Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/93ce62-6f3d-493c-bf6f-5cd885489f82/1/UQuVlUx_RhRnKprpMxwb8io9Oyg.roa
File: UQuVlUx_RhRnKprpMxwb8io9Oyg.roa (raw, json)
Hash identifier: eWaNx0oRu5BJ0TO7ZKHctUElJeE2Fc/eNHLiFNeKl5Q=
Subject key identifier: 51:0B:95:95:4C:7F:46:14:67:2A:9A:E9:33:1C:1B:F2:2A:3D:3B:28
Certificate issuer: /CN=f7d535083fb140ddab453abf821f5db3a6f461a4
Certificate serial: 54ABA2
Authority key identifier: F7:D5:35:08:3F:B1:40:DD:AB:45:3A:BF:82:1F:5D:B3:A6:F4:61:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/99U1CD-xQN2rRTq_gh9ds6b0YaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/93ce62-6f3d-493c-bf6f-5cd885489f82/1/UQuVlUx_RhRnKprpMxwb8io9Oyg.roa
Signing time: Mon 02 May 2022 08:57:44 +0000
ROA not before: Mon 02 May 2022 08:57:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213299
IP address blocks: 185.155.116.0/24 maxlen: 24
2a10:40c0::/32 maxlen: 32
2a10:40c0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5548962 (0x54aba2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7d535083fb140ddab453abf821f5db3a6f461a4
Validity
Not Before: May 2 08:57:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=510b95954c7f4614672a9ae9331c1bf22a3d3b28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:d1:11:37:81:fa:ed:b1:af:73:18:d4:1b:cb:
98:eb:8f:45:0d:14:c2:d1:b0:fe:28:dd:ec:b5:8c:
d9:e8:3f:28:5c:c6:1a:1b:7a:f9:61:b4:f8:6c:a8:
b1:c1:a0:8d:33:32:e6:bc:df:d2:ae:ca:70:7c:5a:
1d:f7:a6:7a:be:92:31:70:a3:b9:06:3a:e5:99:b8:
9d:c6:d3:b5:83:07:78:c6:c4:12:95:e1:84:b4:4c:
a1:9e:4e:95:ca:35:a2:ee:2f:60:fa:c9:cb:fb:15:
e5:15:42:02:d2:49:7a:c3:6c:c1:18:72:34:98:35:
29:47:d0:e5:f6:c8:4e:c8:1a:6e:59:22:0e:dd:c6:
d2:65:e0:9f:3a:0d:12:37:55:24:08:02:ee:b5:3c:
78:af:63:9e:39:ee:e6:ab:1f:24:53:98:ac:bc:d4:
28:1b:72:d0:4f:43:c9:6a:72:2a:bb:d3:0d:a2:49:
ef:01:a1:91:8f:51:e5:ef:25:01:81:3c:2d:0b:88:
bc:fd:a3:62:1c:63:35:c4:6e:6c:ba:f7:e1:c6:0f:
e6:20:7a:4c:a8:19:a5:39:b6:8f:f9:94:f1:d8:23:
c8:5c:fa:8f:d4:dd:12:3a:94:5c:9f:e8:97:dd:07:
91:21:ee:e8:c2:c0:29:c9:7b:a8:6f:54:e1:44:b3:
bf:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:0B:95:95:4C:7F:46:14:67:2A:9A:E9:33:1C:1B:F2:2A:3D:3B:28
X509v3 Authority Key Identifier:
keyid:F7:D5:35:08:3F:B1:40:DD:AB:45:3A:BF:82:1F:5D:B3:A6:F4:61:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/99U1CD-xQN2rRTq_gh9ds6b0YaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/93ce62-6f3d-493c-bf6f-5cd885489f82/1/UQuVlUx_RhRnKprpMxwb8io9Oyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/93ce62-6f3d-493c-bf6f-5cd885489f82/1/99U1CD-xQN2rRTq_gh9ds6b0YaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.116.0/24
IPv6:
2a10:40c0::/32
Signature Algorithm: sha256WithRSAEncryption
5e:ea:63:b9:be:d6:a1:ac:04:45:3f:81:22:37:18:be:ea:2c:
66:82:71:27:44:a1:4d:4a:d6:d0:89:4c:ef:51:da:6d:fe:49:
f8:de:7d:7f:53:87:6c:b1:09:fe:69:c2:56:43:ed:8b:54:55:
5b:29:d5:52:61:77:13:b6:e6:f7:b0:c7:ad:99:d0:8e:90:1e:
ab:3f:f3:f9:5f:8e:58:06:82:9f:81:b2:5c:99:29:fb:3b:57:
da:8d:76:62:6b:f2:4b:2b:90:24:92:16:c8:e5:bc:2f:6a:cc:
a7:72:e5:03:af:24:53:37:47:a6:b7:2c:1d:d8:bf:42:87:b1:
d0:ea:48:aa:1e:13:ae:38:0b:41:57:75:22:24:0a:7f:2e:63:
a8:55:f2:ac:0e:36:7c:1f:dd:8c:62:69:53:9e:49:36:e0:e6:
53:04:75:e3:2f:07:ec:b8:6f:a8:34:7d:23:8b:c8:a7:c8:8b:
91:79:da:92:6d:16:14:42:c3:9d:22:76:86:ea:59:cb:bf:8c:
14:25:a0:91:af:9b:92:7d:7c:75:88:59:aa:8a:13:2b:d7:ba:
5c:12:ac:96:8b:5a:27:ee:04:9a:63:55:07:ea:55:17:20:37:
ec:95:ac:a9:16:6b:40:33:94:70:0c:f3:53:d5:55:fc:77:9d:
64:83:58:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:14 2023 by rpki-client on console-fra.rpki-client.org