Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/bUI3iJr9fLe2zd2adD0HIwESKKc.roa
File: bUI3iJr9fLe2zd2adD0HIwESKKc.roa (raw, json)
Hash identifier: L9b3mi9AcIwRj5UkxO2w5yqQqS+KLpxveKWVl0ybQBU=
Subject key identifier: 6D:42:37:88:9A:FD:7C:B7:B6:CD:DD:9A:74:3D:07:23:01:12:28:A7
Certificate issuer: /CN=a3e6e823f6dda67d283a9f41a72909906ac9a837
Certificate serial: 100B0FA2
Authority key identifier: A3:E6:E8:23:F6:DD:A6:7D:28:3A:9F:41:A7:29:09:90:6A:C9:A8:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-boI_bdpn0oOp9BpykJkGrJqDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/bUI3iJr9fLe2zd2adD0HIwESKKc.roa
Signing time: Sat 01 Jan 2022 14:04:17 +0000
ROA not before: Sat 01 Jan 2022 14:04:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199475
IP address blocks: 185.15.0.0/22 maxlen: 22
185.189.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 269160354 (0x100b0fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3e6e823f6dda67d283a9f41a72909906ac9a837
Validity
Not Before: Jan 1 14:04:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d4237889afd7cb7b6cddd9a743d0723011228a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f4:6c:f1:2d:dd:bc:57:ea:c5:32:08:4a:a5:
65:9b:ac:c4:e2:c3:02:77:6d:77:e2:b7:a8:6c:90:
97:13:78:8f:62:4e:34:41:69:c0:15:e4:64:5d:67:
00:93:b8:3b:d5:e1:fb:77:c3:b7:4d:b5:76:63:a3:
ec:a9:29:bd:de:67:62:b8:28:25:27:f1:99:7a:dc:
e3:0a:01:ed:29:2b:b5:76:11:76:32:da:27:e7:b5:
cc:ea:70:df:ec:cb:dd:db:d8:ac:c9:e2:f2:6a:90:
76:07:3f:60:69:6f:90:8b:6b:88:9f:5b:d5:40:32:
94:99:38:71:58:6c:43:c2:4b:f2:3b:cb:65:d5:90:
3d:eb:09:8c:ea:d3:3d:56:67:5d:5a:4a:c3:ec:c5:
6a:5c:fa:f4:e0:59:fc:75:3f:99:1c:86:73:36:95:
d1:5c:9f:27:35:c9:81:24:c2:8b:b9:a3:63:f9:a4:
18:50:ee:ac:f0:92:33:3f:d2:76:76:b6:64:ae:55:
6b:3a:87:1c:af:77:40:6b:84:df:8e:ed:49:7d:16:
e4:ee:6e:cd:0d:25:e7:2a:f4:63:94:f5:88:80:35:
1e:2b:b9:56:b0:45:69:94:69:ba:fc:86:9f:08:87:
34:8a:f5:1a:c1:15:b1:5c:34:a7:d4:2c:a0:66:9e:
8a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:42:37:88:9A:FD:7C:B7:B6:CD:DD:9A:74:3D:07:23:01:12:28:A7
X509v3 Authority Key Identifier:
keyid:A3:E6:E8:23:F6:DD:A6:7D:28:3A:9F:41:A7:29:09:90:6A:C9:A8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-boI_bdpn0oOp9BpykJkGrJqDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/bUI3iJr9fLe2zd2adD0HIwESKKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/o-boI_bdpn0oOp9BpykJkGrJqDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.0.0/22
185.189.136.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:84:de:43:5a:13:2d:c7:8f:6d:84:33:b0:52:19:70:f6:27:
48:ca:c4:6a:ad:d0:c9:07:f3:3d:ca:a4:22:d9:41:76:71:e1:
00:53:21:1c:8b:6a:c3:84:9f:4c:22:27:d4:ef:4d:42:44:74:
d7:a9:d1:33:d5:9f:a7:fa:ac:ed:27:20:b5:0a:cf:25:29:32:
6e:75:63:4c:db:d9:b7:86:81:a8:e4:9f:0c:9d:e7:23:12:d1:
5f:4d:6c:3a:5d:b6:81:51:db:69:58:36:cc:02:87:ca:c9:c8:
15:8c:46:2c:d1:e2:ac:25:91:cb:96:08:45:80:eb:52:b4:df:
7c:7c:2b:3d:ad:b3:d6:6a:1d:20:d8:3c:86:fc:24:0d:89:8d:
5d:11:39:ea:03:46:f9:60:b2:64:a6:dd:4d:1e:c4:a6:d1:9e:
fa:cc:02:3c:dd:e0:a8:52:74:1b:f5:cf:e0:37:47:67:4a:22:
db:34:5e:34:a3:c7:89:e5:87:d2:1d:7f:3a:27:95:30:67:be:
05:99:47:b5:a5:c9:e4:31:d1:c9:95:6b:ca:08:5f:d3:0a:4a:
27:cc:60:55:9a:fb:84:b5:0d:63:64:03:3d:6b:4b:e3:e0:d2:
e6:7b:57:db:25:6a:b1:97:95:25:a7:a8:28:a6:e3:f6:ca:54:
ca:15:b2:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:37 2024 by rpki-client on console-fra.rpki-client.org