Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/de0d16-2f24-4c53-84b8-5d97b19fa595/1/es3pzNZMUgMwtdnSVRzR8iAb6Vo.roa
File: es3pzNZMUgMwtdnSVRzR8iAb6Vo.roa (raw, json)
Hash identifier: zhfTkSiNrnxiKuz05XVu5VIheK4zpih8b9j+9fyxSTc=
Subject key identifier: 7A:CD:E9:CC:D6:4C:52:03:30:B5:D9:D2:55:1C:D1:F2:20:1B:E9:5A
Certificate issuer: /CN=f94f2f2e21bc98d0c61b2c14c0ee019d331eae58
Certificate serial: 0A57B364
Authority key identifier: F9:4F:2F:2E:21:BC:98:D0:C6:1B:2C:14:C0:EE:01:9D:33:1E:AE:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-U8vLiG8mNDGGywUwO4BnTMerlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/de0d16-2f24-4c53-84b8-5d97b19fa595/1/es3pzNZMUgMwtdnSVRzR8iAb6Vo.roa
Signing time: Sat 01 Jan 2022 16:06:55 +0000
ROA not before: Sat 01 Jan 2022 16:06:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202882
IP address blocks: 185.151.220.0/22 maxlen: 22
2a07:7bc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173519716 (0xa57b364)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f94f2f2e21bc98d0c61b2c14c0ee019d331eae58
Validity
Not Before: Jan 1 16:06:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7acde9ccd64c520330b5d9d2551cd1f2201be95a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d6:c0:79:19:11:41:1a:c7:6a:cd:35:bd:1c:
47:28:cc:d1:a2:b7:59:19:dc:d3:b1:ab:97:99:7f:
b2:c2:52:8c:4d:50:a3:b1:44:0f:8e:3d:af:a7:db:
07:1b:3f:56:33:f0:a7:e7:40:07:f2:ee:98:89:fb:
9c:6b:a6:4c:56:cd:00:e2:dd:4b:16:b4:72:6f:05:
3c:85:a4:46:b0:8b:ff:d0:13:54:42:f6:1b:f9:3a:
49:ec:d2:cf:a3:ad:0d:3e:8d:b1:6e:af:e5:71:4a:
7e:04:7b:65:af:e9:e7:1c:74:c3:53:63:79:16:18:
eb:78:7c:54:b6:65:c7:cc:e1:bb:74:9d:3e:62:1b:
14:b0:54:b8:25:2c:57:06:77:01:68:39:72:73:99:
3e:dc:a5:bc:13:21:04:35:5f:d0:e8:f4:f3:88:3a:
42:29:43:25:59:9d:90:a2:5f:35:c0:9d:e6:68:9c:
3e:2a:62:b1:a1:63:5a:d6:30:37:36:ba:b9:ee:18:
cf:3b:fa:d5:d2:98:85:02:68:e3:2d:6d:1d:ed:a9:
e4:31:53:3a:dd:5d:ab:46:35:fb:c6:6e:76:48:7f:
fb:fe:70:ec:51:2c:f4:f3:e4:e2:20:e5:68:ee:93:
ed:cd:23:06:37:07:22:a3:b8:7b:d6:82:d9:94:1a:
03:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:CD:E9:CC:D6:4C:52:03:30:B5:D9:D2:55:1C:D1:F2:20:1B:E9:5A
X509v3 Authority Key Identifier:
keyid:F9:4F:2F:2E:21:BC:98:D0:C6:1B:2C:14:C0:EE:01:9D:33:1E:AE:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-U8vLiG8mNDGGywUwO4BnTMerlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/de0d16-2f24-4c53-84b8-5d97b19fa595/1/es3pzNZMUgMwtdnSVRzR8iAb6Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/de0d16-2f24-4c53-84b8-5d97b19fa595/1/1-U8vLiG8mNDGGywUwO4BnTMerlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.220.0/22
IPv6:
2a07:7bc0::/29
Signature Algorithm: sha256WithRSAEncryption
02:1e:04:7d:d3:63:5b:e9:69:89:9c:86:7b:73:98:ab:42:2a:
1c:25:c1:be:f7:6f:ad:03:68:1a:b3:7a:6a:d1:14:43:c5:2d:
f0:a2:60:86:7d:72:ef:10:aa:e1:48:2b:e2:43:92:1c:eb:a0:
61:ca:99:8e:af:2d:c3:53:63:71:f4:37:4d:94:cf:85:09:fc:
ee:16:49:5c:57:2f:0e:37:8d:67:81:55:a7:7e:46:8a:49:49:
7e:7c:ae:d1:b0:50:5f:93:e9:77:82:5c:e4:ec:24:1f:5c:d9:
0f:3b:7d:49:3b:47:04:df:05:b3:e8:00:f7:a9:e2:83:de:19:
fa:77:c5:db:76:2b:5b:b1:5d:79:07:db:d1:7b:d4:38:66:27:
4f:fc:6c:8f:ad:c3:ad:7a:1d:32:0d:f6:92:9a:3b:27:cf:a0:
c9:f9:e8:3e:33:2f:a7:8e:98:9c:30:d1:46:64:a2:3d:f0:d8:
2e:b3:8c:5f:83:6f:e8:14:21:c6:f8:16:d0:c1:73:41:e9:89:
06:68:07:ba:c3:bb:8d:9f:ce:f2:bb:26:53:97:19:ef:4f:6a:
f7:46:28:b5:bb:f9:8b:31:df:ba:bf:e2:86:37:20:60:a1:8c:
dd:73:f4:06:96:1b:69:fd:12:4a:b9:b6:8d:d2:29:01:d5:af:
52:38:ce:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:06 2023 by rpki-client on console-ams.rpki-client.org