Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/5c36f7-9fca-4896-ab72-05e7fa630bbc/1/R3lzwzy06pTx9yE0aE26w5L2RZU.roa
File: R3lzwzy06pTx9yE0aE26w5L2RZU.roa (raw, json)
Hash identifier: cyHP3HO2c/jh0jVkY5fcIQ/o6iHuCa2fUtF7Qn1TpAM=
Subject key identifier: 47:79:73:C3:3C:B4:EA:94:F1:F7:21:34:68:4D:BA:C3:92:F6:45:95
Certificate issuer: /CN=9a98febc33e4d517ae3d9ca3e932e2d4ba6885ac
Certificate serial: 018552A98ED7B5A526404AA9F511F194BB84
Authority key identifier: 9A:98:FE:BC:33:E4:D5:17:AE:3D:9C:A3:E9:32:E2:D4:BA:68:85:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mpj-vDPk1ReuPZyj6TLi1Lpohaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/5c36f7-9fca-4896-ab72-05e7fa630bbc/1/R3lzwzy06pTx9yE0aE26w5L2RZU.roa
Signing time: Tue 27 Dec 2022 08:18:41 +0000
ROA not before: Tue 27 Dec 2022 08:18:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210431
IP address blocks: 185.140.175.0/24 maxlen: 24
2a12:7380::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:52:a9:8e:d7:b5:a5:26:40:4a:a9:f5:11:f1:94:bb:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a98febc33e4d517ae3d9ca3e932e2d4ba6885ac
Validity
Not Before: Dec 27 08:18:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=477973c33cb4ea94f1f72134684dbac392f64595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ca:a3:0f:59:a6:8a:5d:c3:00:aa:b2:e5:71:
1b:d2:23:ea:41:b8:d7:f6:f1:70:dc:49:43:27:2c:
60:2d:8f:2d:66:0f:3f:3f:61:cf:1b:05:94:40:22:
0b:4d:42:05:08:24:7a:85:f8:59:3f:03:2b:29:73:
9b:43:3c:b1:b9:5f:0f:1b:9a:20:04:c8:01:87:6a:
77:84:6c:1e:fe:3e:aa:4d:17:77:47:ad:e1:2a:1d:
05:b6:6a:37:ef:a7:1f:c1:b0:4a:c7:f8:3e:07:87:
10:bf:08:2c:02:b8:ac:c4:21:5a:fc:ef:f0:0d:83:
cf:b4:b7:7b:b6:0b:f7:3e:f7:a9:09:a4:95:ef:4d:
80:76:1b:ee:2b:ce:96:b4:28:a7:10:32:ff:13:a1:
56:10:3d:24:98:9a:0e:59:65:d4:de:32:74:35:17:
93:71:ad:ea:23:d1:98:ae:ce:36:18:d7:f0:c4:47:
75:06:a7:28:b1:c5:7a:58:32:44:e9:1f:6e:88:74:
92:b2:57:9a:3b:86:ce:20:a7:e0:35:97:6a:55:a3:
9d:4d:4b:c5:8d:ff:a8:62:c9:86:ea:cd:84:ba:18:
11:e2:99:a0:c1:7d:a5:a6:2d:1c:5b:48:fb:43:e7:
da:be:80:55:ef:02:6f:48:59:de:f4:d6:12:58:9d:
3c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:79:73:C3:3C:B4:EA:94:F1:F7:21:34:68:4D:BA:C3:92:F6:45:95
X509v3 Authority Key Identifier:
keyid:9A:98:FE:BC:33:E4:D5:17:AE:3D:9C:A3:E9:32:E2:D4:BA:68:85:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mpj-vDPk1ReuPZyj6TLi1Lpohaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/5c36f7-9fca-4896-ab72-05e7fa630bbc/1/R3lzwzy06pTx9yE0aE26w5L2RZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/5c36f7-9fca-4896-ab72-05e7fa630bbc/1/mpj-vDPk1ReuPZyj6TLi1Lpohaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.175.0/24
IPv6:
2a12:7380::/32
Signature Algorithm: sha256WithRSAEncryption
43:6e:b2:29:7f:a9:04:68:91:8e:a4:72:cb:3a:ab:63:ac:b0:
4f:f1:b7:f7:d5:10:ce:8f:65:dc:f7:e6:73:39:62:d9:e7:67:
79:4b:2f:15:3f:e4:3d:91:1a:b0:19:1f:97:bd:3a:c7:3c:f9:
61:85:30:d4:12:2a:b3:88:68:08:9e:ff:cf:34:d0:16:83:e1:
86:ea:7d:58:ec:60:99:53:98:41:4f:6f:41:57:ba:43:06:d1:
b2:ce:a1:69:b2:3b:f7:82:90:a3:d8:00:66:7e:7f:b2:ee:73:
5f:06:93:d5:7a:c8:0d:58:5e:99:b7:6b:3e:e2:ce:42:1b:ad:
8d:81:d3:08:35:aa:72:f1:da:20:5a:40:ed:dc:00:5f:f2:b1:
cc:19:19:7d:18:32:f1:b4:b5:fb:1b:9b:92:cf:9e:b6:fd:e7:
aa:17:3c:61:00:d9:4b:be:88:ce:ab:18:a3:ab:ec:c5:1b:33:
b1:1a:7a:5e:30:01:f2:43:9c:81:c8:dc:b2:6d:8c:e5:d8:97:
76:e1:21:94:0b:b5:60:6a:6b:3e:17:5b:fe:3c:17:45:98:02:
31:dd:77:b6:33:ac:b3:2d:df:3a:d3:f8:af:ba:66:0a:1d:bb:
bc:3a:52:61:7e:cd:b9:89:44:34:73:0f:fd:b7:31:aa:10:10:
65:b1:de:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:56 2023 by rpki-client on console-fra.rpki-client.org