Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/d1YPCHvZUH8xPuauO9V7jvsgvvc.roa
File: d1YPCHvZUH8xPuauO9V7jvsgvvc.roa (raw, json)
Hash identifier: 7ZEK0fSJlVj42Tw+16gzFVGMPrSmlG3n5OWdxfRWuOg=
Subject key identifier: 77:56:0F:08:7B:D9:50:7F:31:3E:E6:AE:3B:D5:7B:8E:FB:20:BE:F7
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03DFA347
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/d1YPCHvZUH8xPuauO9V7jvsgvvc.roa
Signing time: Sat 01 Jan 2022 13:04:08 +0000
ROA not before: Sat 01 Jan 2022 13:04:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204629
IP address blocks: 185.244.228.0/22 maxlen: 22
181.41.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64987975 (0x3dfa347)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77560f087bd9507f313ee6ae3bd57b8efb20bef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6d:7f:a7:ba:3a:c4:59:60:63:32:e1:12:0d:
56:97:fd:31:8d:49:c8:65:3a:5c:6a:90:e6:16:1a:
20:af:9e:b9:a8:5f:f5:b8:2d:9b:a9:fc:e6:a0:dc:
0c:7f:b9:46:00:d3:4d:fc:db:fb:13:cd:ca:73:f2:
58:59:fe:fa:dc:7d:46:15:41:04:6c:91:85:42:14:
84:62:2a:3c:f1:59:bc:57:45:19:f3:72:39:4f:fd:
0a:99:2e:fe:2d:66:dd:a8:38:0d:98:c3:b7:ae:02:
46:cc:19:03:bc:e2:dc:47:7e:54:8e:f4:dd:4d:29:
75:86:eb:ae:06:f2:6b:b7:6c:60:f6:33:a2:61:99:
01:f7:6c:58:c0:bf:48:2b:18:15:b7:c5:e5:fc:9e:
94:8a:52:e6:39:29:fb:60:cd:96:04:2d:6e:50:6e:
70:dd:95:41:31:bf:c2:ca:3c:86:97:66:49:80:c3:
73:6e:ff:1c:d4:dd:b1:82:da:01:9f:1b:1d:6c:7f:
16:5b:2c:95:21:68:66:a1:0c:ed:13:23:01:e4:fd:
ed:15:7d:27:6b:56:ce:66:71:a9:80:1f:c5:91:c2:
0c:0a:06:ff:00:94:66:40:79:ce:a0:7b:94:7a:86:
2a:c4:53:70:f3:df:f5:9b:7e:de:01:52:62:a6:96:
82:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:56:0F:08:7B:D9:50:7F:31:3E:E6:AE:3B:D5:7B:8E:FB:20:BE:F7
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/d1YPCHvZUH8xPuauO9V7jvsgvvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.155.0/24
185.244.228.0/22
Signature Algorithm: sha256WithRSAEncryption
00:9b:1c:74:82:fe:d4:f3:55:8e:a5:4e:d0:ec:d4:44:1a:36:
50:60:07:2f:27:14:c8:fb:1b:fa:00:4d:36:28:2a:15:c8:80:
0a:f4:e3:e4:7a:8b:dd:bd:df:e9:de:91:e7:bb:e3:a4:66:75:
11:b1:82:17:1d:5e:8d:22:7c:42:cd:14:2b:aa:30:a0:a1:1b:
ab:63:66:c2:36:bd:0b:a7:47:00:1f:01:67:93:44:d4:16:e8:
17:a6:0b:8a:08:d2:ef:45:05:06:e8:f0:bb:57:eb:66:ef:53:
5f:80:e7:dc:05:4b:82:ef:72:62:51:15:93:ce:cc:e3:bd:57:
d9:aa:82:ed:ef:80:85:d2:66:3b:4b:f5:c5:1e:87:98:b1:8e:
fc:c6:5e:af:1c:3c:ec:b4:0f:f8:fb:52:3d:f0:b7:c9:7a:2c:
e2:b5:46:8b:da:5d:10:8f:68:04:c3:3a:af:30:ab:b4:84:07:
ac:35:5e:64:ee:b5:c4:f2:61:b5:92:bb:4d:65:fe:df:94:e9:
af:1a:7e:13:72:f8:a5:e2:1c:a5:7e:57:04:57:ef:80:8a:a9:
57:bd:a0:e9:5a:d6:34:c0:69:7b:d7:58:3f:a7:5f:b1:29:e8:
1e:89:30:9a:4a:2d:9e:95:eb:43:f5:9d:df:8d:ef:59:a1:ec:
e5:31:15:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org