Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/20DreEkMMbjnEbgM0Onee1Ca-4g.roa
File: 20DreEkMMbjnEbgM0Onee1Ca-4g.roa (raw, json)
Hash identifier: OBYOIawQEslwP2LINT+3WSXFtTkGaLx6wMPWTCA2NF0=
Subject key identifier: DB:40:EB:78:49:0C:31:B8:E7:11:B8:0C:D0:E9:DE:7B:50:9A:FB:88
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0C1305E9
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/20DreEkMMbjnEbgM0Onee1Ca-4g.roa
Signing time: Thu 03 Feb 2022 22:30:44 +0000
ROA not before: Thu 03 Feb 2022 22:30:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64267
IP address blocks: 195.180.137.0/24 maxlen: 24
194.233.149.0/24 maxlen: 24
194.233.148.0/24 maxlen: 24
195.180.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202573289 (0xc1305e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Feb 3 22:30:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db40eb78490c31b8e711b80cd0e9de7b509afb88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:82:2f:2b:39:58:19:d0:87:27:bd:15:ed:fc:
8d:25:f0:32:da:24:3b:75:28:6d:39:3a:f5:0e:7b:
41:95:b5:68:d7:60:ff:99:00:f8:a2:e4:67:cb:42:
01:da:75:90:fb:37:7f:de:59:38:04:4a:7b:fd:02:
19:6d:b4:05:b6:c5:41:db:30:92:5a:b7:fd:b0:81:
c2:f6:74:6d:25:73:bf:e4:b4:c5:75:52:e1:a6:4d:
f1:2c:16:74:7a:47:4e:c6:5b:91:09:92:8f:58:d2:
8f:09:91:a0:0f:63:85:31:e6:48:17:59:1b:d3:ca:
d9:d8:13:5b:97:4e:38:55:f2:c8:4c:28:68:19:7a:
66:94:25:4d:a6:a0:b8:ae:55:76:c5:d8:f2:c6:07:
9f:e7:de:69:fc:18:ad:d8:c1:8d:ff:9a:bb:0f:e3:
67:27:9a:b9:2d:bd:b6:28:b3:52:52:0a:ad:75:9a:
24:94:71:01:59:e9:50:52:dd:3d:94:05:90:84:b0:
8b:32:36:ff:09:26:f5:2b:a6:e0:b2:90:84:92:ca:
1f:25:0a:f7:6f:14:4a:f6:d9:25:e4:2b:f7:36:b2:
3a:3d:a0:70:7b:a0:cb:90:20:24:f9:ea:15:81:d7:
85:81:65:c0:62:9b:4e:17:12:cf:83:42:a1:83:d0:
94:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:40:EB:78:49:0C:31:B8:E7:11:B8:0C:D0:E9:DE:7B:50:9A:FB:88
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/20DreEkMMbjnEbgM0Onee1Ca-4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.148.0/23
195.180.137.0/24
195.180.149.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:e4:51:97:01:16:ab:a0:40:dc:25:4f:81:54:33:69:b6:fa:
95:e0:cb:01:42:91:21:cf:63:71:2a:76:89:85:49:58:4c:03:
7a:24:27:d5:0c:9c:7d:74:b7:9e:ef:56:88:e6:29:4f:7d:e4:
48:33:ab:fd:89:a7:8f:34:f0:cf:6b:61:d8:18:fc:c8:91:40:
d4:92:57:67:d8:43:8b:36:a3:e0:ad:25:9a:64:0f:ff:70:b2:
11:a9:b3:d6:14:41:4f:67:33:99:9f:da:3c:30:5f:59:3e:cd:
b0:7e:a4:19:66:f0:ca:e7:08:73:03:78:c0:a1:37:b0:7c:69:
6f:58:55:c0:78:df:e6:6b:68:09:60:93:da:31:43:0e:88:3a:
e2:71:eb:6e:17:9c:78:d5:94:af:5e:e0:7a:9d:ff:ac:00:c2:
e8:c5:52:20:c3:e0:2e:8a:ca:14:ff:6f:08:e3:ba:08:18:44:
c3:d5:5f:c9:3a:da:c0:cf:fb:b9:8f:9b:3d:46:5a:ae:1f:99:
4d:9c:e0:af:eb:ad:07:46:a3:4c:23:06:b6:d8:8b:dc:30:dd:
95:6c:52:6b:dd:d7:f5:1f:bd:75:f1:80:b6:a2:6b:7a:a9:8c:
60:17:15:8b:99:b0:ce:9e:09:dd:bf:68:47:6f:82:e7:54:ae:
e2:66:7a:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org