Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/6xdpedBvQPSHpB_Ff4hs1WvB8tU.roa
File: 6xdpedBvQPSHpB_Ff4hs1WvB8tU.roa (raw, json)
Hash identifier: 2gJXg35lacnVTp9HK3qZi4dY78EFk8Ff0R04zmK+Rp8=
Subject key identifier: EB:17:69:79:D0:6F:40:F4:87:A4:1F:C5:7F:88:6C:D5:6B:C1:F2:D5
Certificate issuer: /CN=83609f2b9d2486f36e8cd29dfa2a756a48de7c51
Certificate serial: 09FB21D3
Authority key identifier: 83:60:9F:2B:9D:24:86:F3:6E:8C:D2:9D:FA:2A:75:6A:48:DE:7C:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2CfK50khvNujNKd-ip1akjefFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/6xdpedBvQPSHpB_Ff4hs1WvB8tU.roa
Signing time: Sat 01 Jan 2022 01:57:31 +0000
ROA not before: Sat 01 Jan 2022 01:57:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205192
IP address blocks: 185.226.161.0/24 maxlen: 24
185.226.160.0/24 maxlen: 24
185.226.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167453139 (0x9fb21d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83609f2b9d2486f36e8cd29dfa2a756a48de7c51
Validity
Not Before: Jan 1 01:57:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb176979d06f40f487a41fc57f886cd56bc1f2d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f0:54:84:b7:5d:23:29:3a:49:08:55:91:a6:
f1:c2:76:5d:4b:a7:86:fb:26:43:a0:57:d6:e6:e9:
63:50:f0:00:82:8d:73:09:26:b6:41:fe:80:80:9a:
d5:43:03:6a:a0:8f:cb:d0:d7:6b:15:84:dc:1a:d8:
38:e9:c8:ff:4b:a4:37:ef:a2:94:1f:05:5e:e9:5b:
69:21:e9:e2:84:ec:91:84:59:39:59:3c:06:09:c0:
70:52:e5:ee:87:53:9a:00:83:a3:a7:2e:68:6e:5f:
8f:bc:d8:d2:97:be:54:3d:d8:2e:4d:5b:55:39:53:
de:36:f9:d0:77:7c:43:68:c6:da:49:d7:df:c5:f7:
a6:d8:02:8a:2a:b2:fd:d3:70:24:08:63:2a:6b:c5:
47:96:d4:0c:46:3a:86:ed:e7:7a:bb:e6:bc:fe:5d:
4b:d1:78:50:49:e3:c9:66:97:a8:4e:a8:dc:6d:99:
c2:69:40:9a:59:dc:ed:cc:df:ef:49:4d:71:3e:d0:
f2:78:9f:ee:3a:96:36:49:17:9b:f6:d0:45:67:48:
98:02:51:66:c9:cc:b9:2b:4a:ac:45:0e:f8:60:40:
e6:fd:69:03:60:43:de:0d:9f:eb:aa:7f:85:c6:10:
86:8a:85:c8:84:73:91:43:31:39:5e:29:cd:59:c2:
15:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:17:69:79:D0:6F:40:F4:87:A4:1F:C5:7F:88:6C:D5:6B:C1:F2:D5
X509v3 Authority Key Identifier:
keyid:83:60:9F:2B:9D:24:86:F3:6E:8C:D2:9D:FA:2A:75:6A:48:DE:7C:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2CfK50khvNujNKd-ip1akjefFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/6xdpedBvQPSHpB_Ff4hs1WvB8tU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/g2CfK50khvNujNKd-ip1akjefFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.160.0/23
185.226.163.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:69:f1:95:01:8e:7a:f6:9f:e0:21:37:a1:4b:ce:d9:12:df:
c0:0d:90:da:12:e3:e0:8e:d2:b4:e8:aa:dd:7d:a1:57:36:b3:
5e:18:76:bf:8a:25:de:95:41:a1:63:14:9d:91:ff:ad:b1:34:
ed:9b:55:ec:fd:b4:31:2d:a5:38:e0:11:7b:61:fe:52:ba:bb:
2e:8e:8e:dd:93:a1:21:51:89:73:54:c1:b2:2b:ef:0c:31:2c:
ae:84:94:27:83:f1:fc:6b:28:c1:32:c0:65:f9:42:c4:15:79:
c8:99:e3:59:0f:9a:c4:50:4b:ae:6c:80:f9:ac:00:af:9f:7b:
c6:2b:52:14:0f:05:23:55:67:63:f7:ce:ae:cf:94:8c:7b:f1:
fc:33:19:53:c7:61:99:48:64:72:ee:2a:3b:eb:73:63:05:d4:
ef:1a:6c:28:d8:3a:79:54:61:d0:af:3d:73:d2:fc:f3:6d:4a:
fd:e7:77:25:bd:68:78:1b:62:0c:2f:bc:91:04:e7:f8:79:5a:
07:75:d8:52:72:98:3d:e8:5c:d7:10:41:3b:8e:8a:4b:f7:2b:
fc:7c:e7:eb:53:47:7b:83:69:00:24:09:29:67:fc:7c:36:03:
e8:66:26:48:23:7b:9e:aa:3f:20:55:37:4e:1d:5f:68:e3:02:
33:99:39:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:40 2023 by rpki-client on console-fra.rpki-client.org