Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/ce5ca6-f939-4fd7-b9f8-0a1ef0ec0578/1/L0Ce7gx6VY4vM4N95qu5eLHhVZo.roa
File: L0Ce7gx6VY4vM4N95qu5eLHhVZo.roa (raw, json)
Hash identifier: vlZ2IGvrXLT+MTvRlppYzA2MOZcW3LEdweXxwvVdOik=
Subject key identifier: 2F:40:9E:EE:0C:7A:55:8E:2F:33:83:7D:E6:AB:B9:78:B1:E1:55:9A
Certificate issuer: /CN=e6688ae96323c1fcfab54b294557397b49b03bc7
Certificate serial: 08A69F89
Authority key identifier: E6:68:8A:E9:63:23:C1:FC:FA:B5:4B:29:45:57:39:7B:49:B0:3B:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5miK6WMjwfz6tUspRVc5e0mwO8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/ce5ca6-f939-4fd7-b9f8-0a1ef0ec0578/1/L0Ce7gx6VY4vM4N95qu5eLHhVZo.roa
Signing time: Sun 20 Feb 2022 10:26:58 +0000
ROA not before: Sun 20 Feb 2022 10:26:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57468
IP address blocks: 185.146.40.0/24 maxlen: 24
185.146.40.0/22 maxlen: 22
185.146.43.0/24 maxlen: 24
2a07:4d40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145137545 (0x8a69f89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6688ae96323c1fcfab54b294557397b49b03bc7
Validity
Not Before: Feb 20 10:26:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f409eee0c7a558e2f33837de6abb978b1e1559a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6b:ac:d5:1b:c6:65:f4:4a:b1:b3:67:0e:2b:
99:79:70:b0:09:0f:aa:7c:36:a4:73:63:0b:2b:5d:
e5:8a:0a:c9:f5:67:be:ab:1a:59:8e:24:58:84:ba:
d2:5b:18:9a:49:32:67:d1:dc:ae:95:a5:3c:14:d0:
55:b4:62:fd:98:bc:72:d2:f2:28:cb:8d:15:24:d8:
08:65:ef:17:31:5b:cd:9c:7f:68:ed:4a:b0:b6:25:
96:e9:3a:44:13:60:89:48:16:05:a0:51:de:f4:5d:
13:06:40:b8:a0:db:61:04:46:8b:0a:65:7a:54:48:
ed:02:7d:52:c2:77:86:b0:6f:c5:d8:d6:74:09:a6:
2a:e4:d8:b6:23:39:dc:d7:52:46:e4:4e:27:a9:d3:
a2:c3:5f:50:cd:86:ab:12:23:df:73:9a:70:ac:a6:
fb:1d:3e:4e:ab:53:a6:1b:e5:ba:2f:57:22:4d:a7:
4d:1a:aa:8f:d6:e5:13:f6:5a:1f:7f:bd:e5:a8:47:
7a:1b:c9:d7:b1:1b:97:16:a1:b8:17:81:b7:e1:0f:
a7:a9:fc:f2:64:8c:a2:a7:e1:99:ad:b5:cf:9d:3f:
8d:14:1d:1d:5a:b1:08:f2:e7:19:56:45:0b:04:8f:
4a:70:b6:83:02:28:35:d9:c4:bd:56:fe:10:10:94:
e6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:40:9E:EE:0C:7A:55:8E:2F:33:83:7D:E6:AB:B9:78:B1:E1:55:9A
X509v3 Authority Key Identifier:
keyid:E6:68:8A:E9:63:23:C1:FC:FA:B5:4B:29:45:57:39:7B:49:B0:3B:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5miK6WMjwfz6tUspRVc5e0mwO8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ce5ca6-f939-4fd7-b9f8-0a1ef0ec0578/1/L0Ce7gx6VY4vM4N95qu5eLHhVZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ce5ca6-f939-4fd7-b9f8-0a1ef0ec0578/1/5miK6WMjwfz6tUspRVc5e0mwO8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.40.0/22
IPv6:
2a07:4d40::/29
Signature Algorithm: sha256WithRSAEncryption
99:28:c3:cb:a4:fb:ef:d1:c0:38:e0:82:4b:c5:ca:a6:b7:47:
d1:1c:fc:53:ce:2c:44:57:6f:34:7d:b9:b2:98:50:03:c2:70:
b4:28:26:63:58:1f:4e:68:fc:7a:1a:a2:0c:67:fa:35:fe:ac:
a5:57:fa:61:79:1c:8d:4e:07:5a:83:fb:40:54:9b:fb:fb:38:
27:19:c5:59:a9:9e:fa:3c:8f:64:8a:6e:d6:fc:c9:8e:26:a5:
01:5c:d6:e2:12:54:a6:6e:23:05:4e:1a:f2:9d:88:78:d7:18:
96:69:95:3b:a7:d2:6c:cd:fe:49:3a:b9:97:f0:c7:3e:7b:96:
c9:ae:14:c6:5c:ce:7c:7d:38:21:48:3f:c7:2a:16:f2:5b:92:
f8:7f:20:70:7a:b0:c0:94:6e:f2:2b:93:27:94:c0:6d:8d:e7:
bf:85:a0:0d:dc:63:30:72:fe:0a:06:de:d3:2a:c5:c3:bd:68:
cf:f2:01:62:ff:dd:8c:29:68:5f:56:64:43:cb:74:52:be:7a:
22:6d:35:98:f1:c5:a2:76:5a:0f:f5:8b:5e:f1:c6:d5:81:40:
a6:b3:c3:aa:87:6e:7e:72:dd:b6:25:5f:6e:f6:41:8d:63:a0:
c5:48:dd:e4:ef:d2:bc:92:12:81:24:6c:b4:eb:f8:ba:c1:0b:
dd:fd:7a:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:00 2023 by rpki-client on console-fra.rpki-client.org