Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/f7c636-0d1e-47f3-b05d-a7fd2f9e74cf/1/jM7MvQ7naz9uwq2pR5HVD11azLw.roa
File: jM7MvQ7naz9uwq2pR5HVD11azLw.roa (raw, json)
Hash identifier: 6mdJPop/XhqReRczVXQLkb8C3RkbjKsXoN7TzCYmqYA=
Subject key identifier: 8C:CE:CC:BD:0E:E7:6B:3F:6E:C2:AD:A9:47:91:D5:0F:5D:5A:CC:BC
Certificate issuer: /CN=e54d092047dbe9a968a160f315fab9bb9c8356d7
Certificate serial: 1846752D
Authority key identifier: E5:4D:09:20:47:DB:E9:A9:68:A1:60:F3:15:FA:B9:BB:9C:83:56:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5U0JIEfb6alooWDzFfq5u5yDVtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/f7c636-0d1e-47f3-b05d-a7fd2f9e74cf/1/jM7MvQ7naz9uwq2pR5HVD11azLw.roa
Signing time: Tue 08 Feb 2022 11:23:30 +0000
ROA not before: Tue 08 Feb 2022 11:23:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59944
IP address blocks: 185.65.96.0/22 maxlen: 24
2a03:1ae0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407270701 (0x1846752d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e54d092047dbe9a968a160f315fab9bb9c8356d7
Validity
Not Before: Feb 8 11:23:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cceccbd0ee76b3f6ec2ada94791d50f5d5accbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:aa:63:96:07:e4:bc:14:97:5d:d2:67:51:eb:
6a:d3:64:b1:4e:c4:25:3c:3a:ec:42:48:18:04:f4:
71:76:6a:d3:b8:1c:36:82:9a:e7:a2:f4:62:7c:0d:
8e:6c:29:bc:f3:19:99:80:c0:ab:f2:61:4d:5d:5e:
9d:0d:40:a0:3c:81:41:8e:db:c8:c8:b7:f4:11:9a:
c7:f3:87:0b:a4:66:61:fa:89:fc:1d:da:2e:79:11:
98:97:e5:f3:15:31:8b:df:a4:dc:87:18:84:eb:0d:
85:b1:ab:cb:10:03:47:96:6b:99:50:e6:71:f6:35:
03:a4:a9:6d:05:97:3c:d7:e6:43:c7:92:4b:3a:cc:
29:bb:89:19:18:d0:6d:c3:7a:75:d3:99:9a:c2:4f:
90:4a:f4:5b:4e:8c:55:7e:5b:48:96:25:d6:0f:bb:
e2:cd:0d:7d:5f:55:8b:64:5d:12:2e:52:da:1b:8d:
bc:64:cb:80:6f:90:00:f4:47:be:cc:d7:3f:fd:9f:
66:21:ce:51:60:6c:7e:2e:69:a6:00:e7:14:83:a0:
01:7e:c9:ae:fb:1a:f4:89:84:5f:83:80:f0:2e:d1:
08:53:20:90:4b:0c:24:e0:d2:84:38:dc:98:33:05:
36:4b:1f:b0:0e:a7:cc:e2:22:75:8a:c9:43:8b:79:
78:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:CE:CC:BD:0E:E7:6B:3F:6E:C2:AD:A9:47:91:D5:0F:5D:5A:CC:BC
X509v3 Authority Key Identifier:
keyid:E5:4D:09:20:47:DB:E9:A9:68:A1:60:F3:15:FA:B9:BB:9C:83:56:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5U0JIEfb6alooWDzFfq5u5yDVtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/f7c636-0d1e-47f3-b05d-a7fd2f9e74cf/1/jM7MvQ7naz9uwq2pR5HVD11azLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/f7c636-0d1e-47f3-b05d-a7fd2f9e74cf/1/5U0JIEfb6alooWDzFfq5u5yDVtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.96.0/22
IPv6:
2a03:1ae0::/32
Signature Algorithm: sha256WithRSAEncryption
df:6e:6e:2b:19:97:32:66:2f:0d:52:43:c1:64:c4:a0:9e:31:
18:34:19:e1:ba:e9:7e:29:33:2b:45:aa:e7:b2:f5:44:0e:98:
06:8d:83:60:91:5c:6e:c8:f1:83:28:14:36:be:4f:28:3e:7a:
e2:18:11:56:02:8b:25:71:ec:85:74:00:bc:39:6e:4b:c1:24:
3a:38:f9:8e:11:71:bb:bd:ea:48:58:92:ea:79:58:fa:06:82:
30:8d:05:13:30:05:b5:0d:85:7f:f1:4d:7b:12:db:f7:b8:6f:
81:2c:90:19:7a:ae:10:fe:78:b8:a3:b4:99:c9:38:6c:db:69:
a1:89:fc:2b:7b:a9:43:6f:52:2d:17:75:3c:0e:56:c7:71:a0:
1b:8f:f1:3f:bb:cf:f3:6d:7b:55:35:08:21:5d:6a:ed:cc:43:
8f:a6:83:a0:d5:bb:42:70:55:ba:04:b1:c6:01:90:a2:82:f8:
d4:cf:f6:ef:7b:5e:d8:a2:62:72:45:60:1c:10:70:81:83:df:
16:98:32:c5:94:1a:c0:19:0e:1a:23:e0:75:0f:d4:cb:31:06:
50:27:af:55:37:f8:2b:ef:9d:31:74:3d:72:ad:04:ac:48:4d:
36:70:f2:7f:a4:16:26:96:60:b4:8d:6e:b5:4b:5d:a5:fc:3a:
3b:8d:f4:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:58 2023 by rpki-client on console-ams.rpki-client.org