Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/2RGmgzJugjfQLORkXlKIcLc-uRA.roa
File: 2RGmgzJugjfQLORkXlKIcLc-uRA.roa (raw, json)
Hash identifier: dKUcpcAhNq17Cq996bZ3PDJwp1H2MD+BzgPMIP08xEg=
Subject key identifier: D9:11:A6:83:32:6E:82:37:D0:2C:E4:64:5E:52:88:70:B7:3E:B9:10
Certificate issuer: /CN=18e937c103db046f22553ef99438fa2959240da5
Certificate serial: 13AFAFB2
Authority key identifier: 18:E9:37:C1:03:DB:04:6F:22:55:3E:F9:94:38:FA:29:59:24:0D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GOk3wQPbBG8iVT75lDj6KVkkDaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/2RGmgzJugjfQLORkXlKIcLc-uRA.roa
Signing time: Sat 01 Jan 2022 05:57:49 +0000
ROA not before: Sat 01 Jan 2022 05:57:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46489
IP address blocks: 185.42.204.0/22 maxlen: 24
2a01:62e0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330280882 (0x13afafb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18e937c103db046f22553ef99438fa2959240da5
Validity
Not Before: Jan 1 05:57:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d911a683326e8237d02ce4645e528870b73eb910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:cb:a3:80:85:c0:58:2d:f5:67:f9:b9:fe:1d:
2b:be:bd:0d:b7:fe:c5:45:49:1a:da:36:17:e5:a8:
ed:64:19:64:45:8b:33:b4:e5:91:a2:d4:41:d2:cf:
f5:f5:4a:03:5b:1a:c1:1a:9f:b0:aa:31:40:2e:e3:
df:1b:02:fc:89:75:ab:d9:89:26:b8:0e:9c:4e:ba:
fe:11:db:53:b9:59:05:e8:7e:69:04:4c:ca:26:28:
ad:5e:7c:b8:0d:e8:29:09:fb:2a:a2:0f:45:e5:2c:
73:54:e6:f5:90:61:7d:c1:20:c2:b2:42:da:35:36:
2d:03:a6:77:66:f9:80:1d:7d:29:c2:7d:4a:2e:ce:
70:6c:22:40:a0:fa:21:b5:d7:56:b4:4a:d2:df:f6:
a9:24:a2:cf:56:60:2e:b3:db:cb:10:bd:19:d7:44:
d1:2d:15:a0:51:1c:e2:2c:1f:e8:7e:f7:0f:48:14:
56:e9:45:b5:b9:a9:cd:2a:b7:76:a2:5a:59:6c:89:
82:50:8d:54:a7:96:e7:04:24:2c:4e:89:70:9a:f4:
7f:73:20:ed:ad:a7:83:04:13:8a:93:44:e7:47:e2:
38:07:f6:d2:52:3b:a9:03:ed:bd:a1:ea:81:9e:14:
a7:6f:70:21:c4:12:84:76:11:22:3b:4f:43:57:54:
a4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:11:A6:83:32:6E:82:37:D0:2C:E4:64:5E:52:88:70:B7:3E:B9:10
X509v3 Authority Key Identifier:
keyid:18:E9:37:C1:03:DB:04:6F:22:55:3E:F9:94:38:FA:29:59:24:0D:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GOk3wQPbBG8iVT75lDj6KVkkDaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/2RGmgzJugjfQLORkXlKIcLc-uRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.204.0/22
IPv6:
2a01:62e0::/32
Signature Algorithm: sha256WithRSAEncryption
1f:e5:89:94:91:e6:71:23:96:c9:7d:d2:e1:7e:84:e7:6f:a1:
70:b7:fc:66:2f:c2:2c:44:20:8e:95:5b:42:89:49:f2:0b:49:
dc:de:fa:cc:53:22:c3:c0:7d:c2:d6:c5:9e:da:15:7b:66:72:
29:e5:45:f1:54:62:1a:97:e5:97:25:58:ac:4d:fb:ae:91:d2:
ce:69:e1:d1:5e:2c:74:fb:98:52:1b:bf:67:c4:77:3b:c8:e9:
8f:36:61:e0:84:2d:1b:c1:2a:e9:2b:f6:e0:5d:bc:a4:73:6b:
26:40:4b:67:55:a0:3d:87:9e:64:09:27:35:f6:0f:eb:6b:df:
24:d0:b8:99:d2:8e:b3:8c:45:86:d7:7f:c9:af:bf:a6:e8:1e:
aa:88:36:8b:62:f3:16:2d:8d:62:26:94:63:a9:22:61:cb:f6:
41:2c:b6:76:71:85:c8:09:c6:62:30:db:af:6a:d1:90:1c:52:
ba:2a:a7:87:33:89:69:9a:fb:4a:d4:89:e6:cf:82:00:9e:16:
47:d7:5b:7e:66:0b:33:db:4d:ca:24:df:ad:29:0e:97:d7:47:
04:6e:ac:20:3e:f5:53:87:1a:97:c5:b1:d7:1e:24:33:ee:e6:
03:c5:20:d5:3d:12:93:7f:b4:ec:e5:ff:6a:c2:35:1e:6f:bc:
9e:58:69:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org