Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/79c0a9-e5e4-47c3-823f-0b8b075e86db/1/U3OBPoFATDKH6C_SGW2A-9fEnw4.roa
File: U3OBPoFATDKH6C_SGW2A-9fEnw4.roa (raw, json)
Hash identifier: xgBnzR9YFypENuSMpzRasHO8lg+boFFcOVNGuGsbIEE=
Subject key identifier: 53:73:81:3E:81:40:4C:32:87:E8:2F:D2:19:6D:80:FB:D7:C4:9F:0E
Certificate issuer: /CN=02ab010cf5c11c1b30693d11417b60cf45fb1209
Certificate serial: 0CBBD3FC
Authority key identifier: 02:AB:01:0C:F5:C1:1C:1B:30:69:3D:11:41:7B:60:CF:45:FB:12:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AqsBDPXBHBswaT0RQXtgz0X7Egk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/79c0a9-e5e4-47c3-823f-0b8b075e86db/1/U3OBPoFATDKH6C_SGW2A-9fEnw4.roa
Signing time: Sat 01 Jan 2022 13:06:38 +0000
ROA not before: Sat 01 Jan 2022 13:06:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57852
IP address blocks: 185.217.185.0/24 maxlen: 24
185.217.186.0/24 maxlen: 24
185.217.184.0/24 maxlen: 24
185.217.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 213636092 (0xcbbd3fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02ab010cf5c11c1b30693d11417b60cf45fb1209
Validity
Not Before: Jan 1 13:06:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5373813e81404c3287e82fd2196d80fbd7c49f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:17:70:f7:24:43:ca:17:60:c3:8e:d7:fd:cb:
96:1f:63:f0:a2:3d:26:50:ba:d7:82:29:98:f5:14:
81:8d:95:42:8a:c5:21:55:85:53:23:65:16:69:d2:
1e:2e:34:2e:7b:a7:47:e1:52:9c:88:d0:f3:bb:63:
01:c0:89:8a:c4:63:b9:78:f6:c2:e7:7c:3a:d6:f2:
4f:6e:50:74:e6:3a:75:88:38:35:fe:0d:29:43:63:
39:66:61:8c:eb:d2:97:9b:46:23:c9:4a:51:a8:37:
72:14:14:44:6d:35:57:77:97:d1:09:06:9a:d6:80:
49:67:e1:47:86:6c:87:ed:05:43:49:8e:f2:ae:60:
8b:f1:d9:e3:3f:db:98:2f:e9:ce:2e:e4:1a:7d:14:
df:29:50:46:06:5b:5c:07:3a:d1:e4:0f:ae:cf:4f:
20:f9:00:24:02:a9:12:2d:a3:85:4c:25:36:f3:9e:
f6:33:e4:5d:7c:8a:4c:38:46:69:07:67:6d:8a:51:
78:ea:11:65:29:4b:63:ed:d9:78:e9:1e:3d:2c:cd:
ca:c4:86:53:ff:d6:e5:21:4e:b5:69:13:47:ef:85:
a3:eb:4c:cd:1f:2f:fe:95:de:02:ec:57:51:bc:07:
c6:99:72:40:cb:c2:79:f8:70:c8:a0:f0:49:40:6d:
35:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:73:81:3E:81:40:4C:32:87:E8:2F:D2:19:6D:80:FB:D7:C4:9F:0E
X509v3 Authority Key Identifier:
keyid:02:AB:01:0C:F5:C1:1C:1B:30:69:3D:11:41:7B:60:CF:45:FB:12:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AqsBDPXBHBswaT0RQXtgz0X7Egk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/79c0a9-e5e4-47c3-823f-0b8b075e86db/1/U3OBPoFATDKH6C_SGW2A-9fEnw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/79c0a9-e5e4-47c3-823f-0b8b075e86db/1/AqsBDPXBHBswaT0RQXtgz0X7Egk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.184.0/22
Signature Algorithm: sha256WithRSAEncryption
27:33:ad:7e:48:ac:92:d2:68:f3:50:df:49:b3:e9:29:bb:03:
39:e1:81:11:5f:9a:6c:f1:6d:0b:e8:0c:e0:0d:a0:fe:a6:32:
1e:3f:0e:64:8a:a4:80:72:53:42:b6:b8:46:2e:e6:a8:d7:01:
28:ea:e7:87:c7:c9:bf:30:33:a7:0b:4f:be:9e:7a:1b:6c:67:
09:87:4c:b6:78:1f:27:5d:6a:c7:78:26:9f:8a:4f:5d:b4:0b:
42:63:80:c9:6c:41:f8:b4:fe:3d:1f:61:d3:2d:64:31:af:43:
3b:9d:8d:e5:ef:e6:56:cd:0f:8a:8b:24:e3:29:df:a3:49:47:
92:15:60:e8:49:2e:90:b9:9a:96:fd:3a:6a:cb:cf:e7:99:85:
3a:0e:13:50:e8:2a:3d:d4:92:9a:c7:59:f7:63:48:68:37:b6:
0c:21:2a:4d:8d:c4:66:aa:de:f3:8f:27:84:24:df:8c:2b:91:
e8:d8:0e:d8:35:b7:e2:36:24:15:33:11:8c:c8:aa:75:98:cd:
e3:54:b6:cd:05:38:a3:78:52:66:76:ef:87:2a:d7:f3:f3:63:
41:9b:0b:26:8b:8b:b7:f1:69:8e:27:70:19:0b:76:a7:52:0c:
8f:5a:35:ea:36:a0:35:e4:ba:19:a4:bd:65:fb:ad:76:e0:a2:
e0:82:47:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:47 2023 by rpki-client on console-fra.rpki-client.org