Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/tYIJkCOSzTgHilPSAQ4YPa-fRzo.roa
File: tYIJkCOSzTgHilPSAQ4YPa-fRzo.roa (raw, json)
Hash identifier: +kFLoKqfqbuUqrYx1pV/GINnqdr7Pi70vY+LtdqpoOo=
Subject key identifier: B5:82:09:90:23:92:CD:38:07:8A:53:D2:01:0E:18:3D:AF:9F:47:3A
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 056DD3B1
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/tYIJkCOSzTgHilPSAQ4YPa-fRzo.roa
Signing time: Fri 29 Apr 2022 07:37:32 +0000
ROA not before: Fri 29 Apr 2022 07:37:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48881
IP address blocks: 185.104.180.0/22 maxlen: 22
185.104.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91083697 (0x56dd3b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Apr 29 07:37:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b58209902392cd38078a53d2010e183daf9f473a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b8:e6:67:c2:21:0a:6b:75:ae:f2:ad:a9:52:
ab:65:fd:42:a5:04:9a:bc:51:6b:01:96:1f:9e:6b:
a8:c6:72:93:87:bb:06:5d:92:4c:7c:49:6f:36:72:
67:1c:24:15:a6:fc:67:44:86:d8:2d:96:08:cb:05:
92:49:53:7d:45:57:a7:a8:17:93:c8:8d:35:d2:cd:
40:9c:20:42:d5:09:d6:84:b8:a7:d4:a3:21:6c:2c:
1a:6e:96:4e:31:61:5e:29:27:cd:b9:85:af:3a:3a:
c1:13:79:63:ca:59:83:90:d7:56:85:e3:70:e7:a2:
b3:c8:ee:46:1e:53:d4:9b:c8:35:06:a2:2e:de:5c:
b0:7e:ea:47:ac:7d:f3:7c:7a:03:47:d0:ac:34:01:
36:6b:fa:50:89:8b:13:00:e8:c6:bd:aa:75:d1:97:
0d:c2:5a:28:9d:e1:c7:df:bc:96:af:46:19:94:91:
be:8b:1b:40:f2:3b:d2:87:60:f3:ac:76:1c:06:4c:
b3:6d:18:ac:20:50:24:b2:c0:99:42:af:1a:0f:5e:
fc:f5:23:88:3a:a3:36:1a:b1:1d:33:06:7c:4b:df:
85:bc:e3:44:44:24:2c:50:d4:9e:66:0f:0d:0b:35:
39:40:72:98:16:7f:57:7e:ed:68:1a:e2:c8:6b:01:
7e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:82:09:90:23:92:CD:38:07:8A:53:D2:01:0E:18:3D:AF:9F:47:3A
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/tYIJkCOSzTgHilPSAQ4YPa-fRzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.48.0/21
185.104.180.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:59:86:73:41:28:53:3c:f9:b7:b7:57:e4:bf:ea:ac:23:32:
2c:4c:c6:43:e1:89:e0:90:3f:4e:35:f2:9a:31:06:32:14:66:
d8:19:e7:c7:c4:3e:67:95:65:30:e6:63:dc:ea:25:17:ec:cb:
16:df:e5:95:ae:94:ba:75:4d:41:c3:95:fb:bd:c2:a8:84:fe:
86:8e:59:78:75:5b:cb:9f:cf:cf:f7:aa:68:78:7b:82:a5:74:
a9:cc:ee:b6:ce:9c:08:a3:36:06:ce:70:80:81:c8:12:bf:8d:
e7:e9:d2:e5:fd:18:24:7d:99:c3:48:1f:b8:d5:2d:9c:c6:f0:
72:a7:7d:30:49:ae:ea:f1:b4:c3:fc:ef:cf:10:79:69:7d:e7:
a7:3b:81:5f:72:6d:1b:87:8e:65:2e:33:12:81:c7:db:b9:bf:
70:c1:55:06:da:4d:06:32:91:e8:5a:9f:e8:ab:82:f3:11:06:
0b:01:f2:f6:7c:b9:34:73:2f:24:67:97:a2:c0:f1:33:9b:74:
44:c8:79:4b:ad:57:50:a9:21:98:34:79:ec:6f:e8:31:e6:3d:
b7:87:a4:83:1e:3e:53:3f:e7:d5:21:8b:a0:96:74:2f:c7:8d:
bd:d0:7f:51:7a:ef:ef:8d:61:ef:8d:44:15:3a:33:08:31:18:
7a:2d:e7:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:39 2023 by rpki-client on console-ams.rpki-client.org