Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/p8LBSsOMMvsWL7onHpCGsIY_Z-s.roa
File: p8LBSsOMMvsWL7onHpCGsIY_Z-s.roa (raw, json)
Hash identifier: BN7API43SFok1HJkTgYhP8Y+FOML7OqI4oM2YNoe23c=
Subject key identifier: A7:C2:C1:4A:C3:8C:32:FB:16:2F:BA:27:1E:90:86:B0:86:3F:67:EB
Certificate issuer: /CN=1ee5efbf65897160d55a52dc3a22c017876cd06c
Certificate serial: 0CC7B7DF
Authority key identifier: 1E:E5:EF:BF:65:89:71:60:D5:5A:52:DC:3A:22:C0:17:87:6C:D0:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/p8LBSsOMMvsWL7onHpCGsIY_Z-s.roa
Signing time: Sat 01 Jan 2022 07:52:39 +0000
ROA not before: Sat 01 Jan 2022 07:52:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205394
IP address blocks: 185.201.164.0/22 maxlen: 24
2a0a:c840::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 214415327 (0xcc7b7df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ee5efbf65897160d55a52dc3a22c017876cd06c
Validity
Not Before: Jan 1 07:52:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7c2c14ac38c32fb162fba271e9086b0863f67eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:29:b8:5f:fe:c6:b8:af:80:a9:ed:e3:d0:63:
3b:35:cd:07:3f:dd:c0:e8:30:d5:18:2d:8d:bf:b5:
93:2f:24:74:f3:19:f1:41:f7:b5:02:df:85:07:8a:
a0:af:54:1f:d4:e9:db:0d:c7:f1:af:7d:ba:04:18:
ed:11:ec:09:b5:95:b0:27:47:df:41:34:cf:3b:cc:
22:4f:fa:06:33:1b:4d:4b:4e:16:78:90:d8:01:2f:
9d:da:3b:00:7d:87:c2:c6:58:48:4b:bb:a5:84:9c:
5f:8d:ef:ff:0d:3c:38:62:81:05:f2:d0:c2:a7:38:
71:62:ce:4a:e6:f0:bb:cd:ac:1e:db:fd:48:19:c3:
74:6f:d1:0b:7f:b0:9e:22:ab:a2:b9:5e:75:0b:ce:
9c:71:2f:93:d1:dd:5f:7f:e1:86:69:90:94:0b:54:
17:31:15:0b:16:5f:e0:3f:f6:2f:68:f8:3f:f7:f1:
1b:11:a2:55:07:4b:c0:24:63:ca:a1:db:2c:0e:6a:
2e:07:6b:b9:5a:75:ab:48:7d:5c:60:9e:3a:f3:c3:
16:58:1c:d8:f2:84:62:e6:5b:e4:8b:9d:df:e4:62:
27:9b:6c:31:d1:00:33:62:7e:49:7e:37:e5:cf:cd:
bb:0f:d7:53:e3:2d:0f:7a:d2:dc:6d:01:3d:64:16:
fa:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:C2:C1:4A:C3:8C:32:FB:16:2F:BA:27:1E:90:86:B0:86:3F:67:EB
X509v3 Authority Key Identifier:
keyid:1E:E5:EF:BF:65:89:71:60:D5:5A:52:DC:3A:22:C0:17:87:6C:D0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/p8LBSsOMMvsWL7onHpCGsIY_Z-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.164.0/22
IPv6:
2a0a:c840::/29
Signature Algorithm: sha256WithRSAEncryption
04:ba:54:87:76:5e:43:bc:bc:0e:60:38:4c:1c:55:26:ad:9c:
3c:29:6f:49:96:85:aa:64:71:20:8c:26:c2:dd:62:ef:c3:94:
40:aa:4d:db:18:64:64:67:a3:d6:1b:28:19:46:bf:8d:8b:e7:
ba:88:2d:2d:22:7d:2e:50:c5:1e:42:92:d8:e8:20:af:2a:7f:
63:5d:b9:d2:5e:fe:63:87:8e:b0:0a:1e:78:e0:d4:dd:2a:45:
e7:14:d8:96:62:7b:28:6b:bc:72:fc:e6:a9:87:9f:96:fd:5b:
bf:b4:7f:80:f8:fd:0e:30:43:64:79:0e:f5:74:43:7e:97:3b:
0d:dd:62:5a:e3:22:43:12:20:8e:f1:35:31:95:cc:b4:94:70:
b2:44:a4:6a:70:4e:e1:5d:ef:2f:ad:d3:ec:7f:a4:4a:2e:56:
e5:c3:3a:c8:60:14:48:0e:bf:3f:27:f2:0f:95:91:c3:e2:1b:
57:e9:49:41:49:5a:89:76:7a:88:64:60:f5:e8:f2:6c:3d:c2:
a8:52:91:b7:d8:ea:d9:4f:a3:f8:f0:1c:05:44:15:1c:24:e6:
37:88:af:c7:ff:65:27:05:bf:ea:0d:0c:25:7d:79:5e:7c:1a:
ad:e3:17:31:a4:bf:09:7e:16:6a:27:44:f0:3a:df:e6:01:24:
48:4b:d3:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:41 2023 by rpki-client on console-fra.rpki-client.org