Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/c8c5e4-225a-489e-9100-ab2ce94c1423/1/fCjHODKFyK7REBiY6o9dLEQcpJw.roa
File: fCjHODKFyK7REBiY6o9dLEQcpJw.roa (raw, json)
Hash identifier: z3K798GKzr2bl2qhxpqoI9g5EbShEOKx2F8oUAGqhfE=
Subject key identifier: 7C:28:C7:38:32:85:C8:AE:D1:10:18:98:EA:8F:5D:2C:44:1C:A4:9C
Certificate issuer: /CN=ee37d34869bc60b7d9e78335f4a32381fb7210e5
Certificate serial: 1BA4FECE
Authority key identifier: EE:37:D3:48:69:BC:60:B7:D9:E7:83:35:F4:A3:23:81:FB:72:10:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jfTSGm8YLfZ54M19KMjgftyEOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/c8c5e4-225a-489e-9100-ab2ce94c1423/1/fCjHODKFyK7REBiY6o9dLEQcpJw.roa
Signing time: Wed 18 May 2022 10:07:16 +0000
ROA not before: Wed 18 May 2022 10:07:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47187
IP address blocks: 185.29.144.0/24 maxlen: 24
185.29.145.0/24 maxlen: 24
185.29.146.0/24 maxlen: 24
185.29.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 463797966 (0x1ba4fece)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee37d34869bc60b7d9e78335f4a32381fb7210e5
Validity
Not Before: May 18 10:07:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c28c7383285c8aed1101898ea8f5d2c441ca49c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bb:07:8d:c2:3d:2c:f6:3d:54:24:5b:a0:9f:
65:7f:9c:f9:2f:c0:84:fd:b1:f7:5c:3d:72:69:46:
b0:7d:e4:4f:ca:2e:79:5c:28:8d:e7:bc:48:ba:46:
02:e0:1f:f0:4d:70:9a:53:ac:27:a6:e3:c5:26:ca:
bf:ea:85:21:90:e1:f3:14:8d:22:61:6f:e2:7d:24:
f7:f6:6f:b7:5d:e0:59:90:fb:6f:5b:e2:6b:81:1b:
9b:b5:9d:2e:3e:e1:f1:8f:53:af:17:bb:82:e7:42:
bc:30:e1:4e:5e:d0:16:00:5a:b6:27:a8:0f:14:54:
80:d3:0a:fa:21:4c:e8:59:90:f2:0d:a9:64:75:96:
71:32:d2:65:55:5b:dd:92:12:0d:05:91:24:c2:24:
45:a7:6b:6a:c0:37:f3:b2:89:4e:ec:b3:1c:f0:fe:
7b:a1:81:f0:55:13:f6:36:03:ed:5a:a0:63:b0:94:
31:95:26:27:98:4c:b5:f7:f7:88:c1:4e:29:78:44:
34:e9:aa:92:06:2c:e2:6a:9a:1c:78:c7:9c:a2:44:
8c:a1:d9:d8:1b:cf:15:d7:9f:cb:1c:cb:4d:94:4a:
50:8e:d0:78:13:b0:1b:83:3e:0f:d1:a1:f7:8b:bb:
65:df:fd:50:4a:6f:5d:25:5f:f6:53:4b:fd:e8:0d:
57:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:28:C7:38:32:85:C8:AE:D1:10:18:98:EA:8F:5D:2C:44:1C:A4:9C
X509v3 Authority Key Identifier:
keyid:EE:37:D3:48:69:BC:60:B7:D9:E7:83:35:F4:A3:23:81:FB:72:10:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jfTSGm8YLfZ54M19KMjgftyEOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/c8c5e4-225a-489e-9100-ab2ce94c1423/1/fCjHODKFyK7REBiY6o9dLEQcpJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/c8c5e4-225a-489e-9100-ab2ce94c1423/1/7jfTSGm8YLfZ54M19KMjgftyEOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.29.144.0/22
Signature Algorithm: sha256WithRSAEncryption
23:7e:8e:a9:bb:4b:6b:15:b3:32:69:aa:2b:50:03:d7:96:ec:
07:cd:c5:cb:5e:10:a5:b9:51:92:3d:5f:17:72:bd:0f:df:01:
b2:0a:8c:26:4c:57:65:d6:f9:f3:a7:cf:bb:dd:a2:bc:af:0e:
65:8b:32:20:2c:81:e5:c1:20:22:a8:fa:17:5c:74:92:c3:11:
85:e6:8b:4b:05:8a:7b:31:08:ac:eb:09:36:a9:53:f7:b6:58:
d9:a0:c0:be:c8:72:17:f1:34:29:aa:c8:17:b8:e8:2f:5a:f6:
6a:40:9d:fc:dc:71:fe:3d:51:46:32:4f:4a:6a:1e:9b:dc:ed:
83:72:f4:00:fd:fd:13:89:1e:36:c3:a6:89:42:14:e1:c1:c0:
59:d0:54:96:c1:f6:d2:3d:0b:5b:f6:50:41:0d:21:15:15:72:
cd:cc:5f:1d:66:b7:b0:c6:88:12:67:d3:ad:dc:b6:65:1c:9f:
85:23:79:10:1b:5a:1b:37:b9:e0:5e:f5:37:3d:bf:b1:62:92:
7c:b7:61:60:92:4e:47:7b:7b:60:0e:60:8f:5f:0b:25:7a:76:
65:7d:fc:b1:a9:74:2d:fc:05:a9:8c:13:dc:55:24:a0:45:94:
0a:71:cb:03:74:c8:2a:e6:e4:8f:9f:16:14:9a:f9:6f:83:b3:
26:b5:00:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:00 2023 by rpki-client on console-ams.rpki-client.org