Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0e0c90-717f-40ea-b17e-e6f9db74139d/1/49IHq07npRCVNaXT1uobFKNfjEQ.roa
File: 49IHq07npRCVNaXT1uobFKNfjEQ.roa (raw, json)
Hash identifier: /tiM0yhWe8xf/+kswwFYWEvGrhRFaTurhedBm+X/jyY=
Subject key identifier: E3:D2:07:AB:4E:E7:A5:10:95:35:A5:D3:D6:EA:1B:14:A3:5F:8C:44
Certificate issuer: /CN=1627573c68929ab2a4590e92a51abc40ea9e5817
Certificate serial: 10844C5E
Authority key identifier: 16:27:57:3C:68:92:9A:B2:A4:59:0E:92:A5:1A:BC:40:EA:9E:58:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FidXPGiSmrKkWQ6SpRq8QOqeWBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0e0c90-717f-40ea-b17e-e6f9db74139d/1/49IHq07npRCVNaXT1uobFKNfjEQ.roa
Signing time: Sat 01 Jan 2022 10:04:03 +0000
ROA not before: Sat 01 Jan 2022 10:04:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44808
IP address blocks: 185.175.96.0/22 maxlen: 22
2a0b:e300::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277105758 (0x10844c5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1627573c68929ab2a4590e92a51abc40ea9e5817
Validity
Not Before: Jan 1 10:04:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3d207ab4ee7a5109535a5d3d6ea1b14a35f8c44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:13:ab:1c:e1:7d:ff:aa:38:b7:01:69:29:dc:
22:e5:3c:34:8c:bf:86:49:bf:e0:73:06:94:c6:d9:
8f:08:71:d5:64:c4:a7:a4:69:1d:54:2f:7b:3b:b8:
51:37:7c:50:52:9f:16:3a:77:6b:1f:8d:9a:0a:94:
1e:57:3c:96:42:93:15:77:26:f2:a5:16:19:b5:67:
10:f4:6f:e0:d6:61:fe:09:21:3e:0f:56:17:78:e0:
af:df:5f:5e:4d:42:c5:a5:9f:99:eb:ec:1d:c6:c3:
6c:ba:bf:30:d7:cd:fe:b3:73:08:b2:1f:ac:51:6c:
a1:c2:48:3e:e8:23:d7:68:4e:16:04:32:92:5b:ea:
d1:6d:77:7a:c3:09:3c:a7:31:d5:04:55:d3:cc:5e:
ec:24:d0:1c:85:24:7b:92:e2:4d:93:7f:9a:43:8c:
2a:27:4a:24:e7:c4:b8:dd:41:d8:fb:41:bf:9f:df:
be:80:3b:f6:78:7a:c6:b9:a1:00:aa:9b:71:09:f6:
8e:13:4a:d4:d8:07:95:b6:90:e5:c6:04:62:be:12:
19:c7:4b:a6:a7:aa:37:db:f6:4d:9a:9e:f6:7d:02:
94:75:2d:60:33:73:48:f2:f5:e0:b6:e0:6f:c0:7d:
14:d7:9c:6f:f2:4a:bd:de:11:c9:1d:6c:e5:6a:b0:
71:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D2:07:AB:4E:E7:A5:10:95:35:A5:D3:D6:EA:1B:14:A3:5F:8C:44
X509v3 Authority Key Identifier:
keyid:16:27:57:3C:68:92:9A:B2:A4:59:0E:92:A5:1A:BC:40:EA:9E:58:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FidXPGiSmrKkWQ6SpRq8QOqeWBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e0c90-717f-40ea-b17e-e6f9db74139d/1/49IHq07npRCVNaXT1uobFKNfjEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e0c90-717f-40ea-b17e-e6f9db74139d/1/FidXPGiSmrKkWQ6SpRq8QOqeWBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.96.0/22
IPv6:
2a0b:e300::/32
Signature Algorithm: sha256WithRSAEncryption
6f:fe:fe:24:25:00:eb:ca:ca:b1:5c:8d:b7:7a:f8:32:ff:18:
46:e9:69:23:66:fa:f2:bb:ca:4c:7e:80:27:b6:d7:39:e3:1e:
dc:e6:b7:42:9f:5c:61:b1:27:92:3c:5a:87:4e:96:32:64:13:
fe:97:54:01:38:84:f3:60:d5:a5:65:d5:71:f2:f6:2d:fa:a2:
94:94:d4:6b:a8:0d:bc:11:e7:02:85:2d:7c:00:b1:fb:4e:d6:
b4:9a:67:79:42:f1:37:20:a8:96:06:f1:23:98:5a:5a:6b:2f:
1c:6f:b9:3f:71:8c:1d:d2:25:6d:43:38:b7:bd:98:4c:d6:17:
50:ce:43:92:75:ac:72:d3:b4:96:5e:06:9e:d6:1d:ef:3a:ba:
d0:0c:1a:42:58:7d:24:52:f3:c2:1c:5e:4c:f4:67:02:b3:4f:
b7:e7:f5:e5:08:00:46:65:98:97:c9:a8:63:fc:1d:52:2c:fc:
78:53:c2:d2:53:44:88:b0:35:86:e6:da:14:d1:aa:de:ec:5f:
c8:39:dc:3a:a7:83:3f:58:f1:25:f4:5e:9e:22:ab:7f:6f:c4:
a8:ad:5f:78:12:7e:e3:51:f1:39:1e:87:52:8a:bc:93:6f:f9:
c9:40:96:1d:c0:25:8e:60:3d:3b:80:c5:b4:38:21:ab:c4:87:
13:fa:3e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:16 2023 by rpki-client on console-ams.rpki-client.org