Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/71a349-baf4-47b3-a9ed-c6730c8e46aa/1/4uJbUA7SPeeTRHmF4n9YC4oDGJU.roa
File: 4uJbUA7SPeeTRHmF4n9YC4oDGJU.roa (raw, json)
Hash identifier: FAf8M5PAXXSBw/KqchmklS/7L/SFP1kYIl7qccy0zRQ=
Subject key identifier: E2:E2:5B:50:0E:D2:3D:E7:93:44:79:85:E2:7F:58:0B:8A:03:18:95
Certificate issuer: /CN=72493d60b50427dd4316ed9505ad099eb5ac2e34
Certificate serial: 03262BEA
Authority key identifier: 72:49:3D:60:B5:04:27:DD:43:16:ED:95:05:AD:09:9E:B5:AC:2E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckk9YLUEJ91DFu2VBa0JnrWsLjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/71a349-baf4-47b3-a9ed-c6730c8e46aa/1/4uJbUA7SPeeTRHmF4n9YC4oDGJU.roa
Signing time: Sat 01 Jan 2022 07:58:08 +0000
ROA not before: Sat 01 Jan 2022 07:58:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203132
IP address blocks: 185.142.186.0/24 maxlen: 24
2a07:2f00:dead::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52833258 (0x3262bea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72493d60b50427dd4316ed9505ad099eb5ac2e34
Validity
Not Before: Jan 1 07:58:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2e25b500ed23de793447985e27f580b8a031895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c9:93:e8:1c:5d:97:bb:3e:f6:38:7d:01:0f:
18:38:6b:89:22:01:24:eb:dd:63:36:63:94:f0:74:
16:13:6f:63:83:b8:e9:99:e2:bf:1d:7b:7d:e3:1e:
5b:66:cb:a5:fa:2f:41:48:0f:c0:cc:a5:03:cb:ed:
53:8b:8e:e3:df:05:5e:2a:4f:0a:85:3f:63:8c:2e:
26:c2:5f:13:50:34:1f:92:07:aa:83:68:40:74:96:
36:51:70:52:c0:3f:aa:b7:cd:82:eb:ab:2a:79:2e:
d2:27:10:22:42:a0:57:e4:58:bc:02:69:55:9e:c8:
0a:7e:04:f0:77:45:12:dd:7e:8e:30:32:b3:26:ac:
d5:0c:fd:ef:11:80:25:e7:2b:39:e5:39:f9:99:82:
bf:07:95:5f:b6:d4:a4:ee:14:7c:49:cc:c6:40:e6:
d9:b3:38:db:c7:db:9e:15:28:8f:23:46:97:5f:83:
bf:56:93:f0:b0:66:15:61:b8:1b:58:1d:36:51:4f:
be:ca:c3:e0:1d:63:bd:e0:b6:b4:30:85:90:b3:dc:
85:27:e8:2e:78:01:e9:26:77:de:e7:56:30:3c:79:
20:f5:08:37:d0:28:d2:3d:c3:99:99:f0:9f:21:b5:
1f:66:92:eb:a5:78:e2:b7:53:41:b8:14:f4:c8:50:
bc:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E2:5B:50:0E:D2:3D:E7:93:44:79:85:E2:7F:58:0B:8A:03:18:95
X509v3 Authority Key Identifier:
keyid:72:49:3D:60:B5:04:27:DD:43:16:ED:95:05:AD:09:9E:B5:AC:2E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckk9YLUEJ91DFu2VBa0JnrWsLjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/71a349-baf4-47b3-a9ed-c6730c8e46aa/1/4uJbUA7SPeeTRHmF4n9YC4oDGJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/71a349-baf4-47b3-a9ed-c6730c8e46aa/1/ckk9YLUEJ91DFu2VBa0JnrWsLjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.186.0/24
IPv6:
2a07:2f00:dead::/48
Signature Algorithm: sha256WithRSAEncryption
70:a9:91:0c:2a:6e:43:dc:56:6c:31:ae:f3:d7:e4:91:05:91:
3b:67:46:2f:59:62:4d:e6:e3:9d:b5:f6:b2:78:af:ea:e6:94:
9c:d3:fd:f0:20:d3:07:5c:1e:ea:6b:9b:36:ea:a5:47:a1:6b:
6a:e0:66:d3:cb:0c:32:4c:cf:3d:d3:48:06:72:d6:55:60:58:
63:4e:05:ea:cb:66:9a:c1:f7:9a:06:dd:50:e7:a6:64:83:56:
94:58:70:ff:8a:6b:8d:b5:b3:2f:66:6a:ca:27:48:00:23:94:
b8:d5:2f:61:e7:91:3e:8e:8a:80:46:7c:1d:ec:e0:b9:9b:3b:
f3:ff:22:b5:aa:8a:32:ef:17:df:65:33:2f:70:fa:63:01:78:
10:15:c1:7d:63:5a:99:47:72:77:c0:c5:40:35:9b:2b:e2:e6:
78:db:d0:69:3d:27:91:f1:56:9d:02:84:19:00:9b:e3:87:ac:
54:fb:13:86:d8:24:3e:56:a3:bb:09:c6:12:78:cf:36:64:1e:
41:4a:e5:89:80:79:1c:0f:b6:8d:f1:4e:7c:8d:14:e5:2f:8d:
bf:79:68:eb:6c:b8:39:dc:b4:17:29:13:f3:41:8a:59:2e:c0:
3c:88:97:5d:7e:2f:20:e8:09:d7:53:3b:c4:eb:c7:6c:88:fc:
25:68:1a:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:06 2023 by rpki-client on console-ams.rpki-client.org