Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/51d999-df6c-47e8-8c35-5a60131004e8/1/rXu7ftXeD4c80ZQNsdwptZ-gk8I.roa
File: rXu7ftXeD4c80ZQNsdwptZ-gk8I.roa (raw, json)
Hash identifier: LTV40pqnKwpBGO4iOAxUORlxPtkUuYJmiMspT6lPyYE=
Subject key identifier: AD:7B:BB:7E:D5:DE:0F:87:3C:D1:94:0D:B1:DC:29:B5:9F:A0:93:C2
Certificate issuer: /CN=158962bc5da2712f208fc8b15ebdc246af4cbecf
Certificate serial: 1404867E
Authority key identifier: 15:89:62:BC:5D:A2:71:2F:20:8F:C8:B1:5E:BD:C2:46:AF:4C:BE:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FYlivF2icS8gj8ixXr3CRq9Mvs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/51d999-df6c-47e8-8c35-5a60131004e8/1/rXu7ftXeD4c80ZQNsdwptZ-gk8I.roa
Signing time: Sat 01 Jan 2022 01:02:58 +0000
ROA not before: Sat 01 Jan 2022 01:02:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203969
IP address blocks: 185.110.152.0/22 maxlen: 22
185.110.154.0/24 maxlen: 24
185.110.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335840894 (0x1404867e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=158962bc5da2712f208fc8b15ebdc246af4cbecf
Validity
Not Before: Jan 1 01:02:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad7bbb7ed5de0f873cd1940db1dc29b59fa093c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2e:c0:d0:47:99:d8:da:54:6e:0f:08:76:ed:
67:fd:cc:e1:9c:f3:90:57:7e:1a:b9:9e:7a:78:f2:
b5:66:48:af:64:08:f2:e6:fb:23:6e:84:f5:bc:2c:
7b:24:b8:5c:eb:c0:48:b3:3e:f2:a0:0e:de:4d:ab:
49:5e:a3:71:a0:a3:d0:8b:e7:07:c8:cb:c6:3e:a2:
eb:0f:64:6d:09:a8:43:47:16:0a:bc:f9:92:b4:0d:
db:99:1b:7f:7c:07:c9:66:d9:19:72:54:49:b0:59:
eb:07:78:b7:eb:df:e7:27:8a:ad:98:83:0b:f3:cf:
76:53:8e:51:1a:b9:5e:7c:38:23:4f:f9:12:33:03:
08:fe:92:41:70:e0:28:bb:bb:bd:49:38:fb:b7:35:
8f:c6:c4:20:81:ec:a7:32:3b:5c:25:80:62:a7:5b:
e7:c2:ce:93:83:70:e3:68:86:20:14:8f:b2:4b:cd:
1d:4f:7e:44:8a:66:66:b2:19:be:79:0b:86:a2:5b:
ed:99:a1:3c:4f:66:b2:07:cd:09:90:1c:0f:bc:d9:
8b:bb:2d:28:a7:aa:00:f8:72:d3:38:27:68:46:09:
40:d9:0b:60:aa:75:88:ef:d5:00:a0:56:90:dc:42:
9b:2b:ba:45:8a:64:3d:64:d2:f9:3e:8e:cc:5d:72:
28:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:7B:BB:7E:D5:DE:0F:87:3C:D1:94:0D:B1:DC:29:B5:9F:A0:93:C2
X509v3 Authority Key Identifier:
keyid:15:89:62:BC:5D:A2:71:2F:20:8F:C8:B1:5E:BD:C2:46:AF:4C:BE:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FYlivF2icS8gj8ixXr3CRq9Mvs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/51d999-df6c-47e8-8c35-5a60131004e8/1/rXu7ftXeD4c80ZQNsdwptZ-gk8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/51d999-df6c-47e8-8c35-5a60131004e8/1/FYlivF2icS8gj8ixXr3CRq9Mvs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.152.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:c0:88:d8:18:18:2e:e2:89:e3:7f:57:61:81:1f:15:40:6d:
d9:18:a0:57:25:6c:e0:7c:a3:3e:d7:b8:4a:04:3a:d0:79:8d:
22:49:cd:e9:d0:a9:76:59:72:77:92:9a:96:ed:97:60:28:eb:
32:16:f1:36:29:e8:a6:dd:b2:60:93:9b:86:79:05:65:10:c6:
08:0c:bf:48:33:6c:24:77:e6:05:d5:68:0d:28:97:94:00:0f:
d4:b3:e5:f9:91:8d:ab:da:6e:24:6a:af:1a:43:ed:05:b3:d7:
37:23:e8:81:33:5f:e6:65:47:78:6f:b9:d5:cb:3c:63:fe:3c:
19:d5:fd:ce:d2:d9:59:d4:b1:64:8d:a8:cd:2b:96:d8:c7:fe:
c3:d0:da:28:58:44:36:dc:47:30:82:6d:54:89:1f:98:73:99:
e1:bf:fa:f1:dc:34:c6:7a:9a:b2:6a:5b:be:f8:95:ac:b0:f8:
b1:58:6d:b9:44:1e:90:31:81:ee:2c:c5:d0:b5:c8:63:68:5d:
a3:47:5c:80:42:b3:4b:af:cf:a9:63:00:6e:c7:e3:1a:ca:91:
d7:57:2d:1e:4a:b3:7d:f4:f7:0f:3e:ba:33:d7:1a:2a:d5:6c:
56:a3:12:07:4b:28:f5:f3:d0:0b:3e:15:bc:db:54:9c:5a:91:
79:c1:43:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:51 2023 by rpki-client on console-fra.rpki-client.org