Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/64773f-7c7e-4898-b193-08d8e50fc9c5/1/cLuXFnHszIZHGiHWWDxzFvOJnaI.roa
File: cLuXFnHszIZHGiHWWDxzFvOJnaI.roa (raw, json)
Hash identifier: s0NRjT0FKXPkjC2sABs9IV256x3/cMmHCvAaigmb41I=
Subject key identifier: 70:BB:97:16:71:EC:CC:86:47:1A:21:D6:58:3C:73:16:F3:89:9D:A2
Certificate issuer: /CN=495c7427af74da9454f1e287c16f9a5f3a77831f
Certificate serial: 044B9FB1
Authority key identifier: 49:5C:74:27:AF:74:DA:94:54:F1:E2:87:C1:6F:9A:5F:3A:77:83:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SVx0J6902pRU8eKHwW-aXzp3gx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/64773f-7c7e-4898-b193-08d8e50fc9c5/1/cLuXFnHszIZHGiHWWDxzFvOJnaI.roa
Signing time: Sat 01 Jan 2022 13:59:29 +0000
ROA not before: Sat 01 Jan 2022 13:59:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61110
IP address blocks: 185.153.192.0/22 maxlen: 22
185.153.192.0/23 maxlen: 23
2a07:8d80::/29 maxlen: 29
2a07:8d84::/32 maxlen: 32
2a07:8d80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72064945 (0x44b9fb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=495c7427af74da9454f1e287c16f9a5f3a77831f
Validity
Not Before: Jan 1 13:59:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70bb971671eccc86471a21d6583c7316f3899da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3e:e9:17:98:50:31:a2:d4:92:9e:e4:14:61:
3a:68:f8:9e:56:3c:f3:e0:e7:7e:41:a8:d1:e4:e4:
da:21:44:18:94:93:45:2d:86:b1:ce:7f:33:53:51:
3f:51:60:21:af:3b:6d:8a:08:d1:00:55:71:09:02:
16:f8:06:49:cd:df:94:c9:66:5c:4c:fa:0b:18:1d:
b0:7c:02:e2:1a:0d:0b:22:37:59:7b:4f:d9:2b:3e:
7b:b9:0a:e1:72:2c:b3:98:58:d0:fe:00:19:ef:23:
12:1c:0c:ab:a6:b7:2b:53:d0:8a:a3:4a:37:c7:ab:
79:b3:82:03:46:0f:d6:3a:06:37:09:71:95:9f:50:
ed:a2:e7:16:61:f3:df:f9:81:b5:09:79:df:3d:af:
18:0c:bc:d7:d9:fa:10:0b:e0:af:af:c8:77:6a:75:
61:9f:44:b6:6a:56:05:29:f3:ee:2f:d5:35:08:4c:
f2:bc:b0:3e:e8:c7:5d:b1:00:8d:47:37:02:dc:18:
9f:72:58:35:cf:38:ac:fc:01:3f:c6:41:d5:a2:22:
b0:d9:f0:15:f0:90:21:49:3e:e1:2d:b9:e0:40:de:
d6:fd:18:98:b1:26:7f:48:4c:90:0b:31:4a:bb:7e:
28:9c:d8:54:92:d5:e8:52:02:fb:24:76:69:49:a9:
97:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BB:97:16:71:EC:CC:86:47:1A:21:D6:58:3C:73:16:F3:89:9D:A2
X509v3 Authority Key Identifier:
keyid:49:5C:74:27:AF:74:DA:94:54:F1:E2:87:C1:6F:9A:5F:3A:77:83:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SVx0J6902pRU8eKHwW-aXzp3gx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/64773f-7c7e-4898-b193-08d8e50fc9c5/1/cLuXFnHszIZHGiHWWDxzFvOJnaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/64773f-7c7e-4898-b193-08d8e50fc9c5/1/SVx0J6902pRU8eKHwW-aXzp3gx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.192.0/22
IPv6:
2a07:8d80::/29
Signature Algorithm: sha256WithRSAEncryption
68:1a:ad:41:43:81:d6:29:15:99:0c:0f:0f:33:33:cb:71:7a:
fb:b0:c2:ae:b6:f5:4a:38:bb:e4:bb:84:4c:fc:4f:cb:d4:89:
74:2f:0c:42:61:9b:3d:f6:2d:13:fc:46:79:36:d8:fb:e7:b8:
04:33:84:92:33:83:85:f9:32:5f:81:31:be:cd:84:16:79:7a:
0b:e5:29:4b:ba:2c:ea:4c:00:51:0e:59:55:df:51:8c:c0:a3:
34:c3:fd:69:07:48:11:d6:23:95:aa:6d:e4:98:48:d3:ad:07:
48:7c:21:2d:d4:c5:2c:73:b6:db:8f:c5:e6:80:f6:79:20:ee:
5c:46:f6:73:03:66:b7:f6:45:ee:61:75:92:e9:78:6b:71:42:
16:61:04:ad:13:7d:b3:cc:e2:92:47:3e:0b:58:04:de:78:cb:
60:79:c2:4f:75:b7:b2:4c:7e:7d:8f:20:57:7a:f6:17:18:30:
d3:39:3c:d5:b9:2f:11:8e:99:99:46:8e:8b:9f:6b:20:82:4d:
f1:4f:93:24:3f:86:f7:ba:98:a8:cc:1b:93:b0:ab:b8:3d:e3:
2c:d9:54:54:58:bb:66:53:3a:9f:2a:f7:b2:42:18:32:7a:38:
ac:f7:2b:02:b7:62:53:93:34:b8:3c:33:7d:40:20:ee:71:73:
8d:f1:57:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:42 2023 by rpki-client on console-fra.rpki-client.org