Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/sci0SWueRJqlN_HQjWNrdEdHGBA.roa
File: sci0SWueRJqlN_HQjWNrdEdHGBA.roa (raw, json)
Hash identifier: E+dWNddrnrVwqExAk+jeSX0PKFMuUFE0CcfAXaI3q2Y=
Subject key identifier: B1:C8:B4:49:6B:9E:44:9A:A5:37:F1:D0:8D:63:6B:74:47:47:18:10
Certificate issuer: /CN=3b3363e47e69ebc5d1c2251ddd5dac7c98989922
Certificate serial: 0EA907F5
Authority key identifier: 3B:33:63:E4:7E:69:EB:C5:D1:C2:25:1D:DD:5D:AC:7C:98:98:99:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/sci0SWueRJqlN_HQjWNrdEdHGBA.roa
Signing time: Sat 01 Jan 2022 02:00:17 +0000
ROA not before: Sat 01 Jan 2022 02:00:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206355
IP address blocks: 185.192.136.0/22 maxlen: 22
2a0a:2cc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 245958645 (0xea907f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3363e47e69ebc5d1c2251ddd5dac7c98989922
Validity
Not Before: Jan 1 02:00:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1c8b4496b9e449aa537f1d08d636b7447471810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a0:54:33:55:a8:80:aa:bc:5c:28:0e:63:d8:
8a:cd:54:5e:ee:5e:c1:ab:6e:74:75:b3:b1:4d:a1:
be:67:d2:09:f0:03:f8:d1:6f:92:8c:17:5d:5f:3e:
cb:7e:77:4f:15:16:09:f8:5c:5b:03:16:de:bb:7b:
c8:e4:26:6e:fc:86:fc:2a:99:d2:48:fe:57:6f:95:
ea:1a:28:f3:89:89:14:0c:24:1a:e7:49:fd:ed:27:
c3:88:a5:f2:df:a2:09:d5:08:e2:92:ea:6a:23:cf:
ff:e7:3c:6a:ea:cc:24:06:7c:df:81:7e:c8:4e:86:
ee:6f:f2:62:87:ab:86:58:a6:2f:0a:80:fa:67:8c:
ae:4b:f7:40:79:87:0f:ca:37:da:62:ff:0f:e2:ab:
a7:d0:b3:f1:52:b4:c9:7d:82:5d:88:b7:db:d4:01:
c1:34:f5:0f:cf:cf:44:d5:a7:d3:62:c5:8d:a4:37:
cc:0a:07:9c:4f:10:89:c1:3c:33:f2:12:7b:fb:ea:
02:a9:39:7e:cc:46:4e:5c:38:fe:63:83:7f:5a:53:
7d:5f:6d:bb:20:71:cd:27:59:f0:f9:53:7c:4b:7f:
af:ac:a5:1f:1a:ab:da:ee:65:0b:05:94:07:13:21:
3a:84:a1:a9:eb:23:99:63:f6:41:6c:c6:0f:f9:81:
80:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C8:B4:49:6B:9E:44:9A:A5:37:F1:D0:8D:63:6B:74:47:47:18:10
X509v3 Authority Key Identifier:
keyid:3B:33:63:E4:7E:69:EB:C5:D1:C2:25:1D:DD:5D:AC:7C:98:98:99:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/sci0SWueRJqlN_HQjWNrdEdHGBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.136.0/22
IPv6:
2a0a:2cc0::/29
Signature Algorithm: sha256WithRSAEncryption
c0:cb:99:2f:68:7f:4d:e0:87:91:84:11:d4:95:10:ae:50:61:
ac:eb:3c:24:73:22:88:61:21:5b:03:46:18:f4:65:e7:85:bd:
42:05:ca:e6:de:8c:08:d2:57:ce:0d:54:07:dd:13:4d:93:b6:
d6:74:e1:9a:c4:20:4d:31:16:35:c1:42:9b:43:63:15:02:03:
e7:a1:b1:9a:78:fc:bf:fa:4f:d1:76:19:01:9d:dd:2a:84:54:
3d:84:0d:5e:a8:8d:aa:04:45:4f:39:98:37:2f:7e:3c:d0:48:
2c:bb:a3:da:81:7e:e1:db:40:18:75:70:22:e5:c9:1c:ac:43:
b5:5b:56:45:50:bc:1c:f7:97:41:3e:e0:da:0a:fd:9c:05:51:
7c:56:58:11:5a:52:d1:67:a2:5a:8f:f1:0b:3f:5c:15:b5:58:
db:58:ce:59:cf:f1:3a:1c:0c:22:28:f9:93:22:17:04:55:f9:
62:44:4f:cc:d7:b5:63:3f:d0:5d:c5:93:ca:9c:17:d1:d3:e8:
1e:4d:d1:72:47:82:ea:1a:3e:02:6a:42:74:51:f1:f1:d3:00:
ba:c8:68:ba:35:df:84:d8:aa:e4:2a:df:16:28:ee:6c:48:d8:
87:f4:de:1b:c6:b4:4d:d9:27:3e:91:77:55:00:f4:de:50:44:
6a:78:cb:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:07 2023 by rpki-client on console-fra.rpki-client.org