Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/da1f23-3694-4f59-85cf-ca1e5f081950/1/eJLFHoZRr9hLclOxioL2wPaXD74.roa
File: eJLFHoZRr9hLclOxioL2wPaXD74.roa (raw, json)
Hash identifier: OJG5dZg0/JBI9aYi+no7x8lryZIC+icURqQEBzH0wfk=
Subject key identifier: 78:92:C5:1E:86:51:AF:D8:4B:72:53:B1:8A:82:F6:C0:F6:97:0F:BE
Certificate issuer: /CN=8323b9731b196b1acbc829f5b28b325fd9d3e3d4
Certificate serial: 0476DC5F
Authority key identifier: 83:23:B9:73:1B:19:6B:1A:CB:C8:29:F5:B2:8B:32:5F:D9:D3:E3:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gyO5cxsZaxrLyCn1sosyX9nT49Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/da1f23-3694-4f59-85cf-ca1e5f081950/1/eJLFHoZRr9hLclOxioL2wPaXD74.roa
Signing time: Sat 01 Jan 2022 14:00:26 +0000
ROA not before: Sat 01 Jan 2022 14:00:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8468
IP address blocks: 185.146.44.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74898527 (0x476dc5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8323b9731b196b1acbc829f5b28b325fd9d3e3d4
Validity
Not Before: Jan 1 14:00:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7892c51e8651afd84b7253b18a82f6c0f6970fbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cb:a1:bd:2c:34:97:c0:a8:3a:a0:ab:49:96:
a6:d8:0a:2c:42:d9:83:ba:54:6e:6b:46:80:2f:48:
2d:1b:5d:b2:33:95:29:68:63:41:bf:ff:e3:3b:b6:
e1:58:5d:7a:16:b6:69:9e:26:f1:ff:d9:39:dd:13:
e2:67:71:d1:61:dd:2b:ea:54:7f:d2:33:23:47:79:
24:4b:b7:21:01:89:32:d3:37:c6:e2:e3:01:cb:9d:
41:34:ff:00:e9:9c:7a:fd:f4:ee:fe:88:74:a8:0c:
bc:f9:12:d0:4b:ad:fc:e4:5a:1e:0e:4a:50:60:fc:
f7:35:7d:2c:a7:79:9c:0f:6a:52:91:82:66:e3:87:
88:39:f4:c9:40:c3:ed:60:75:d2:4a:40:41:5d:80:
21:53:b4:28:b6:33:0e:26:91:e1:3f:de:02:42:c6:
5d:29:ce:b4:25:97:95:b2:e9:89:69:b4:09:26:aa:
f0:1c:a0:29:51:3b:45:0a:a5:6d:2e:e8:5d:fc:f4:
38:5e:6a:18:74:ce:68:22:08:d1:49:83:07:8e:a8:
29:fc:f7:08:b9:d4:17:88:d7:92:d8:99:8f:5e:5f:
81:a5:6a:ab:8b:7f:51:b9:e5:74:8a:06:44:a2:81:
d3:0f:37:86:31:71:5d:04:2e:b3:7e:cd:54:65:02:
1b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:92:C5:1E:86:51:AF:D8:4B:72:53:B1:8A:82:F6:C0:F6:97:0F:BE
X509v3 Authority Key Identifier:
keyid:83:23:B9:73:1B:19:6B:1A:CB:C8:29:F5:B2:8B:32:5F:D9:D3:E3:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gyO5cxsZaxrLyCn1sosyX9nT49Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/da1f23-3694-4f59-85cf-ca1e5f081950/1/eJLFHoZRr9hLclOxioL2wPaXD74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/da1f23-3694-4f59-85cf-ca1e5f081950/1/gyO5cxsZaxrLyCn1sosyX9nT49Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.44.0/23
Signature Algorithm: sha256WithRSAEncryption
84:9a:ed:5f:b1:ef:0a:a4:02:5d:2e:aa:ac:6b:cc:49:d0:3f:
c4:44:d9:be:2d:5f:04:1e:2c:49:c3:d8:8a:0f:78:0a:91:14:
4b:44:01:d0:5b:8f:88:e4:14:77:44:cf:ec:3a:e3:59:b3:72:
0a:d7:e2:33:2f:b3:a2:54:45:fd:02:a3:07:64:d2:77:6d:4b:
a6:83:6c:0a:d6:e2:3a:ac:87:fa:56:8a:6d:da:6c:f5:9a:a7:
1d:dd:6b:ed:a0:52:72:2e:95:f5:8d:57:f3:99:c0:61:27:e0:
ad:58:f0:96:0e:f4:43:26:18:9e:8b:c3:14:5a:83:09:44:41:
a5:0b:2a:f6:72:22:7a:45:59:fd:f9:ea:5b:c8:c0:08:02:11:
0b:8a:05:92:04:77:16:d8:65:7b:ba:e0:0f:6d:6e:65:9c:1b:
d6:1e:20:67:7e:48:9a:9f:8d:5d:36:94:ed:e1:b0:f9:a2:3d:
83:e6:85:22:95:76:98:96:ad:8a:90:40:ae:e3:9e:05:70:0e:
5d:82:41:43:0e:5c:fb:87:00:52:e2:9b:86:df:7b:00:1a:63:
f6:43:73:ed:85:23:7d:e6:90:9c:18:42:cd:1b:a4:c0:45:7a:
86:cb:a4:45:f0:43:bd:f6:67:16:5b:aa:d0:14:61:84:20:ea:
05:53:93:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:21 2023 by rpki-client on console-ams.rpki-client.org