Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/nPoLp6ABc1FaGpwth2is28FRAks.roa
File: nPoLp6ABc1FaGpwth2is28FRAks.roa (raw, json)
Hash identifier: tm6Eroac2V2HHEFQTxId5s18rDvtWd4RhoGO43Zls/o=
Subject key identifier: 9C:FA:0B:A7:A0:01:73:51:5A:1A:9C:2D:87:68:AC:DB:C1:51:02:4B
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 1A28420C
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/nPoLp6ABc1FaGpwth2is28FRAks.roa
Signing time: Sat 01 Jan 2022 12:55:13 +0000
ROA not before: Sat 01 Jan 2022 12:55:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 185.203.148.0/22 maxlen: 22
185.162.72.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 438845964 (0x1a28420c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jan 1 12:55:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9cfa0ba7a00173515a1a9c2d8768acdbc151024b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:be:e7:5e:24:45:7d:ac:f7:d4:c9:61:e3:8d:
b6:ae:6e:32:d4:45:c1:4b:39:a9:90:80:3c:4f:32:
a8:49:78:99:1c:8f:a2:24:db:5e:be:fa:d9:0c:70:
38:68:50:f1:c8:a5:79:a3:d1:b0:89:9c:6a:f5:66:
15:ef:0f:5d:72:70:9d:a8:35:f5:5c:0b:8d:39:9c:
b1:9c:17:7c:60:1a:fa:f2:6a:43:08:04:b8:83:87:
cf:c7:7f:b5:cd:2b:3d:c8:f3:43:bc:cc:f0:8a:0f:
df:c3:ac:27:da:8a:f9:c1:21:47:59:39:b2:e0:f1:
a3:3c:02:c1:82:16:ba:be:56:a1:4d:1f:d8:75:e4:
6a:ad:26:f8:23:cf:b5:b2:aa:63:93:96:3e:ec:24:
cf:b4:b3:b9:58:00:5d:8a:0e:1d:4c:10:07:08:85:
48:55:23:33:1e:73:f1:fd:b6:ea:1f:cc:bc:db:ea:
b9:9a:db:4b:7a:4c:a2:c8:4f:ca:20:e7:88:82:9a:
29:08:c8:b9:8b:19:67:67:ae:5e:07:a6:5e:a3:f5:
43:a4:d5:df:5c:8a:40:21:38:41:67:a9:68:c5:f4:
b7:93:5e:3a:b4:70:16:e6:e4:d1:bb:8b:05:a8:65:
58:12:18:26:20:ea:14:72:de:12:bd:98:63:7c:e7:
2c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:FA:0B:A7:A0:01:73:51:5A:1A:9C:2D:87:68:AC:DB:C1:51:02:4B
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/nPoLp6ABc1FaGpwth2is28FRAks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.72.0/23
185.203.148.0/22
Signature Algorithm: sha256WithRSAEncryption
57:57:d6:66:6f:2a:f0:28:e8:0b:b4:4a:f9:f5:3a:b7:0d:28:
d3:fa:25:51:48:b7:70:99:04:1a:ac:7a:c2:c8:e7:f9:0f:9b:
57:29:fe:c5:11:50:81:b3:a8:8c:12:fb:5d:d9:6c:5e:c9:2f:
3b:de:95:19:07:52:d0:cf:8f:fb:a0:e7:b6:0e:4f:b7:da:5f:
82:f8:50:81:a2:aa:ab:f6:22:88:65:ef:94:a2:cf:9c:25:d9:
3c:37:e2:9e:e0:6f:19:7b:53:43:cf:2d:a7:07:f6:17:5a:80:
40:fc:76:a4:df:93:d6:10:f8:0f:93:f1:2a:40:21:5b:4b:6d:
08:30:06:ce:0c:0c:c5:80:30:ec:44:73:c7:d3:72:8b:8c:67:
ff:52:bd:37:a4:0a:77:1f:97:b5:cd:59:1d:2f:96:fa:e7:e7:
b9:e0:3f:d0:ea:87:e7:11:49:37:cf:a1:20:42:54:36:76:ec:
d6:57:85:3c:00:78:88:4b:b4:19:c0:4f:5b:99:f0:ab:95:12:
4e:f4:50:d5:b7:fd:36:41:a7:ef:81:8b:6e:eb:e2:66:75:57:
93:0d:5e:d7:b1:cd:98:1e:87:21:80:cf:a1:15:d8:80:26:00:
6d:d9:d4:03:19:31:9f:77:b2:e7:f8:11:11:1c:a0:ae:58:70:
e5:5d:8e:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:09 2024 by rpki-client on console-ams.rpki-client.org