Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/dAtWaTlV5DmCPDfcSvj27_npAe0.roa
File: dAtWaTlV5DmCPDfcSvj27_npAe0.roa (raw, json)
Hash identifier: 2y5DVU3SA0mzjSXsRjGZFUTc5zB2PwD/jjAXhUPC+so=
Subject key identifier: 74:0B:56:69:39:55:E4:39:82:3C:37:DC:4A:F8:F6:EF:F9:E9:01:ED
Certificate issuer: /CN=f1479b83c520d784445c24828bab633f0d702cf3
Certificate serial: 01829351B5144ADAB64637CB14E1DECF1A56
Authority key identifier: F1:47:9B:83:C5:20:D7:84:44:5C:24:82:8B:AB:63:3F:0D:70:2C:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Uebg8Ug14REXCSCi6tjPw1wLPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/dAtWaTlV5DmCPDfcSvj27_npAe0.roa
Signing time: Fri 12 Aug 2022 18:29:41 +0000
ROA not before: Fri 12 Aug 2022 18:29:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205215
IP address blocks: 185.218.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:93:51:b5:14:4a:da:b6:46:37:cb:14:e1:de:cf:1a:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1479b83c520d784445c24828bab633f0d702cf3
Validity
Not Before: Aug 12 18:29:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=740b56693955e439823c37dc4af8f6eff9e901ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:3c:90:fc:4c:65:18:db:d7:96:96:af:a7:88:
67:40:ac:37:2b:64:73:6b:12:a6:08:99:97:92:63:
ec:2f:c3:1f:cd:b5:3a:0f:fd:df:97:a5:a3:05:38:
94:50:6a:75:f0:63:8f:50:b0:6c:76:fd:1d:5a:12:
3f:87:49:c1:95:b5:13:50:50:fc:06:74:6e:1c:0b:
57:39:a4:8c:a0:5a:2f:25:71:f2:69:1d:77:51:56:
3b:74:37:12:2c:55:62:54:7f:a2:1c:82:2a:e9:7d:
6e:0d:0a:fe:ca:77:91:fd:4b:0d:52:bc:85:37:0a:
49:23:89:57:f1:35:43:b2:11:70:64:e9:6d:86:30:
04:d6:c3:49:49:56:33:ae:52:02:d2:2f:25:5d:97:
36:e0:fb:ef:dd:22:ac:1a:03:91:2d:f2:c9:d3:f4:
b9:56:48:f7:a0:11:4d:7a:16:03:e4:3b:a9:d3:6f:
a7:12:eb:5b:54:0f:2b:be:97:3f:b5:12:39:5d:fe:
cb:c5:9a:2a:f3:cb:5e:f2:94:4a:16:65:31:7a:11:
23:c7:00:67:a2:75:c0:37:9d:08:22:1b:06:5d:bf:
8a:bb:08:68:ff:be:d4:4e:3c:9e:9b:21:86:c9:a5:
2d:f8:73:69:2b:b4:11:6d:5c:e7:ba:98:32:18:68:
75:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:0B:56:69:39:55:E4:39:82:3C:37:DC:4A:F8:F6:EF:F9:E9:01:ED
X509v3 Authority Key Identifier:
keyid:F1:47:9B:83:C5:20:D7:84:44:5C:24:82:8B:AB:63:3F:0D:70:2C:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Uebg8Ug14REXCSCi6tjPw1wLPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/dAtWaTlV5DmCPDfcSvj27_npAe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/8Uebg8Ug14REXCSCi6tjPw1wLPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.208.0/22
Signature Algorithm: sha256WithRSAEncryption
73:ef:dc:fd:20:fa:3b:9e:47:da:f6:e8:9d:e6:cc:14:1f:de:
ed:ae:b3:ec:fc:24:e9:6d:f8:c0:74:ae:b4:29:e4:be:dc:39:
99:cd:a4:d1:30:c3:83:77:d7:6d:2d:b6:37:2c:d8:d8:32:da:
7d:c3:4c:4a:d8:fd:d3:7d:3b:1e:9b:56:64:5f:88:40:e7:17:
25:03:ad:0c:e3:6c:92:e8:0b:a9:97:9f:d7:cf:92:0d:62:4a:
1a:cb:cf:5f:14:27:da:8e:93:b0:e2:61:c2:c8:45:07:22:b5:
f8:d1:eb:b7:fd:e2:b4:95:1d:e0:c5:be:1d:d7:e5:07:b3:6b:
5d:f0:46:77:56:af:4e:4f:ec:94:b0:2d:c3:a2:8d:2c:f5:70:
3d:8b:66:45:ac:11:23:0e:25:20:11:12:70:6a:78:9b:e3:28:
ed:4e:69:7f:9b:8f:00:60:c9:c7:34:af:b4:da:83:77:40:6b:
88:ca:f7:6d:43:07:ed:9e:fc:1c:24:01:23:73:a0:1c:d4:27:
7e:bc:43:e3:82:5c:dc:ec:16:73:4c:d0:ce:9b:f5:26:66:7f:
3b:05:8e:d6:73:9e:eb:f8:6e:32:8e:4c:dc:fe:18:ec:61:93:
61:cd:ed:2a:a3:09:b4:1f:49:24:82:12:ef:3e:3f:70:cd:39:
61:b1:ea:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:37 2023 by rpki-client on console-ams.rpki-client.org