Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/aCWhf40G46c4SrQSS7AI8_2nCL8.roa
File: aCWhf40G46c4SrQSS7AI8_2nCL8.roa (raw, json)
Hash identifier: aRTZ9JBnbBHVbysh0w/dIPj2XS22c6RGiLCk2fJk3uU=
Subject key identifier: 68:25:A1:7F:8D:06:E3:A7:38:4A:B4:12:4B:B0:08:F3:FD:A7:08:BF
Certificate issuer: /CN=1474b6fc67b6b90db311c61fc0e3a9c752833c56
Certificate serial: 1136B891
Authority key identifier: 14:74:B6:FC:67:B6:B9:0D:B3:11:C6:1F:C0:E3:A9:C7:52:83:3C:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/aCWhf40G46c4SrQSS7AI8_2nCL8.roa
Signing time: Fri 28 Jan 2022 09:58:46 +0000
ROA not before: Fri 28 Jan 2022 09:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43905
IP address blocks: 185.127.180.0/24 maxlen: 24
185.127.181.0/24 maxlen: 24
185.127.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 288798865 (0x1136b891)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1474b6fc67b6b90db311c61fc0e3a9c752833c56
Validity
Not Before: Jan 28 09:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6825a17f8d06e3a7384ab4124bb008f3fda708bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:63:ea:e7:77:0a:20:06:b4:13:78:69:66:ef:
a7:8b:ae:91:e3:7b:b6:18:54:f2:59:3b:eb:2d:75:
2c:b7:60:77:27:80:11:21:21:44:4d:69:92:12:40:
8a:41:e8:f6:71:3e:f1:9d:33:38:98:b4:e6:6c:37:
1f:94:81:0d:60:8b:42:70:40:8a:4e:fa:88:d1:b1:
1d:51:ea:9b:7e:aa:9f:37:d6:26:f8:39:49:67:4f:
a1:16:39:80:56:d1:80:3f:99:1a:65:bb:5f:88:8d:
24:70:01:54:75:56:06:ec:68:93:e5:c2:aa:21:9d:
22:76:6d:13:fd:e1:e4:6d:4e:95:04:ab:63:5a:33:
1a:e7:9d:e3:12:93:89:98:df:ce:a1:15:35:d4:b1:
01:08:91:a1:b4:9e:ba:22:06:9e:4f:c1:53:4e:e1:
63:a4:f0:63:63:3b:97:6a:eb:7e:aa:3c:f1:90:07:
fa:55:c6:a2:8e:64:37:eb:f8:15:cd:f3:3b:ca:1e:
93:5b:be:f8:88:66:38:09:18:9a:b9:d2:41:9e:78:
b4:7e:9e:de:91:bc:8c:1c:f1:9e:8e:e4:70:54:df:
6d:86:a1:7a:51:9b:62:03:a2:74:ec:2e:42:2f:7f:
4a:32:51:0e:d7:50:75:c1:e3:8b:b3:a4:06:c3:79:
72:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:25:A1:7F:8D:06:E3:A7:38:4A:B4:12:4B:B0:08:F3:FD:A7:08:BF
X509v3 Authority Key Identifier:
keyid:14:74:B6:FC:67:B6:B9:0D:B3:11:C6:1F:C0:E3:A9:C7:52:83:3C:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/aCWhf40G46c4SrQSS7AI8_2nCL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.180.0/23
185.127.183.0/24
Signature Algorithm: sha256WithRSAEncryption
46:aa:98:0a:12:26:e6:89:ca:4d:59:69:7e:cd:a9:aa:be:e9:
1b:08:06:8c:a0:04:23:43:42:2a:0f:de:e7:10:79:ac:2d:75:
cc:64:c2:0a:86:52:20:cb:8c:a1:38:7f:61:00:c8:71:52:2d:
4f:8c:2c:5e:87:df:0e:5e:83:48:d6:2d:21:c5:b3:c9:80:8f:
bd:2f:16:dd:2b:9c:fa:a8:fd:ad:db:b7:dd:76:d1:88:cf:52:
e8:9b:ee:b6:f3:09:39:14:18:e5:4c:d7:30:a0:84:ac:62:e0:
25:a8:f2:4b:ae:46:aa:e4:81:92:c1:b8:dc:2b:eb:ca:d5:87:
7f:6d:e0:1f:6f:64:04:ea:c7:c8:50:1e:07:e3:24:fc:1e:e9:
43:46:b0:d7:83:12:97:52:27:00:c3:68:c7:7e:e7:bb:00:a7:
35:b9:ce:50:2e:89:45:c1:16:ff:fd:1c:86:e4:59:a9:f9:1e:
d8:3a:82:7c:f0:8c:47:f6:bf:14:5c:a9:c9:3e:e2:3e:1d:44:
90:63:85:09:17:a1:a1:28:c2:8f:f5:3c:fc:9b:1d:9d:bf:8a:
58:31:93:a3:38:32:39:7c:fa:58:a6:54:78:26:20:ad:3b:50:
24:96:9d:9a:48:49:41:78:9d:79:e1:0c:61:ff:24:4d:8d:4e:
60:cb:71:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-ams.rpki-client.org