Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/U7uAi7iU2zHVTnURZH13CSbs_EQ.roa
File: U7uAi7iU2zHVTnURZH13CSbs_EQ.roa (raw, json)
Hash identifier: HGhiD9EN/W6G8Hgi+/5ZMrRCGd8t5WZocJmYufvnz18=
Subject key identifier: 53:BB:80:8B:B8:94:DB:31:D5:4E:75:11:64:7D:77:09:26:EC:FC:44
Certificate issuer: /CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Certificate serial: 058282B1
Authority key identifier: 25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/U7uAi7iU2zHVTnURZH13CSbs_EQ.roa
Signing time: Sat 01 Jan 2022 03:58:49 +0000
ROA not before: Sat 01 Jan 2022 03:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25117
IP address blocks: 185.228.228.0/22 maxlen: 24
2a03:7787:fffc::/47 maxlen: 47
2a03:7787:fffe::/47 maxlen: 47
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92439217 (0x58282b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Validity
Not Before: Jan 1 03:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53bb808bb894db31d54e7511647d770926ecfc44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7b:4e:e9:21:16:e2:cd:75:eb:00:c4:da:14:
71:b6:0b:6b:ea:3d:47:93:00:b5:92:e2:6e:46:a2:
af:13:87:16:bb:b8:be:7b:68:48:cc:8f:50:83:8c:
c5:14:53:1e:d3:7c:e3:fd:89:e9:3f:cb:2b:ca:19:
4d:7a:f4:34:89:89:ff:1c:ec:ae:0d:a1:19:15:94:
b0:6e:4e:c4:f9:bc:83:d2:3e:4c:5b:b2:28:5a:7c:
f6:7c:26:34:43:d7:ea:78:06:6b:fc:37:a5:80:2b:
e4:2e:17:c1:e6:b3:f4:be:bc:2e:6b:3b:09:4d:46:
95:3a:2e:8d:48:a7:d7:b6:55:38:8a:4b:38:44:77:
f9:27:67:e0:80:d0:c5:bc:b5:90:6d:02:95:78:1f:
94:67:e7:24:4d:1b:b5:c7:19:27:37:63:ea:45:2e:
1d:c5:dc:f5:95:9c:b4:4c:3d:4c:16:fb:fe:1e:90:
88:58:4c:ce:75:a6:11:74:81:77:02:74:9a:83:38:
4e:5b:1e:e8:20:53:23:d6:01:43:55:99:a1:04:97:
3f:89:55:2f:bc:99:d1:82:fe:de:3c:c1:a5:33:fd:
13:a0:62:25:41:97:f5:4f:05:fd:44:0f:f3:f3:61:
0d:ec:10:cb:a6:25:da:a8:30:ba:05:33:51:e0:b0:
9e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BB:80:8B:B8:94:DB:31:D5:4E:75:11:64:7D:77:09:26:EC:FC:44
X509v3 Authority Key Identifier:
keyid:25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/U7uAi7iU2zHVTnURZH13CSbs_EQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.228.0/22
IPv6:
2a03:7787:fffc::/46
Signature Algorithm: sha256WithRSAEncryption
3a:b4:c3:5d:43:df:7d:5b:8a:99:11:35:23:73:43:a2:e2:7d:
26:e9:81:82:a2:d8:ed:f3:6c:92:11:fe:9c:66:2c:b3:3a:7f:
0d:37:13:a8:2a:6d:b1:2c:8c:20:0e:6c:cd:31:94:04:52:b8:
9e:ce:7e:90:d2:e6:5b:db:18:b3:0d:16:43:30:e7:07:6f:d9:
83:11:ab:4d:ab:be:7d:4d:7d:cd:19:55:46:1a:cb:97:43:6f:
36:20:c4:95:e1:a5:8a:d7:66:26:a2:e2:23:31:1e:03:5b:77:
ac:82:1a:0e:3b:24:ea:06:77:0a:46:4a:de:23:03:59:10:1e:
70:a1:d0:6c:2d:ea:9d:cf:1f:8d:1d:8e:71:4d:35:c6:6e:79:
8a:b1:b1:52:55:05:04:a7:20:bf:80:55:d6:96:62:ab:e6:67:
b6:f8:fe:32:fc:6a:f3:da:3f:3e:0a:de:53:cc:61:c9:fe:97:
45:5c:a8:a6:90:6f:80:0c:89:c6:a2:bb:8a:4a:c8:5c:6d:53:
8e:25:ea:34:b1:5b:71:e0:fa:bd:44:6e:50:b5:04:49:ff:69:
eb:7b:13:70:d8:29:58:88:e7:93:bf:68:1b:56:5e:b4:0b:6f:
91:f8:5f:cd:6b:cf:e0:a8:1b:bc:12:38:38:af:e5:22:b0:ce:
2e:98:d0:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:33 2023 by rpki-client on console-ams.rpki-client.org