Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/a9ceb8-0c86-49ac-a392-acecad53c815/1/2DQ5PZEFPfzipBrxBKYi4rWmUbQ.roa
File: 2DQ5PZEFPfzipBrxBKYi4rWmUbQ.roa (raw, json)
Hash identifier: 0YujnqH/jaFxAwOZhIHCpAK29MnmLrifPEq01ddA92c=
Subject key identifier: D8:34:39:3D:91:05:3D:FC:E2:A4:1A:F1:04:A6:22:E2:B5:A6:51:B4
Certificate issuer: /CN=e64682adb0238cc772d1c5b4986c7a33986364a0
Certificate serial: 0C30E69D
Authority key identifier: E6:46:82:AD:B0:23:8C:C7:72:D1:C5:B4:98:6C:7A:33:98:63:64:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5kaCrbAjjMdy0cW0mGx6M5hjZKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/a9ceb8-0c86-49ac-a392-acecad53c815/1/2DQ5PZEFPfzipBrxBKYi4rWmUbQ.roa
Signing time: Sat 01 Jan 2022 12:56:43 +0000
ROA not before: Sat 01 Jan 2022 12:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197075
IP address blocks: 185.250.164.0/22 maxlen: 22
2a03:ff80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 204531357 (0xc30e69d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e64682adb0238cc772d1c5b4986c7a33986364a0
Validity
Not Before: Jan 1 12:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d834393d91053dfce2a41af104a622e2b5a651b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c0:30:c2:d4:ae:f3:15:12:ba:65:64:af:bf:
8c:c5:97:fb:83:3b:bf:e6:da:0c:e2:29:73:62:7e:
45:f3:cc:21:d0:38:4c:8b:59:7f:a7:58:c5:ad:0e:
68:59:36:d6:9b:04:14:90:95:e0:44:aa:ef:a0:5e:
41:fc:ee:cd:4e:52:1e:53:25:e4:74:51:dd:cc:10:
bc:d6:98:a5:9b:15:ec:7d:3a:72:ef:f0:d9:1b:d6:
5e:19:bd:d4:e4:3d:09:ee:17:e2:aa:cb:fe:ae:11:
aa:e8:48:9c:b1:15:d3:24:55:72:6d:ad:b3:3c:9d:
55:a2:ab:92:1f:54:84:98:5b:f6:84:df:45:97:6c:
6d:3e:88:e4:db:df:67:ea:c7:f0:12:f0:69:f5:77:
84:14:80:47:17:b2:62:b8:06:62:76:89:62:c1:5e:
ce:03:56:54:1e:5c:4d:3b:42:0c:bd:57:1b:c7:ba:
6a:49:2e:5d:82:bc:3e:35:2c:5d:20:5c:fa:8e:df:
84:3b:bb:fd:b0:0b:dd:26:c7:dd:26:94:4d:4e:e9:
3c:bd:fd:36:40:7e:c2:86:4d:3e:8c:c1:e7:77:4f:
11:3a:d7:64:ed:38:40:ad:4c:b1:d0:f8:90:de:c1:
b0:d5:c5:30:3b:20:00:41:4e:4b:98:58:50:62:f8:
8a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:34:39:3D:91:05:3D:FC:E2:A4:1A:F1:04:A6:22:E2:B5:A6:51:B4
X509v3 Authority Key Identifier:
keyid:E6:46:82:AD:B0:23:8C:C7:72:D1:C5:B4:98:6C:7A:33:98:63:64:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5kaCrbAjjMdy0cW0mGx6M5hjZKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/a9ceb8-0c86-49ac-a392-acecad53c815/1/2DQ5PZEFPfzipBrxBKYi4rWmUbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/a9ceb8-0c86-49ac-a392-acecad53c815/1/5kaCrbAjjMdy0cW0mGx6M5hjZKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.164.0/22
IPv6:
2a03:ff80::/29
Signature Algorithm: sha256WithRSAEncryption
2c:bb:c1:21:32:07:52:41:33:3d:94:9d:d0:03:9a:d6:0d:fb:
1a:23:34:9a:28:f0:c1:90:db:54:ac:cd:bd:e7:46:e9:f8:a3:
43:89:63:85:e5:bd:2c:b2:c5:2d:73:b9:b6:92:41:76:c5:d7:
85:3d:38:06:ea:3f:c7:01:c4:3d:e6:6c:51:a4:41:63:0b:12:
07:f3:54:b2:14:4f:6b:bc:d8:e8:61:65:e7:51:b8:d4:03:9a:
05:91:4e:cc:1c:85:5a:a6:74:d2:9a:5d:22:7a:14:5a:45:27:
18:9a:1b:9c:53:cf:87:85:23:0e:72:3c:57:a3:2b:97:b1:4b:
61:6d:0d:27:a5:20:d4:b1:a0:86:98:19:33:d4:6d:ae:6c:a5:
0a:8b:03:a3:20:90:be:2a:e8:37:05:28:bb:7e:8b:a2:29:b3:
c4:5b:34:dc:6e:a8:02:7b:d9:42:e8:81:9e:9a:ca:0b:1e:7d:
c0:01:e0:fa:94:46:5c:2f:bf:c8:8b:89:f5:9d:18:04:4c:85:
df:bb:88:67:ba:0a:5b:80:3e:8c:15:42:30:b1:5f:b7:1d:cf:
d7:f6:88:71:5a:47:20:9c:96:70:57:54:81:cb:64:fb:d1:7b:
55:47:97:9a:e3:e7:a5:62:5e:7f:94:1b:c4:7e:8b:59:47:0f:
af:97:22:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:20 2023 by rpki-client on console-ams.rpki-client.org