Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f56d7f-1b78-4453-81e7-ba56378a6476/1/umA8_mVuTRtZ0xhtbEC7rIBtkDY.roa
File: umA8_mVuTRtZ0xhtbEC7rIBtkDY.roa (raw, json)
Hash identifier: oODhBhajSsSAXN2fweyBfsdrpX2BbWWyl3/jeug5qUA=
Subject key identifier: BA:60:3C:FE:65:6E:4D:1B:59:D3:18:6D:6C:40:BB:AC:80:6D:90:36
Certificate issuer: /CN=153b46702839a795baba8d8d15ecdcca637e336c
Certificate serial: 062879BB
Authority key identifier: 15:3B:46:70:28:39:A7:95:BA:BA:8D:8D:15:EC:DC:CA:63:7E:33:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FTtGcCg5p5W6uo2NFezcymN-M2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f56d7f-1b78-4453-81e7-ba56378a6476/1/umA8_mVuTRtZ0xhtbEC7rIBtkDY.roa
Signing time: Sat 01 Jan 2022 14:01:27 +0000
ROA not before: Sat 01 Jan 2022 14:01:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8823
IP address blocks: 185.245.22.0/24 maxlen: 24
2a0c:d4c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103315899 (0x62879bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=153b46702839a795baba8d8d15ecdcca637e336c
Validity
Not Before: Jan 1 14:01:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba603cfe656e4d1b59d3186d6c40bbac806d9036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:10:76:fe:9f:3c:8d:6c:7a:37:db:84:c9:66:
9f:96:dd:29:73:a2:ef:8f:6f:57:cd:8a:67:d1:db:
10:ad:e2:3c:4d:74:f5:7d:7e:c0:b1:49:5d:25:6c:
e8:ee:66:70:0c:cf:03:23:c3:39:c0:35:f6:03:9c:
0b:7a:55:53:42:25:e9:be:ae:0f:e0:27:20:85:65:
04:ea:c5:ab:c3:af:01:7f:69:43:03:47:f8:69:08:
52:d3:0c:13:97:f3:22:1e:78:30:af:a9:44:b5:9c:
c9:95:55:01:56:1b:92:c5:f3:d6:00:44:2a:8f:4e:
64:fe:48:64:7a:5c:12:99:b5:16:7b:4e:2d:fc:4b:
5d:1e:4e:67:b8:5e:48:60:ab:a1:43:77:3a:cb:e6:
ca:cf:80:45:51:9e:a2:57:0c:7e:b8:3d:0c:f9:0b:
24:52:83:f1:e6:d6:d0:07:ed:e6:59:f7:f6:b2:31:
c7:f4:51:8f:57:8b:24:bb:c5:ad:e0:21:18:7c:89:
08:5a:df:e4:2f:57:eb:99:65:f9:44:fb:d2:30:79:
1d:99:08:37:6f:07:1c:16:f9:68:e1:31:7f:61:7a:
22:b1:eb:b0:04:d4:68:05:db:b6:dc:98:89:22:69:
4e:31:9d:06:05:91:c5:86:96:72:0f:b9:bf:a8:34:
32:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:60:3C:FE:65:6E:4D:1B:59:D3:18:6D:6C:40:BB:AC:80:6D:90:36
X509v3 Authority Key Identifier:
keyid:15:3B:46:70:28:39:A7:95:BA:BA:8D:8D:15:EC:DC:CA:63:7E:33:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FTtGcCg5p5W6uo2NFezcymN-M2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f56d7f-1b78-4453-81e7-ba56378a6476/1/umA8_mVuTRtZ0xhtbEC7rIBtkDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f56d7f-1b78-4453-81e7-ba56378a6476/1/FTtGcCg5p5W6uo2NFezcymN-M2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.22.0/24
IPv6:
2a0c:d4c0::/29
Signature Algorithm: sha256WithRSAEncryption
6c:f5:e8:b2:41:9b:0c:1c:43:d7:ad:71:b7:db:d1:23:0d:fb:
9f:5a:1c:28:d5:86:a9:d9:b7:7c:d3:ab:ce:a7:8b:c8:88:67:
8f:fe:8d:c4:18:46:df:35:c8:cb:b3:a0:d4:4d:6d:89:82:ab:
d9:08:f9:36:66:2f:75:a3:42:06:a8:90:72:da:c6:af:47:88:
67:60:a7:33:6a:8c:58:3a:a7:5f:37:10:94:2b:b4:2c:3b:43:
93:14:3e:7d:e0:6a:eb:11:7d:ed:83:d3:ac:f3:de:32:8d:0e:
5b:4b:fb:34:c0:24:3d:40:3c:02:58:56:75:0b:63:08:67:92:
4f:d5:73:ce:4b:15:f8:b6:cd:85:83:91:6a:c5:e4:66:b7:93:
a6:14:61:4d:74:b0:75:ca:e7:6b:27:8d:9f:34:1f:55:d5:84:
f6:73:52:e3:30:46:6a:d1:0e:5f:3e:48:09:bd:5b:e8:fb:83:
3d:9e:9b:55:75:c0:5a:f7:7c:07:50:da:13:bd:e6:54:cd:47:
fc:83:44:aa:4e:1e:a7:b2:f6:14:53:7e:a8:73:5d:28:08:13:
fe:b2:c3:1f:96:e5:99:b2:18:89:a7:f1:c5:f7:9c:7d:35:0a:
53:cb:a3:fe:46:50:2e:41:ec:11:8b:90:53:15:f8:05:ef:6b:
95:ca:76:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:26 2023 by rpki-client on console-fra.rpki-client.org