Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/21f1ef-d6f5-4ad4-ad11-af4c1de0249d/1/XGhi90IQxBWLaQe_89Mu3qK6leo.roa
File: XGhi90IQxBWLaQe_89Mu3qK6leo.roa (raw, json)
Hash identifier: mqY9JL0IW6jGNh+aNklXXl/N1itjo+hSuOUObKZ+zCU=
Subject key identifier: 5C:68:62:F7:42:10:C4:15:8B:69:07:BF:F3:D3:2E:DE:A2:BA:95:EA
Certificate issuer: /CN=77c3131201b08679481a03a494a1367cae81ea03
Certificate serial: 30426AE1
Authority key identifier: 77:C3:13:12:01:B0:86:79:48:1A:03:A4:94:A1:36:7C:AE:81:EA:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8MTEgGwhnlIGgOklKE2fK6B6gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/21f1ef-d6f5-4ad4-ad11-af4c1de0249d/1/XGhi90IQxBWLaQe_89Mu3qK6leo.roa
Signing time: Fri 14 Jan 2022 20:46:05 +0000
ROA not before: Fri 14 Jan 2022 20:46:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199549
IP address blocks: 185.11.132.0/22 maxlen: 23
2a03:7540::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 809659105 (0x30426ae1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c3131201b08679481a03a494a1367cae81ea03
Validity
Not Before: Jan 14 20:46:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c6862f74210c4158b6907bff3d32edea2ba95ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c3:d9:71:c7:aa:03:d0:86:ac:68:f1:65:00:
58:6f:2c:f9:ad:6b:15:49:1a:d3:84:fa:b7:28:e9:
6f:c2:de:8e:14:55:1c:9c:54:88:21:f8:0c:1f:07:
72:c8:55:9c:59:55:8b:c9:11:93:56:e6:ed:bc:86:
65:ca:ee:56:41:c3:98:bb:2f:96:92:07:5a:84:23:
e4:66:a9:91:23:1d:52:16:2b:19:8e:5d:17:d8:c6:
98:e2:fa:93:4c:2d:f4:c4:e6:a2:2d:88:93:ff:fa:
ae:31:07:a8:1b:f3:88:69:46:36:0b:67:10:b2:05:
37:aa:0b:ed:bf:4a:28:8f:d7:3c:f6:97:1a:11:d8:
ee:72:78:54:a9:b5:07:1f:55:ca:77:e9:67:14:9e:
a7:5e:1b:a2:30:4f:14:7f:c2:3b:99:67:0b:d7:02:
7a:72:8f:57:82:c1:96:e6:9a:4a:b8:0b:36:51:18:
b2:7f:ef:6b:1a:ee:6f:b5:93:0f:70:a7:ec:3f:99:
3d:2d:2c:f9:c4:b4:71:28:eb:eb:e5:82:0d:5e:6b:
65:0c:9a:75:5b:2f:90:51:a2:26:8e:c6:e8:d5:8f:
0d:69:d3:fb:a4:0e:54:09:9e:a7:b1:11:56:8a:2a:
20:1c:e4:f9:f0:0f:81:d7:c1:e2:72:22:fc:01:30:
e1:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:68:62:F7:42:10:C4:15:8B:69:07:BF:F3:D3:2E:DE:A2:BA:95:EA
X509v3 Authority Key Identifier:
keyid:77:C3:13:12:01:B0:86:79:48:1A:03:A4:94:A1:36:7C:AE:81:EA:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8MTEgGwhnlIGgOklKE2fK6B6gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/21f1ef-d6f5-4ad4-ad11-af4c1de0249d/1/XGhi90IQxBWLaQe_89Mu3qK6leo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/21f1ef-d6f5-4ad4-ad11-af4c1de0249d/1/d8MTEgGwhnlIGgOklKE2fK6B6gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.132.0/22
IPv6:
2a03:7540::/32
Signature Algorithm: sha256WithRSAEncryption
4f:d2:24:76:0f:0a:e8:2a:f1:63:a1:8e:fd:57:76:09:0f:0e:
d1:3f:21:b4:c6:a7:b0:5e:f5:3f:26:50:bc:9b:2d:ad:7c:de:
69:da:46:bb:83:62:0d:dd:19:90:91:42:35:95:e0:7b:c7:93:
33:bc:91:cd:a3:cf:08:ea:9e:8f:e5:de:b6:f4:33:f3:b6:82:
19:2d:da:4f:ab:a9:58:60:be:1d:92:eb:22:fa:d5:8e:3f:4f:
9a:b5:cb:f5:a8:1d:c6:27:8b:00:b1:e6:b5:e8:93:ca:b0:65:
3a:bc:60:64:22:c0:10:b6:65:ec:56:18:b9:01:93:14:36:f5:
e0:15:47:fd:49:7b:5d:d4:3c:76:93:fd:f1:f2:d2:6c:5c:44:
ee:44:fe:ca:bb:c1:fc:1c:54:c3:9b:55:2c:be:a3:bc:8b:ee:
10:12:56:31:49:6a:79:dd:db:c4:a9:c9:f6:c5:87:c3:75:aa:
f9:9f:f3:ee:6e:85:ff:5f:c8:3e:ba:72:38:2e:98:5a:16:fd:
ca:a7:4f:6c:be:f7:0c:8d:be:9f:94:f1:42:d5:86:27:c1:ae:
f8:04:06:ba:bb:a7:41:f2:1e:6e:49:eb:a4:74:8f:c8:10:fe:
5e:96:a6:0a:1c:52:17:dc:69:a2:a9:6a:f7:60:bc:a6:1d:c5:
15:bf:97:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:38 2023 by rpki-client on console-fra.rpki-client.org