Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/662070-3677-4712-a4cf-a2b7b0396bd6/1/XuDOfMCGWZTvrK4gLZwwUgFwCu0.roa
File: XuDOfMCGWZTvrK4gLZwwUgFwCu0.roa (raw, json)
Hash identifier: CltjhGwS/H+FoIjqhJT75LOGvBCYj3BimIxNNMzuYc8=
Subject key identifier: 5E:E0:CE:7C:C0:86:59:94:EF:AC:AE:20:2D:9C:30:52:01:70:0A:ED
Certificate issuer: /CN=147341d30575144be32cd7c8e3ebd4c6329a3141
Certificate serial: 040DC142
Authority key identifier: 14:73:41:D3:05:75:14:4B:E3:2C:D7:C8:E3:EB:D4:C6:32:9A:31:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHNB0wV1FEvjLNfI4-vUxjKaMUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/662070-3677-4712-a4cf-a2b7b0396bd6/1/XuDOfMCGWZTvrK4gLZwwUgFwCu0.roa
Signing time: Sat 01 Jan 2022 08:05:12 +0000
ROA not before: Sat 01 Jan 2022 08:05:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203434
IP address blocks: 185.134.164.0/22 maxlen: 24
2a00:b0a0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68010306 (0x40dc142)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=147341d30575144be32cd7c8e3ebd4c6329a3141
Validity
Not Before: Jan 1 08:05:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ee0ce7cc0865994efacae202d9c305201700aed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:09:33:d3:4a:e4:23:c3:fb:91:20:d2:7c:41:
e2:07:47:01:40:ad:84:aa:f4:60:74:cf:71:35:7f:
71:70:ba:21:be:3f:58:da:bf:fc:8c:01:61:5f:31:
21:48:e3:20:d6:89:b0:89:4c:07:56:a2:06:b8:68:
c9:4b:59:58:be:c6:fc:93:c4:2d:45:49:b0:3c:3b:
d0:e3:31:30:46:9d:5f:96:e2:70:e9:90:ae:4b:2d:
72:7e:e4:0b:6e:9f:d9:a2:30:07:05:af:4e:b4:cd:
82:50:d9:50:a4:fb:a3:99:c0:12:91:90:ee:40:6d:
fb:c4:50:48:a7:26:7f:55:b0:d5:2a:2d:13:05:2b:
35:ea:86:1d:5b:6c:bf:a7:25:2c:76:da:58:b7:53:
94:57:04:c1:19:5b:7a:8a:37:53:04:82:f4:48:90:
c3:98:e8:35:ef:e8:82:a1:03:d1:c2:bd:ea:ea:47:
a1:9d:32:f4:b8:8f:2b:e1:e6:08:c8:e1:48:ab:a1:
a4:20:b1:3e:15:f6:f7:7c:1d:40:49:80:12:45:af:
e1:76:7c:16:1c:f6:ec:0f:dd:c5:7b:a2:fb:69:46:
71:14:34:80:bd:b7:7c:7c:83:69:d3:08:97:a4:e5:
75:d7:49:1f:67:74:cf:fa:67:96:e3:e6:ec:9f:ba:
f8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:E0:CE:7C:C0:86:59:94:EF:AC:AE:20:2D:9C:30:52:01:70:0A:ED
X509v3 Authority Key Identifier:
keyid:14:73:41:D3:05:75:14:4B:E3:2C:D7:C8:E3:EB:D4:C6:32:9A:31:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHNB0wV1FEvjLNfI4-vUxjKaMUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/662070-3677-4712-a4cf-a2b7b0396bd6/1/XuDOfMCGWZTvrK4gLZwwUgFwCu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/662070-3677-4712-a4cf-a2b7b0396bd6/1/FHNB0wV1FEvjLNfI4-vUxjKaMUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.164.0/22
IPv6:
2a00:b0a0::/29
Signature Algorithm: sha256WithRSAEncryption
09:58:4d:4a:de:d3:e5:43:f2:74:0a:1e:a0:bd:58:63:7c:71:
e2:b7:5e:da:d9:a0:aa:39:06:d2:d6:d7:5b:87:00:be:8e:93:
b1:8f:d7:55:2b:fb:0b:d4:d1:d0:1b:4e:61:68:b0:83:ae:74:
37:40:07:51:14:ba:ae:cf:27:ee:06:ea:bd:2f:db:c8:ec:fb:
c1:91:46:99:d9:fb:6f:55:95:18:bf:65:3e:70:83:b4:07:a8:
36:3a:dd:f3:96:36:bd:f8:8a:a8:8f:ff:7d:9d:7b:7c:c2:15:
a2:78:75:cf:8c:6e:91:1e:f2:66:45:c0:bd:95:72:a4:d0:59:
ca:23:c3:50:84:bc:e1:b9:60:37:3e:8b:69:db:34:d0:7e:02:
d5:7b:5d:b8:3c:79:3b:3b:b7:98:43:22:b3:b8:fa:aa:52:01:
0b:9e:8a:fd:94:83:da:dc:b5:26:15:00:5a:71:07:4b:24:59:
93:f6:aa:0d:b7:e2:3d:21:78:71:b7:62:b4:02:71:66:ed:8b:
f9:44:16:dd:d0:0e:b5:7d:ba:0d:77:ee:55:5d:c2:a6:64:4f:
e9:e1:6b:1b:fa:b6:3c:ac:79:f4:b4:00:0f:a5:09:08:53:a9:
02:82:92:9c:4e:00:a8:75:c8:7b:0f:19:1b:14:34:91:eb:0c:
38:03:4c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:03 2023 by rpki-client on console-fra.rpki-client.org