Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/xNJZjX1lDtr90wEIisdob6g_Uio.roa
File: xNJZjX1lDtr90wEIisdob6g_Uio.roa (raw, json)
Hash identifier: bqeChc5qL0Lze239XTHYTfRqbm2T+8Ezw5Wl4aZEy1s=
Subject key identifier: C4:D2:59:8D:7D:65:0E:DA:FD:D3:01:08:8A:C7:68:6F:A8:3F:52:2A
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 01826D51F2B47151A6DDB367C954CC826914
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/xNJZjX1lDtr90wEIisdob6g_Uio.roa
Signing time: Fri 05 Aug 2022 09:24:23 +0000
ROA not before: Fri 05 Aug 2022 09:24:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142430
IP address blocks: 185.173.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6d:51:f2:b4:71:51:a6:dd:b3:67:c9:54:cc:82:69:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Aug 5 09:24:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4d2598d7d650edafdd301088ac7686fa83f522a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8d:0e:af:26:9c:92:c8:8d:b0:f7:8a:c2:30:
31:a9:b0:fc:91:20:59:10:2b:b8:88:4d:58:30:51:
aa:59:0a:32:d6:85:dd:ff:c9:e2:ca:dc:67:eb:23:
e0:ef:bb:ee:d2:3d:96:52:cd:0e:f9:90:35:57:86:
50:85:50:4d:af:17:33:94:58:ec:85:a7:b7:5a:48:
66:a4:69:8b:fa:01:08:e5:f1:7f:69:29:27:2d:69:
d6:d0:c9:34:f3:d3:56:c4:49:42:d1:b1:f6:1a:fe:
95:0b:a1:a2:4c:4e:02:a0:ec:71:e0:69:d8:a0:34:
b2:c0:ca:95:4f:64:f8:e7:58:7a:e2:41:f2:1c:75:
10:95:aa:0d:b7:9b:20:55:5c:3c:2a:86:15:ac:3c:
4f:d3:4e:83:79:d2:60:e1:8e:49:92:c8:1a:af:ea:
19:b8:3b:1c:5c:80:ff:d6:b6:42:06:d4:70:7b:7c:
91:4f:8c:8d:a0:3a:41:43:4b:d7:f4:3f:63:dc:cc:
ad:b3:d2:07:54:d8:2d:e8:04:cf:f3:81:4e:3c:cb:
35:93:5a:55:a2:51:20:14:05:39:c6:09:94:ca:25:
39:c1:b2:c5:de:8a:a2:dd:1a:1e:63:5c:8d:cc:68:
ca:16:9d:76:21:37:db:f2:9d:2d:ff:09:e5:67:64:
55:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:D2:59:8D:7D:65:0E:DA:FD:D3:01:08:8A:C7:68:6F:A8:3F:52:2A
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/xNJZjX1lDtr90wEIisdob6g_Uio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.144.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:f8:b9:fd:16:1e:b8:49:e7:bf:eb:50:21:4a:22:69:ef:32:
91:76:2b:3f:2a:68:80:04:e3:2d:ad:89:ad:07:bc:f6:5b:16:
03:16:4c:dc:6b:d1:69:58:8d:bc:d3:92:0d:23:db:46:36:fe:
f8:27:23:6a:05:b4:ba:01:1d:1a:df:a5:95:f2:0d:42:0b:1d:
be:a9:3c:ec:82:b7:4c:5c:b8:e3:00:6b:3f:b3:08:bd:74:23:
c1:d4:03:82:b8:38:c1:eb:5b:4b:10:77:7d:89:91:be:31:79:
43:f2:98:7d:53:fd:7b:77:d8:8d:1d:c7:21:fc:da:8d:e5:88:
46:92:2c:c7:a1:50:a4:c9:fd:56:5c:a8:9d:64:d5:44:85:cc:
36:27:29:99:79:60:60:f7:18:69:22:53:80:e1:c0:d4:d2:1d:
b0:31:85:e7:49:d3:79:3b:a8:c1:f1:1d:b4:02:1e:4a:7d:74:
00:3e:7b:ed:a7:32:9f:31:60:bb:ff:fd:64:3b:b1:88:5b:a8:
e9:24:e2:29:c8:14:91:ea:21:dd:d8:9b:90:c9:c0:2e:a3:e4:
6f:7a:73:10:07:ef:ba:45:12:a4:83:b7:50:68:bf:b0:a0:c4:
20:32:2e:b5:88:31:ec:08:9a:96:eb:2d:b7:dd:40:7b:84:c4:
97:60:60:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:50 2023 by rpki-client on console-fra.rpki-client.org