Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/izRz6dCt8k8x5KJXBRoN42rU2zw.roa
File: izRz6dCt8k8x5KJXBRoN42rU2zw.roa (raw, json)
Hash identifier: M+eDRJDR3YqVVmjzJxeRO0SXJnlSRbXg+/B7cWPt+U4=
Subject key identifier: 8B:34:73:E9:D0:AD:F2:4F:31:E4:A2:57:05:1A:0D:E3:6A:D4:DB:3C
Certificate issuer: /CN=1659eb6040193df0681350905e639d0e58d5f9df
Certificate serial: 0628224E
Authority key identifier: 16:59:EB:60:40:19:3D:F0:68:13:50:90:5E:63:9D:0E:58:D5:F9:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FlnrYEAZPfBoE1CQXmOdDljV-d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/izRz6dCt8k8x5KJXBRoN42rU2zw.roa
Signing time: Wed 15 Jun 2022 17:23:45 +0000
ROA not before: Wed 15 Jun 2022 17:23:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14413
IP address blocks: 185.154.80.0/22 maxlen: 22
2a05:f506::/32 maxlen: 48
2a05:f505::/32 maxlen: 48
2a05:f504::/32 maxlen: 48
2a05:f500::/30 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103293518 (0x628224e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1659eb6040193df0681350905e639d0e58d5f9df
Validity
Not Before: Jun 15 17:23:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b3473e9d0adf24f31e4a257051a0de36ad4db3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a5:86:9c:3c:2a:d6:7e:8c:c9:02:57:5e:37:
80:a7:91:a1:f1:39:4e:10:84:3c:b9:02:ad:d2:d5:
34:d7:27:49:67:e2:36:6d:eb:63:bd:1b:49:24:0a:
d4:1d:75:c1:51:f9:f0:41:b2:47:0d:d2:66:48:e4:
29:18:6d:af:d0:a0:87:6a:9f:6d:c4:1b:37:70:23:
68:b4:b8:98:ef:d0:5d:03:48:7b:ae:c7:94:a9:ac:
52:0a:28:61:e9:fe:02:c8:8d:b1:23:86:86:a5:a5:
8a:82:f2:e9:21:85:d5:de:80:c9:51:b0:9a:6a:49:
cc:e5:16:b6:54:04:dd:9b:8b:84:96:8f:84:e0:e9:
35:5d:16:1c:ba:61:05:ea:64:32:b0:c5:5b:c7:8d:
10:35:8b:4b:b8:38:f3:86:13:64:be:28:96:c2:39:
36:e8:8e:5f:41:4b:3f:5f:7b:05:ea:58:e7:03:71:
d5:4f:fc:50:9c:fe:ad:b5:7d:d3:df:e3:93:ed:3a:
a8:af:c4:2a:32:ca:4f:b9:15:d7:eb:74:81:f7:37:
97:86:d5:02:50:91:3e:cc:48:9a:b4:0f:70:be:31:
70:12:ef:35:f8:dc:73:9f:8b:bb:e7:fd:58:79:e1:
14:ee:f6:40:c7:ad:b6:d4:a4:e0:ee:32:c8:c4:68:
bd:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:34:73:E9:D0:AD:F2:4F:31:E4:A2:57:05:1A:0D:E3:6A:D4:DB:3C
X509v3 Authority Key Identifier:
keyid:16:59:EB:60:40:19:3D:F0:68:13:50:90:5E:63:9D:0E:58:D5:F9:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlnrYEAZPfBoE1CQXmOdDljV-d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/izRz6dCt8k8x5KJXBRoN42rU2zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/FlnrYEAZPfBoE1CQXmOdDljV-d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.80.0/22
IPv6:
2a05:f500::-2a05:f506:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
0b:20:11:d7:9b:38:bc:fa:4b:fd:82:26:11:95:3c:41:9f:60:
04:7e:87:80:31:6c:c5:da:c2:8f:52:64:f1:fb:a7:d7:d7:19:
9d:6b:83:f3:48:10:38:06:7c:73:04:d8:c1:e8:68:94:ca:28:
8b:c6:b9:9f:42:76:0a:ad:66:06:f5:22:5f:ff:77:5e:c5:3f:
09:c1:80:6d:cf:a2:2d:70:34:f6:2e:0d:af:7f:77:85:a5:ee:
9b:62:2e:81:fc:ea:da:05:8f:3a:db:53:99:33:b8:c0:d0:b1:
1e:1c:bd:9c:93:64:bc:8f:43:5a:70:2b:d2:09:17:7e:c9:0c:
75:fe:ae:37:b3:cf:a9:cc:b0:f4:cd:25:8e:ee:fe:42:21:a6:
62:f5:97:3e:b2:aa:5b:c2:62:7b:1c:a8:af:9e:6a:77:9c:95:
d0:a3:6e:d2:a6:15:34:8e:b2:8f:6a:16:f8:52:f7:d2:a6:98:
6b:0d:2e:3a:cc:da:73:cd:e3:23:b3:bb:e9:81:b2:1e:fe:1c:
dd:b7:0a:f1:b7:98:57:54:8e:9e:1e:f5:d7:30:e0:37:1e:dc:
ca:aa:a1:19:93:5b:bf:f0:ff:f3:6c:59:c8:a9:cf:35:c9:de:
8d:be:80:b9:6d:3c:69:f1:ee:01:fb:26:96:ca:e6:2f:30:3c:
4e:cb:9d:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:25 2024 by rpki-client on console-ams.rpki-client.org