Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/73764d-f250-4e3d-bb6f-21c4c6d6b6cb/1/XUp8z7ai4T-owT0UbnYEqVZH-4E.roa
File: XUp8z7ai4T-owT0UbnYEqVZH-4E.roa (raw, json)
Hash identifier: +iXTrk1x+p0jOL0E+uGLz8WNn/26FYIIo7Td7MCrYM8=
Subject key identifier: 5D:4A:7C:CF:B6:A2:E1:3F:A8:C1:3D:14:6E:76:04:A9:56:47:FB:81
Certificate issuer: /CN=ea641eade1955dd4b907916b99e021039ecc33e8
Certificate serial: 1397CDB3
Authority key identifier: EA:64:1E:AD:E1:95:5D:D4:B9:07:91:6B:99:E0:21:03:9E:CC:33:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6mQereGVXdS5B5FrmeAhA57MM-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/73764d-f250-4e3d-bb6f-21c4c6d6b6cb/1/XUp8z7ai4T-owT0UbnYEqVZH-4E.roa
Signing time: Wed 13 Apr 2022 16:58:38 +0000
ROA not before: Wed 13 Apr 2022 16:58:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203180
IP address blocks: 185.142.172.0/22 maxlen: 24
2a0d:540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 328715699 (0x1397cdb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea641eade1955dd4b907916b99e021039ecc33e8
Validity
Not Before: Apr 13 16:58:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d4a7ccfb6a2e13fa8c13d146e7604a95647fb81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:26:5f:d0:2b:12:d0:15:1e:61:f7:35:56:fb:
23:90:e7:9d:7e:d6:98:f5:b7:c9:a0:b5:05:55:0a:
60:af:47:b1:dd:e9:6d:ad:9d:72:87:65:aa:95:0f:
df:9b:75:82:63:a7:ed:19:ff:93:ca:5e:78:66:8d:
8b:c9:3e:09:2a:f6:99:03:e6:e9:b1:f2:43:7b:5d:
68:70:3f:e6:2d:68:be:dd:71:33:49:fb:4f:02:2a:
be:60:c1:1b:43:a3:80:ac:c5:7a:6c:2b:62:e1:aa:
a6:75:1a:74:1a:e4:b3:a7:c5:b9:63:de:8f:22:27:
6e:82:32:2f:1d:bf:a8:b3:7c:cc:3f:2d:28:83:c8:
aa:62:51:32:2c:68:b5:0b:a8:b7:3f:22:5a:cb:da:
15:3f:bb:e6:46:6b:67:17:64:ca:dc:42:ff:c2:2c:
0b:be:96:ea:ea:c3:28:cf:a4:67:ef:ab:71:3c:fc:
f4:3c:31:61:ba:1c:3a:9b:c4:4f:43:20:75:a3:b0:
cd:76:fc:a8:e6:f7:4f:34:28:07:ef:94:10:0b:32:
31:3e:55:5c:63:91:8d:f8:db:e5:60:b8:ab:a2:af:
5d:f5:a4:20:3e:d6:f4:e2:98:9e:7f:4c:e1:5a:d0:
37:24:d5:36:04:a5:4f:27:e1:70:64:18:9f:17:3b:
56:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:4A:7C:CF:B6:A2:E1:3F:A8:C1:3D:14:6E:76:04:A9:56:47:FB:81
X509v3 Authority Key Identifier:
keyid:EA:64:1E:AD:E1:95:5D:D4:B9:07:91:6B:99:E0:21:03:9E:CC:33:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6mQereGVXdS5B5FrmeAhA57MM-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/73764d-f250-4e3d-bb6f-21c4c6d6b6cb/1/XUp8z7ai4T-owT0UbnYEqVZH-4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/73764d-f250-4e3d-bb6f-21c4c6d6b6cb/1/6mQereGVXdS5B5FrmeAhA57MM-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.172.0/22
IPv6:
2a0d:540::/29
Signature Algorithm: sha256WithRSAEncryption
08:da:7f:72:e2:0d:fe:ee:26:70:ba:2f:5c:57:d3:88:bb:ab:
84:d3:53:76:82:d5:4c:1f:5d:57:01:c3:bf:d6:88:f5:d8:48:
6e:33:31:8e:6c:a1:ec:ec:78:c3:76:65:48:42:3e:17:db:a5:
5e:5f:91:da:70:64:92:b2:97:11:89:38:d9:b5:25:96:7e:53:
e0:1a:b9:b2:d0:3e:79:80:e3:f6:f9:f0:e4:ab:f2:a0:40:09:
95:3b:91:ca:37:84:56:ee:c1:ac:3d:80:d3:98:29:aa:85:45:
ce:ad:fd:e2:7b:18:ce:9c:dc:0b:be:29:4d:c6:ab:c4:27:0b:
9c:cc:f4:cb:13:98:ec:52:d1:48:6e:74:fd:e8:b4:50:87:73:
5b:30:63:9f:5f:49:24:52:0c:4e:63:3a:2c:2a:47:40:ab:33:
bd:be:02:7a:94:b5:99:20:b1:91:aa:64:02:9d:83:2e:e5:56:
09:5b:cd:0e:dd:5e:22:7c:01:58:ea:31:98:ed:ed:3b:74:af:
58:f7:0e:40:5a:18:d3:14:5e:15:fd:af:b8:b2:32:26:72:a6:
88:8e:8b:6c:b3:06:03:7b:7b:37:cb:5b:29:d7:f6:7f:66:ef:
8e:d2:4b:96:55:bc:d0:4e:6f:aa:b6:2a:1f:6b:24:57:7b:55:
e3:e0:ba:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:46 2023 by rpki-client on console-ams.rpki-client.org