Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/P5Vr2S1M3rxrM0pVVh4dfDYIJa8.roa
File: P5Vr2S1M3rxrM0pVVh4dfDYIJa8.roa (raw, json)
Hash identifier: 3JdV2bzenYrBtXf0Okme5n1t9/KueP61A7PGYz3Jv3c=
Subject key identifier: 3F:95:6B:D9:2D:4C:DE:BC:6B:33:4A:55:56:1E:1D:7C:36:08:25:AF
Certificate issuer: /CN=1230cd8e13c86d8ef835c1aac7d5f953455c035c
Certificate serial: 17D09EC4
Authority key identifier: 12:30:CD:8E:13:C8:6D:8E:F8:35:C1:AA:C7:D5:F9:53:45:5C:03:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EjDNjhPIbY74NcGqx9X5U0VcA1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/P5Vr2S1M3rxrM0pVVh4dfDYIJa8.roa
Signing time: Sat 01 Jan 2022 11:04:33 +0000
ROA not before: Sat 01 Jan 2022 11:04:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43366
IP address blocks: 185.67.200.0/22 maxlen: 24
185.88.148.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399548100 (0x17d09ec4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1230cd8e13c86d8ef835c1aac7d5f953455c035c
Validity
Not Before: Jan 1 11:04:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f956bd92d4cdebc6b334a55561e1d7c360825af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8c:f4:f4:a8:81:77:a3:bd:84:9d:2f:b1:4c:
e4:3e:03:fb:93:41:c2:fb:6a:be:8e:08:2d:f0:3f:
98:72:b7:7f:05:5d:12:56:58:dd:b9:84:22:83:df:
97:a0:55:db:a2:ce:9f:6c:e3:4a:e7:9e:da:21:1e:
f4:d2:d0:b2:e8:aa:76:d8:95:f0:6f:b6:dd:3a:f6:
6f:f0:97:8b:96:42:c9:86:6d:d5:e5:44:ef:62:e4:
1c:e9:81:dc:e5:4d:f2:39:02:02:7b:7b:ee:21:f2:
6f:c0:9a:3c:49:11:90:b5:12:b5:a1:2a:12:b7:d3:
ad:84:b4:33:af:bb:d7:d3:d1:88:3b:11:e2:75:fe:
da:2f:43:2c:9d:9d:52:2f:9b:df:8b:62:cc:b1:b5:
fd:1e:7e:d6:a5:a4:f9:fb:cb:51:02:87:03:35:3e:
ea:c0:79:ed:47:d1:d3:40:66:19:b8:0d:2e:6a:7f:
48:24:41:0d:68:77:c4:1c:54:e7:ca:0f:7a:78:a9:
2a:cd:6d:93:be:db:a3:d4:6f:90:16:40:f1:09:01:
53:5b:52:54:14:1c:e9:51:e8:7e:88:66:bd:fb:1b:
37:a1:d7:93:c6:25:cf:41:bd:84:a6:3c:0f:fd:9c:
0a:dc:49:20:1d:de:ba:88:d0:b9:2d:df:3d:c0:36:
8f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:95:6B:D9:2D:4C:DE:BC:6B:33:4A:55:56:1E:1D:7C:36:08:25:AF
X509v3 Authority Key Identifier:
keyid:12:30:CD:8E:13:C8:6D:8E:F8:35:C1:AA:C7:D5:F9:53:45:5C:03:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EjDNjhPIbY74NcGqx9X5U0VcA1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/P5Vr2S1M3rxrM0pVVh4dfDYIJa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/EjDNjhPIbY74NcGqx9X5U0VcA1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.200.0/22
185.88.148.0/22
Signature Algorithm: sha256WithRSAEncryption
53:eb:64:72:35:6b:69:00:ca:0b:e9:97:86:bc:66:69:10:e2:
24:09:0a:b7:14:02:86:32:39:0d:55:e7:58:aa:80:c4:82:9c:
22:69:f2:cc:31:7e:d8:32:00:41:c4:d6:57:4a:68:8b:18:11:
36:f2:16:d1:96:13:28:97:b5:c7:3d:e6:fd:99:69:50:4d:4a:
2c:54:96:38:a2:9c:02:d7:e7:30:64:e0:15:70:cb:ea:8d:8d:
9d:ec:6e:a2:84:e3:ad:15:d9:b4:d4:46:b0:a7:ec:0b:d1:f0:
9c:ae:2d:03:91:91:a1:d7:d0:b7:8b:a8:11:10:55:5d:e2:56:
89:4d:30:0f:97:ce:67:80:a9:c9:fe:4e:56:43:9a:40:5a:47:
02:b2:b1:a2:5b:f3:93:17:b2:ee:e8:12:bb:a5:48:de:7a:e1:
d4:7b:64:84:6c:a0:c1:e8:df:e4:7f:2b:e7:db:ad:a2:d4:2a:
56:24:f3:50:cf:13:2a:3b:ab:7e:bd:ea:dd:5b:a7:05:e6:2a:
e7:38:83:95:c6:9d:e6:f6:b6:8a:a6:12:d4:d5:ac:0f:c2:5e:
de:d7:5a:df:a0:ca:84:0a:eb:08:18:9a:ef:cb:73:7d:58:a8:
1a:8b:b6:de:8f:d1:0c:da:55:df:64:09:df:ad:fe:ff:23:b0:
0b:d6:1d:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:55 2023 by rpki-client on console-fra.rpki-client.org