Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/CWo7AW2efDlDo445gBRmiJgkOO8.roa
File: CWo7AW2efDlDo445gBRmiJgkOO8.roa (raw, json)
Hash identifier: FPV6kFQ7k8JU5/3hzOUY0CCkmDy1/Q0QmjF0dA0D4qc=
Subject key identifier: 09:6A:3B:01:6D:9E:7C:39:43:A3:8E:39:80:14:66:88:98:24:38:EF
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 08313F5D
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/CWo7AW2efDlDo445gBRmiJgkOO8.roa
Signing time: Sat 01 Jan 2022 07:56:09 +0000
ROA not before: Sat 01 Jan 2022 07:56:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42187
IP address blocks: 185.65.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137445213 (0x8313f5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=096a3b016d9e7c3943a38e3980146688982438ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5e:07:da:e3:ae:82:fb:fd:ba:df:d6:d5:0b:
66:1b:9f:f5:9a:39:69:e9:aa:7f:3c:9b:f7:bd:2d:
f4:b7:07:27:4b:19:4e:44:60:0c:f4:e5:10:62:6e:
b3:51:6f:a1:20:10:5d:5b:1e:9c:56:60:c9:f2:a8:
6d:19:5d:ea:6f:3a:ab:75:61:95:d2:68:8f:fb:80:
e5:3b:6b:8e:09:95:10:1e:ce:d2:b5:3a:9b:f0:43:
2f:1a:64:0f:17:59:46:29:6e:07:a5:13:91:af:6f:
f4:69:70:dd:44:84:e7:98:fc:4f:9d:29:50:c1:48:
e6:a4:b9:91:a9:3a:04:b5:43:49:16:c9:9e:c9:f9:
ba:ba:09:f0:47:7d:b4:ef:54:77:55:80:1e:c8:08:
a4:1e:de:51:d2:5d:e3:51:b4:36:7f:13:ad:d5:00:
cd:84:77:05:b1:75:97:d4:1c:8f:a4:8d:ad:85:1b:
c5:ca:a6:34:ce:6d:d4:22:d3:2a:ca:ef:c0:35:46:
0b:ac:9e:61:ef:91:8a:5e:40:1d:21:6b:60:3e:20:
02:3d:37:fa:cc:19:b1:06:09:8a:47:07:41:8c:5a:
a8:a3:48:93:43:e3:31:12:2e:58:0b:f0:a3:e5:90:
6b:62:e9:72:27:87:cc:4a:3f:ab:60:17:b7:e7:ec:
52:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:6A:3B:01:6D:9E:7C:39:43:A3:8E:39:80:14:66:88:98:24:38:EF
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/CWo7AW2efDlDo445gBRmiJgkOO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.203.0/24
Signature Algorithm: sha256WithRSAEncryption
19:9b:87:0a:f6:61:0c:ce:e8:b2:8e:52:ba:ef:5b:3f:59:36:
0e:36:df:32:35:11:9c:70:e0:7f:a2:8d:89:95:d4:14:a9:28:
ca:09:74:68:ba:26:5e:f8:3f:ae:bb:2f:b3:1e:7c:ca:fa:46:
77:84:c1:0e:91:1c:dc:c3:cc:e7:3d:6c:46:64:4c:b0:6f:f1:
6d:4a:e2:3f:0d:ab:ad:67:2f:d3:ca:eb:d0:2b:50:96:6b:ec:
82:84:6d:f8:df:4b:88:df:81:02:d3:ce:12:7b:6e:10:5c:ff:
c1:b2:5a:b6:3a:88:4d:3c:80:12:3c:02:fc:93:ee:58:20:3a:
85:73:1a:47:47:59:d6:a4:41:9b:5a:88:2e:75:cf:5d:34:1f:
86:fc:02:d2:f5:07:01:f3:9f:2c:21:21:c7:83:1f:15:b1:fe:
f5:1e:cd:2f:5c:34:e3:e3:e0:52:fd:7a:e0:4c:a5:5f:8d:54:
83:45:0f:68:8f:37:a2:81:48:34:c2:98:5d:30:df:5b:39:0d:
21:af:64:97:a9:09:0b:61:a3:5f:a6:ca:7c:99:28:4f:c8:83:
0a:22:10:b0:fc:59:06:ef:51:9b:07:86:f7:b1:73:2e:66:d5:
c8:55:ed:72:ab:92:7b:9f:d2:3d:c3:69:08:a5:76:51:05:ff:
83:36:c9:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org