Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/14486a-a7e6-4113-93b1-15cdc9a8c38f/1/xyANxhIW8QkyxHJY0Xs5xYZznxI.roa
File: xyANxhIW8QkyxHJY0Xs5xYZznxI.roa (raw, json)
Hash identifier: GHOnw6vKkb2flG9OPraj/FsNt7Fjimz6pZJlW2imcJo=
Subject key identifier: C7:20:0D:C6:12:16:F1:09:32:C4:72:58:D1:7B:39:C5:86:73:9F:12
Certificate issuer: /CN=a34911e9d2bbea66a6c240319dde307b3def48c1
Certificate serial: 0181D74ABD994974423898AD636B58C7D4D4
Authority key identifier: A3:49:11:E9:D2:BB:EA:66:A6:C2:40:31:9D:DE:30:7B:3D:EF:48:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o0kR6dK76mamwkAxnd4wez3vSME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/14486a-a7e6-4113-93b1-15cdc9a8c38f/1/xyANxhIW8QkyxHJY0Xs5xYZznxI.roa
Signing time: Thu 07 Jul 2022 06:13:28 +0000
ROA not before: Thu 07 Jul 2022 06:13:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200820
IP address blocks: 185.94.13.0/24 maxlen: 24
185.94.14.0/24 maxlen: 24
185.94.12.0/24 maxlen: 24
185.94.12.0/23 maxlen: 23
185.94.15.0/24 maxlen: 24
2a03:9fc0:2::/48 maxlen: 48
2a03:9fc0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d7:4a:bd:99:49:74:42:38:98:ad:63:6b:58:c7:d4:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a34911e9d2bbea66a6c240319dde307b3def48c1
Validity
Not Before: Jul 7 06:13:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7200dc61216f10932c47258d17b39c586739f12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c8:82:14:8f:9c:3d:ea:e5:d4:71:77:87:d6:
dd:39:cc:ba:fc:cf:96:f2:a8:56:f2:35:5a:f4:a1:
ae:01:b7:0b:4b:a6:a0:61:8a:b5:b9:f2:77:d4:41:
6c:40:e6:e5:e7:b2:a3:87:5f:96:fc:ac:c0:13:88:
e9:be:fd:8a:0c:49:59:71:bd:e5:cc:9c:63:a9:60:
d2:79:55:6e:d0:7e:de:25:df:b9:b0:5c:e0:fb:32:
3b:99:0e:17:1b:e2:f1:f3:6b:b1:7d:94:90:75:96:
b7:92:1f:27:6d:b3:88:a9:43:dd:75:23:ed:64:7a:
f1:92:c1:5d:6c:4a:6c:51:3b:2b:b2:94:72:0a:74:
b2:a6:9e:59:87:c8:5e:69:6f:69:35:e8:64:b4:0c:
40:ba:14:63:4e:93:94:c4:22:fa:1d:64:c0:eb:f5:
24:0d:d7:2b:b2:22:be:10:94:bd:d1:9a:ee:ac:cf:
eb:3e:ec:b4:86:45:03:df:fb:40:3b:9e:66:b0:1a:
84:32:33:32:3d:d8:06:75:df:76:f8:7d:95:3e:97:
86:6a:47:1a:72:66:78:0e:3c:36:da:42:96:8a:22:
d6:a6:ae:77:7c:27:ad:2c:06:fb:b3:2a:8f:2a:a6:
11:9b:76:44:aa:bc:02:13:41:43:e0:50:05:ad:df:
59:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:20:0D:C6:12:16:F1:09:32:C4:72:58:D1:7B:39:C5:86:73:9F:12
X509v3 Authority Key Identifier:
keyid:A3:49:11:E9:D2:BB:EA:66:A6:C2:40:31:9D:DE:30:7B:3D:EF:48:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o0kR6dK76mamwkAxnd4wez3vSME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/14486a-a7e6-4113-93b1-15cdc9a8c38f/1/xyANxhIW8QkyxHJY0Xs5xYZznxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/14486a-a7e6-4113-93b1-15cdc9a8c38f/1/o0kR6dK76mamwkAxnd4wez3vSME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.12.0/22
IPv6:
2a03:9fc0:1::-2a03:9fc0:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
40:ad:87:ef:04:97:61:09:73:7f:3a:4a:90:9e:f5:09:0b:0f:
da:14:34:1e:82:00:87:09:69:7d:66:50:a1:16:00:0f:a6:e4:
c2:06:4b:ed:0f:c8:e3:72:bd:2b:c0:43:d1:da:7c:e9:20:0b:
5f:83:be:0f:b4:65:a2:a4:fa:6d:3d:f8:af:51:86:2b:45:69:
84:6c:e7:a2:82:58:0e:3d:b4:5b:71:c9:f9:f0:aa:5e:32:5b:
61:d4:73:2c:bb:fb:71:43:37:a4:59:ec:c6:3c:18:c4:5c:2b:
26:d0:28:39:d3:11:af:3f:94:6a:35:97:41:01:b2:39:5d:08:
66:d0:b1:82:1b:f0:7e:a0:11:ff:4d:0c:cf:97:48:f7:46:5c:
1e:39:72:15:96:91:48:ba:36:22:d9:cf:be:ba:36:7b:c9:9b:
1f:0b:f9:a5:16:98:ac:be:4f:0a:15:00:9e:76:b3:4c:8a:e6:
fd:b1:94:e2:62:50:1f:22:77:1b:76:d3:0f:fc:e5:0a:f1:c8:
e1:8e:18:4d:ae:96:ab:25:fb:0c:38:99:e4:3e:43:e1:6a:1b:
c6:2f:24:a7:91:23:60:03:e1:92:dd:fa:69:1d:33:b9:e5:f1:
66:fb:35:60:65:15:01:63:d7:d6:97:12:48:89:d8:63:4b:87:
e9:f7:c4:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:00 2023 by rpki-client on console-fra.rpki-client.org