Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ef9860-2658-44df-b172-8066fa21241a/1/lShgxYljdSdAVhSV87xrUBFrA2Y.roa
File: lShgxYljdSdAVhSV87xrUBFrA2Y.roa (raw, json)
Hash identifier: ymIBpI6fikhR6/FWucoqjwjFQZr8PFS3AdtKEV9Yvkw=
Subject key identifier: 95:28:60:C5:89:63:75:27:40:56:14:95:F3:BC:6B:50:11:6B:03:66
Certificate issuer: /CN=ec97b72d5d4f750f1b138c2a901dd6510921be41
Certificate serial: 0A873C82
Authority key identifier: EC:97:B7:2D:5D:4F:75:0F:1B:13:8C:2A:90:1D:D6:51:09:21:BE:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Je3LV1PdQ8bE4wqkB3WUQkhvkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ef9860-2658-44df-b172-8066fa21241a/1/lShgxYljdSdAVhSV87xrUBFrA2Y.roa
Signing time: Sat 01 Jan 2022 08:55:21 +0000
ROA not before: Sat 01 Jan 2022 08:55:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21080
IP address blocks: 185.76.160.0/22 maxlen: 22
195.85.237.0/24 maxlen: 24
2001:67c:253c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176635010 (0xa873c82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec97b72d5d4f750f1b138c2a901dd6510921be41
Validity
Not Before: Jan 1 08:55:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=952860c58963752740561495f3bc6b50116b0366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:58:d5:28:34:d3:e6:91:51:09:78:a3:a7:29:
1b:35:e5:26:05:1f:8c:4b:bc:50:44:1e:90:67:2c:
85:6d:92:0b:c1:00:a7:fe:3c:fb:88:5f:73:3b:02:
10:13:f1:cb:3d:bc:cc:7e:af:95:70:cb:44:8a:93:
05:89:2e:58:e4:0c:37:e3:9e:0d:73:c6:0c:b2:89:
b0:c9:f8:13:b2:07:ca:6a:2d:e3:c5:d5:d5:77:f0:
34:6a:da:c2:da:a7:b5:04:e5:23:bb:8a:92:19:f0:
38:80:53:46:fc:aa:2d:00:8f:d8:f5:bc:b9:55:4c:
1f:26:06:b0:e0:da:2a:f3:c5:0f:66:be:2f:c1:1a:
19:9b:79:5a:26:b6:f9:d8:2c:0c:83:a3:90:77:93:
1c:7b:f8:65:12:cc:24:e3:23:42:ec:52:14:a6:48:
1e:5e:35:10:27:db:3c:f4:f5:e5:9e:e8:d8:d1:ad:
2d:7d:f1:42:9d:fd:1a:fd:85:1f:61:e4:bc:3b:94:
30:0d:35:5e:74:12:26:a2:d5:d9:f8:a8:cf:ef:87:
0a:d9:4c:a4:39:f3:9d:34:3c:8a:ff:f6:9c:72:bb:
f2:d6:47:ab:7f:ab:67:b8:af:93:f3:bd:41:fd:22:
ac:83:33:0d:ac:96:f6:4a:f8:e5:18:52:d4:ba:a5:
eb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:28:60:C5:89:63:75:27:40:56:14:95:F3:BC:6B:50:11:6B:03:66
X509v3 Authority Key Identifier:
keyid:EC:97:B7:2D:5D:4F:75:0F:1B:13:8C:2A:90:1D:D6:51:09:21:BE:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Je3LV1PdQ8bE4wqkB3WUQkhvkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ef9860-2658-44df-b172-8066fa21241a/1/lShgxYljdSdAVhSV87xrUBFrA2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ef9860-2658-44df-b172-8066fa21241a/1/7Je3LV1PdQ8bE4wqkB3WUQkhvkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.160.0/22
195.85.237.0/24
IPv6:
2001:67c:253c::/48
Signature Algorithm: sha256WithRSAEncryption
66:63:76:af:ca:32:3d:b0:c8:89:6e:a5:84:f6:d4:d0:7b:52:
d0:76:34:39:a7:57:b5:31:0d:f9:31:50:1c:b4:f2:66:6e:1f:
8c:b5:50:a3:23:14:75:63:f8:e2:20:aa:63:96:f6:bf:7d:f1:
86:8b:68:b0:25:62:1d:76:fd:c7:36:d4:e4:ea:40:d5:3c:19:
e3:74:f5:46:13:bb:87:8c:1f:5f:1d:e2:00:38:0b:a3:9b:46:
77:7f:86:45:a4:c0:a9:dc:c5:22:e7:40:cb:36:a1:3f:3d:33:
ae:0e:ef:e8:5a:a7:24:8a:58:ab:c2:82:6b:6f:55:08:45:25:
2b:20:f8:28:ee:30:ac:ec:9f:bc:27:cb:55:c9:28:83:dc:03:
c8:3c:af:f5:62:e3:8d:74:86:23:71:46:b7:e2:38:0d:88:9a:
b0:d7:3b:26:c4:ed:9e:bc:3b:bc:60:20:66:76:36:10:25:4c:
d5:48:53:94:f9:e7:e0:48:6c:5e:b2:81:5d:95:20:af:aa:8f:
53:2f:41:2f:f4:65:62:fe:35:4d:72:c9:6d:86:8f:da:ad:f6:
23:ea:7a:54:54:e5:c9:19:c6:4d:7a:ed:0b:49:3b:7e:b7:b6:
70:cf:bd:97:9a:e9:67:63:25:9e:3e:4f:23:4d:53:53:e4:11:
a2:94:d8:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:26 2023 by rpki-client on console-fra.rpki-client.org