Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/6UOY6zw8pQ9-zTfv3H3Cmx7KJmM.roa
File: 6UOY6zw8pQ9-zTfv3H3Cmx7KJmM.roa (raw, json)
Hash identifier: pBM/9nXLG+qRJM1jXB62N5BZ2XFElmjT2CBlTDwc+kI=
Subject key identifier: E9:43:98:EB:3C:3C:A5:0F:7E:CD:37:EF:DC:7D:C2:9B:1E:CA:26:63
Certificate issuer: /CN=1474b6fc67b6b90db311c61fc0e3a9c752833c56
Certificate serial: 10FDEE0A
Authority key identifier: 14:74:B6:FC:67:B6:B9:0D:B3:11:C6:1F:C0:E3:A9:C7:52:83:3C:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/6UOY6zw8pQ9-zTfv3H3Cmx7KJmM.roa
Signing time: Sat 01 Jan 2022 11:04:22 +0000
ROA not before: Sat 01 Jan 2022 11:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203615
IP address blocks: 185.127.181.0/24 maxlen: 24
185.127.180.0/24 maxlen: 24
185.127.180.0/22 maxlen: 24
2a06:cb00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 285077002 (0x10fdee0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1474b6fc67b6b90db311c61fc0e3a9c752833c56
Validity
Not Before: Jan 1 11:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e94398eb3c3ca50f7ecd37efdc7dc29b1eca2663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7a:e5:8c:a5:5a:2e:5c:85:fc:02:be:72:47:
03:95:24:54:c2:a5:5d:2c:fe:f0:48:9d:b0:54:77:
2d:0b:14:a1:e6:63:5a:2f:d1:9e:57:a4:ef:e3:80:
a1:8f:9c:4f:ea:e0:eb:ba:ed:88:66:87:fa:eb:3e:
9f:81:b3:27:32:5f:49:cb:63:39:82:cf:f0:de:51:
a3:e5:eb:2c:26:33:b9:f3:16:32:cd:b5:ce:8f:f7:
a8:e5:0b:d8:c5:50:45:16:3a:62:0d:e6:d0:81:4e:
09:30:fc:1f:f9:b5:93:71:3e:c7:ab:bd:10:fb:20:
45:b5:19:23:e2:34:a9:a7:1c:34:60:85:8b:6a:43:
ad:cf:a5:f0:56:c7:15:f3:24:8c:4b:e6:43:e3:19:
b1:58:8f:58:f4:54:70:48:be:df:d6:32:0a:7a:08:
e0:72:78:9f:0e:61:80:85:26:aa:d8:9b:18:df:54:
be:80:02:24:ec:94:f0:5d:ef:86:9e:8b:f1:10:cd:
8c:9a:98:4e:29:41:ba:50:db:8d:63:1f:ae:3a:db:
5f:d3:96:26:89:b7:54:a5:bd:03:7f:6d:2a:57:5c:
4f:6b:1a:fc:25:27:67:99:ec:ca:3c:0f:ae:13:bc:
6e:1f:aa:27:39:28:45:2d:d0:ec:e5:c9:51:e3:1b:
6d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:43:98:EB:3C:3C:A5:0F:7E:CD:37:EF:DC:7D:C2:9B:1E:CA:26:63
X509v3 Authority Key Identifier:
keyid:14:74:B6:FC:67:B6:B9:0D:B3:11:C6:1F:C0:E3:A9:C7:52:83:3C:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/6UOY6zw8pQ9-zTfv3H3Cmx7KJmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.180.0/22
IPv6:
2a06:cb00::/29
Signature Algorithm: sha256WithRSAEncryption
1b:44:52:0b:4c:c3:21:10:c3:0e:8e:07:d2:19:aa:30:e9:94:
81:43:79:e4:a5:fd:d9:62:db:4f:80:f4:ba:ab:fd:d5:f6:5e:
27:99:e0:e0:0a:53:c0:ee:f4:e5:c2:a8:b8:92:f0:9a:dc:3b:
93:16:df:31:16:b1:f8:b8:a8:a0:d1:25:24:ba:ef:ed:61:8d:
85:e2:01:c6:33:2e:12:66:96:0c:b4:d0:d4:d4:e6:5b:ef:6f:
34:4f:e0:3d:91:70:a2:7f:af:54:3e:75:e0:50:a5:f3:65:0d:
df:c5:47:91:2c:43:98:09:6e:97:5e:90:fc:54:f7:a4:f6:4e:
65:20:4d:15:05:a8:b6:c6:77:b9:c6:10:df:1f:fe:03:db:18:
57:2d:e6:89:b0:1e:55:0c:34:7e:61:ce:21:c8:39:90:38:e6:
8b:3b:ac:60:47:a5:fa:fa:7f:0b:97:86:18:76:8c:c3:d1:0f:
15:54:84:b2:4f:7e:11:a7:c6:e7:a9:de:3d:78:a9:33:cc:a5:
a4:a0:af:88:01:46:1c:d6:44:88:f3:8b:a2:60:63:7b:91:86:
ab:48:53:3e:6a:5d:38:1a:b2:c8:65:e2:ae:81:b1:60:0f:dd:
0e:84:8d:1a:86:c3:e2:ef:22:8b:cf:23:24:c5:4c:18:b0:3a:
45:3a:7d:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:53 2023 by rpki-client on console-fra.rpki-client.org