Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/yrIob0e6sriogCmRZY-ESAvL-Uo.roa
File: yrIob0e6sriogCmRZY-ESAvL-Uo.roa (raw, json)
Hash identifier: qcxwXITRvgguZ1v9d/iqOle9d0ur5PYSkl9hfxcq0G4=
Subject key identifier: CA:B2:28:6F:47:BA:B2:B8:A8:80:29:91:65:8F:84:48:0B:CB:F9:4A
Certificate issuer: /CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Certificate serial: 01830FB70090B2B339FE967A11EB62807BBF
Authority key identifier: 30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/yrIob0e6sriogCmRZY-ESAvL-Uo.roa
Signing time: Mon 05 Sep 2022 22:13:14 +0000
ROA not before: Mon 05 Sep 2022 22:13:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.146.154.0/24 maxlen: 24
185.146.155.0/24 maxlen: 24
2a07:4f80::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0f:b7:00:90:b2:b3:39:fe:96:7a:11:eb:62:80:7b:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Validity
Not Before: Sep 5 22:13:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cab2286f47bab2b8a8802991658f84480bcbf94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ed:60:92:4f:2d:e6:9d:67:32:4f:36:f7:7a:
1a:a1:4d:91:5c:37:73:c2:43:ec:7e:db:35:6a:da:
46:7f:d5:89:3e:77:76:76:9b:44:a9:e4:08:02:e3:
0c:54:1d:7c:54:79:50:f3:cf:e0:8a:c1:11:fd:35:
d7:fa:f4:c0:fd:e8:b6:a5:e4:1e:a9:ae:02:b5:af:
64:ee:3f:f2:04:47:75:07:34:27:d7:50:df:ab:cd:
a4:ad:36:e2:88:e3:10:0f:86:e4:79:75:33:cc:d7:
44:8c:c0:3d:49:99:2c:05:17:40:ef:08:d0:77:48:
ee:fa:5c:8d:52:f4:61:d1:9b:c2:ce:f2:d3:b2:86:
19:ca:d1:36:bd:8f:78:b3:34:b2:4c:b5:cc:80:cf:
cb:01:0e:f7:82:50:78:35:3e:82:a0:99:fb:eb:c2:
88:fc:76:d9:f1:fc:95:e3:00:90:8c:d3:05:75:8f:
8c:86:fc:82:a3:30:c5:49:08:a2:f2:cc:c9:e7:b8:
81:cc:c5:32:70:83:1f:f1:bb:76:bd:f1:3f:3b:ab:
fc:b2:46:84:b2:b8:32:69:8a:26:a2:1a:b2:6b:09:
b6:9d:9b:bc:41:c5:f5:24:e7:30:98:64:ed:fc:db:
dc:65:1c:df:7c:13:42:be:74:69:67:c6:7e:1d:cd:
da:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B2:28:6F:47:BA:B2:B8:A8:80:29:91:65:8F:84:48:0B:CB:F9:4A
X509v3 Authority Key Identifier:
keyid:30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/yrIob0e6sriogCmRZY-ESAvL-Uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.154.0/23
IPv6:
2a07:4f80::/44
Signature Algorithm: sha256WithRSAEncryption
3e:1d:6a:2a:8b:4e:2d:5d:9e:58:48:0a:bb:37:72:a4:dc:57:
ca:86:9b:f4:fa:3f:d8:48:b5:7f:a3:b3:9d:81:8f:35:a7:89:
a0:d3:e3:0a:7a:ab:c5:17:65:23:4a:23:12:99:26:ba:42:a2:
45:7d:f7:5e:e1:99:61:e2:8a:6e:6e:52:1c:a4:ff:88:16:7f:
62:2c:f2:26:b7:9d:5d:2c:d2:b8:98:f6:e5:4f:34:64:c6:de:
c0:90:ad:de:60:b4:c7:4d:71:a0:dd:5d:aa:0b:f2:f0:de:55:
78:30:97:f6:30:3d:c9:01:38:72:26:f5:cc:fb:f2:c2:e2:13:
cf:f9:1b:15:19:f0:70:88:fa:55:4d:ac:5e:b3:c3:d4:89:41:
83:f2:60:54:ba:47:10:58:04:2b:80:83:31:e5:b8:8d:29:92:
21:01:db:1e:91:09:cf:4b:d4:49:55:fb:32:87:5d:af:b9:6a:
1d:68:65:09:b9:64:67:5a:fc:7e:7a:56:a5:55:68:71:ff:a9:
ee:1e:f7:2e:5b:3d:d0:da:f4:8b:62:72:30:ee:20:f9:5f:3b:
2f:ea:b5:34:13:dd:bc:a3:bf:75:a4:e5:1c:e2:ab:02:f6:77:
41:af:5a:90:20:37:c3:85:46:e9:d8:d9:99:2d:fc:16:07:81:
e0:8f:7c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:09 2024 by rpki-client on console-fra.rpki-client.org