Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/Skaq_uvvkZg1whTrD_44e7eEXFc.roa
File: Skaq_uvvkZg1whTrD_44e7eEXFc.roa (raw, json)
Hash identifier: ZbgSEwQTQ/tmmrVQMwixQPQSF8YzP0vfAKuwI9sJMPc=
Subject key identifier: 4A:46:AA:FE:EB:EF:91:98:35:C2:14:EB:0F:FE:38:7B:B7:84:5C:57
Certificate issuer: /CN=1474b6fc67b6b90db311c61fc0e3a9c752833c56
Certificate serial: 01830D85C8F8682C2823182E137B4DB15266
Authority key identifier: 14:74:B6:FC:67:B6:B9:0D:B3:11:C6:1F:C0:E3:A9:C7:52:83:3C:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/Skaq_uvvkZg1whTrD_44e7eEXFc.roa
Signing time: Mon 05 Sep 2022 12:00:14 +0000
ROA not before: Mon 05 Sep 2022 12:00:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9051
IP address blocks: 185.127.180.0/24 maxlen: 24
185.127.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0d:85:c8:f8:68:2c:28:23:18:2e:13:7b:4d:b1:52:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1474b6fc67b6b90db311c61fc0e3a9c752833c56
Validity
Not Before: Sep 5 12:00:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a46aafeebef919835c214eb0ffe387bb7845c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:bb:d0:8e:4a:c6:52:36:1e:cc:29:01:52:b3:
f4:f8:87:03:3d:e9:f3:c6:b7:87:8d:5d:c1:0e:22:
65:88:6a:14:ad:3e:8d:86:a4:d4:89:75:86:68:06:
17:66:7e:f8:98:17:d6:d9:ea:26:61:ef:68:5a:35:
88:c3:ab:a6:43:49:e3:40:da:25:1a:25:f2:04:1f:
62:16:6e:1e:e2:41:93:a6:f3:f7:49:3f:b1:e6:60:
0f:ce:0c:fc:dd:f9:6a:62:22:ba:42:b8:36:bd:a6:
8d:56:70:db:64:1a:b3:2f:6e:28:b1:39:b4:ce:39:
6c:88:5a:c0:d3:04:12:5a:d1:03:07:2e:78:85:8d:
07:2f:18:15:4b:71:59:c5:18:49:91:76:89:48:79:
05:f0:a3:e0:69:85:48:79:0c:69:6c:9b:08:91:5d:
0f:0a:23:02:f8:a5:9c:c9:c0:30:96:a0:72:ca:c4:
48:79:39:4a:c9:8c:53:8e:8a:5e:6d:ef:2c:c7:3b:
f6:22:40:79:49:4e:9e:11:e8:ec:38:30:05:62:cb:
00:8c:dd:85:40:56:e3:9e:15:a8:a1:2e:b6:e8:c1:
12:c8:a6:ae:2f:41:ce:a6:7b:ab:0e:6e:7e:e7:a3:
4a:15:09:2f:81:c6:a9:4e:ec:40:b6:df:7b:6e:04:
51:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:46:AA:FE:EB:EF:91:98:35:C2:14:EB:0F:FE:38:7B:B7:84:5C:57
X509v3 Authority Key Identifier:
keyid:14:74:B6:FC:67:B6:B9:0D:B3:11:C6:1F:C0:E3:A9:C7:52:83:3C:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/Skaq_uvvkZg1whTrD_44e7eEXFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.180.0/23
Signature Algorithm: sha256WithRSAEncryption
56:bc:28:08:bf:76:93:50:20:76:b3:3a:2d:99:b5:12:f5:2d:
58:6f:37:4a:1d:23:81:52:9d:8e:cc:c7:a8:87:ca:97:bb:cb:
3d:c0:e1:dc:12:9f:6c:9f:74:6d:46:a2:49:41:a2:21:9f:42:
51:f5:50:84:7f:e1:8b:36:75:be:19:54:93:f5:2d:65:ab:f8:
cc:0a:7d:36:ee:b9:80:7e:10:4c:16:77:ac:98:9b:5c:e2:f7:
46:48:9f:c3:31:c5:2e:c9:88:ea:91:31:e0:e6:27:48:da:18:
a4:31:0c:59:bf:00:94:ca:8f:cd:03:65:fc:af:04:bb:10:0c:
75:a9:f5:78:54:9d:bb:1b:fc:4b:02:db:64:e1:e4:db:fe:14:
3d:6b:45:8a:0a:90:65:2b:9f:ec:d1:5a:d6:cb:87:35:ee:41:
1a:96:fe:eb:cc:86:83:b9:89:f0:d3:29:07:dd:e8:57:e7:59:
f5:ab:5f:44:41:99:70:f6:a0:8b:be:35:09:85:12:61:87:a9:
a4:d6:b6:d5:8e:83:8b:ea:b7:05:52:73:a5:ec:e0:81:e1:f1:
37:9e:4e:3f:5e:79:03:f3:78:5f:1c:03:8e:db:44:ae:8c:a3:
2b:f0:c7:f5:9a:29:64:17:fa:56:75:c0:8a:75:70:f9:b6:b7:
16:c1:00:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:53 2023 by rpki-client on console-fra.rpki-client.org