Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/4b1a80-4e5f-49e7-b502-a22ffee4a515/1/SuZIYl74PQR-FAl8HnkMYWgSwyA.roa
File: SuZIYl74PQR-FAl8HnkMYWgSwyA.roa (raw, json)
Hash identifier: uASWNitInjwjgkurpQ1MsElvV0bBlFjwVbKSEPCwApc=
Subject key identifier: 4A:E6:48:62:5E:F8:3D:04:7E:14:09:7C:1E:79:0C:61:68:12:C3:20
Certificate issuer: /CN=a2d952245bb34e40cdab5d4b090143c0d8581390
Certificate serial: 0B3F7ECA
Authority key identifier: A2:D9:52:24:5B:B3:4E:40:CD:AB:5D:4B:09:01:43:C0:D8:58:13:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otlSJFuzTkDNq11LCQFDwNhYE5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/4b1a80-4e5f-49e7-b502-a22ffee4a515/1/SuZIYl74PQR-FAl8HnkMYWgSwyA.roa
Signing time: Sat 01 Jan 2022 02:53:50 +0000
ROA not before: Sat 01 Jan 2022 02:53:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206656
IP address blocks: 185.179.192.0/22 maxlen: 22
2a0c:4140::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188710602 (0xb3f7eca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d952245bb34e40cdab5d4b090143c0d8581390
Validity
Not Before: Jan 1 02:53:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ae648625ef83d047e14097c1e790c616812c320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:57:44:25:f2:3d:61:37:22:e1:0f:b3:52:e5:
12:55:28:75:07:4b:3c:fb:9a:03:64:0f:99:4d:fe:
70:97:56:1c:68:11:a2:88:4a:69:91:66:cd:00:9b:
4e:7a:66:13:2e:48:a2:44:6d:f3:9d:50:a9:0f:81:
bb:68:36:56:4a:40:a2:38:74:42:14:69:53:4e:0e:
a4:21:49:c7:6d:ff:b9:3d:b9:08:21:ea:4c:5e:b9:
14:ca:4c:2f:c5:48:2a:62:65:cf:57:a8:a2:c2:69:
0a:37:97:8a:e3:4c:c4:a1:1b:90:87:8b:3c:b4:76:
a6:5b:a7:68:81:3a:49:6e:87:a2:da:cc:9f:ca:f7:
fe:a8:4b:d4:0b:e5:7d:cf:0d:d5:90:ab:50:f4:48:
73:88:34:0b:d0:e1:cb:65:56:33:75:b3:25:61:f6:
f4:ef:9a:64:ad:34:7f:e0:7a:90:da:ed:2b:6c:24:
e8:de:db:5b:73:79:8d:b1:47:d3:f4:96:0a:6e:d7:
56:42:56:46:d4:7b:1a:44:4e:16:54:12:af:8b:8f:
e2:5a:ad:de:68:e2:8f:be:7d:5f:05:d1:78:59:15:
d8:ce:2f:df:31:ae:43:cb:02:39:2a:52:a0:00:fa:
27:21:c5:8f:c9:b9:05:61:fb:b7:f5:f4:78:ea:a8:
63:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E6:48:62:5E:F8:3D:04:7E:14:09:7C:1E:79:0C:61:68:12:C3:20
X509v3 Authority Key Identifier:
keyid:A2:D9:52:24:5B:B3:4E:40:CD:AB:5D:4B:09:01:43:C0:D8:58:13:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otlSJFuzTkDNq11LCQFDwNhYE5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/4b1a80-4e5f-49e7-b502-a22ffee4a515/1/SuZIYl74PQR-FAl8HnkMYWgSwyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/4b1a80-4e5f-49e7-b502-a22ffee4a515/1/otlSJFuzTkDNq11LCQFDwNhYE5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.192.0/22
IPv6:
2a0c:4140::/32
Signature Algorithm: sha256WithRSAEncryption
9d:92:77:83:04:9d:d4:ee:25:ee:35:26:79:37:a6:b1:f1:d4:
77:5e:90:1f:f4:06:07:f1:5c:9a:71:1d:6e:a2:6f:52:4a:3c:
bb:5a:38:d1:a4:b4:64:4d:20:78:25:46:a3:83:79:d0:95:19:
5a:8f:ef:f4:b4:dc:2d:a1:95:bc:cf:da:30:ea:84:62:ad:f6:
57:b5:35:99:75:5d:f0:b7:a8:87:c6:6b:9c:09:97:f9:db:55:
d7:e1:32:e9:21:0b:76:42:b6:0a:9a:4e:2c:e5:d4:34:23:f5:
46:d1:02:ad:46:40:30:c2:c3:ca:42:8d:9d:38:43:53:45:5f:
70:33:dd:06:28:b7:25:20:d2:0a:3d:11:2e:74:48:52:aa:03:
4d:34:cc:c3:0a:0d:1d:da:8b:ed:e6:cc:01:33:c3:f7:29:03:
bb:bb:9c:c5:04:e1:87:39:7c:02:05:5b:57:83:6f:1a:f9:04:
06:75:46:3d:2a:c0:82:d8:32:f6:d7:e5:57:c1:50:52:c6:5d:
fd:5f:7c:84:0f:3e:59:a4:b0:87:26:11:47:4f:62:34:53:d1:
df:78:17:e1:84:4d:d4:29:63:18:e7:dd:97:b1:8a:1a:2c:bf:
5f:15:7f:8f:de:b0:57:86:bf:b2:44:48:f5:a0:45:bb:e2:e2:
24:3f:82:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:41 2024 by rpki-client on console-ams.rpki-client.org