IPv6:
2a0a:10c0::/29
Signature Algorithm: sha256WithRSAEncryption
43:01:92:5c:83:2b:4e:4a:03:5a:cf:0d:8b:c8:29:1d:f1:7e:
33:03:c6:c4:51:b8:37:5a:5e:35:b8:80:f0:1a:42:6f:83:95:
fd:6b:6d:fb:b1:e4:52:b3:79:c4:8a:d2:5d:18:2d:2c:d2:00:
fc:6a:c6:c5:42:6d:8d:28:87:a0:6b:a3:4d:f7:58:6e:79:f0:
c3:66:a0:93:b9:a8:a7:38:db:a0:bd:32:a5:8c:39:c3:50:a5:
95:14:e9:58:de:1e:9a:77:c4:de:5e:43:3f:b3:47:be:74:0d:
44:8f:98:4a:30:96:9a:83:6c:be:8c:d0:db:23:25:63:ce:d6:
1a:80:50:02:69:ea:03:cd:9c:2e:e1:30:86:85:ac:90:92:c1:
15:ea:67:11:c8:fd:d2:47:50:67:06:8a:a5:a8:96:6b:3e:f0:
80:bd:a9:e2:a5:d9:1d:59:4b:d0:8c:d3:d6:5d:0b:ea:06:e0:
eb:65:f6:a2:fa:0a:10:f6:25:e0:8a:b7:dd:45:24:8a:96:01:
6c:a2:4e:c1:23:dd:fa:b2:23:0d:a7:9a:74:93:f8:30:ac:14:
8e:51:0c:fc:47:24:07:14:39:cc:47:34:8a:69:cc:2e:42:da:
31:ec:97:aa:4b:e1:c5:47:d5:c4:00:22:d8:45:28:4a:bc:ee:
82:50:9d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:32 2024 by rpki-client on console-ams.rpki-client.org