Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/74f9e0-1f4c-4720-8e69-ea4a6dc163c9/1/Xp_zT7tAmTyMlJNKHrKQqcZ1pzk.roa
File: Xp_zT7tAmTyMlJNKHrKQqcZ1pzk.roa (raw, json)
Hash identifier: /dkiTczgNiFRVY3CR/V8Jln7NvcppICoA7EbBknWZIU=
Subject key identifier: 5E:9F:F3:4F:BB:40:99:3C:8C:94:93:4A:1E:B2:90:A9:C6:75:A7:39
Certificate issuer: /CN=12e108b46c25d932b6506c3ef0a87e8b8212ea18
Certificate serial: 18879196
Authority key identifier: 12:E1:08:B4:6C:25:D9:32:B6:50:6C:3E:F0:A8:7E:8B:82:12:EA:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EuEItGwl2TK2UGw-8Kh-i4IS6hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/74f9e0-1f4c-4720-8e69-ea4a6dc163c9/1/Xp_zT7tAmTyMlJNKHrKQqcZ1pzk.roa
Signing time: Tue 07 Jun 2022 09:42:20 +0000
ROA not before: Tue 07 Jun 2022 09:42:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34624
IP address blocks: 185.246.2.0/23 maxlen: 23
185.246.0.0/23 maxlen: 23
185.246.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 411537814 (0x18879196)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12e108b46c25d932b6506c3ef0a87e8b8212ea18
Validity
Not Before: Jun 7 09:42:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e9ff34fbb40993c8c94934a1eb290a9c675a739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:57:d2:b4:53:5e:f6:c6:f4:30:33:75:b0:5d:
9f:2b:4a:df:13:c3:47:82:92:31:80:b3:51:91:81:
06:d9:cf:bb:4b:2f:36:a1:e4:b1:72:b4:82:92:2a:
e2:c3:f4:c3:07:07:a6:b1:23:c4:fd:50:da:f2:8e:
c8:02:47:22:b4:29:67:da:8c:a3:29:32:d5:ea:e4:
ee:57:14:5d:c8:86:c2:99:c4:a0:9f:f3:b6:1b:0d:
ab:0b:63:3d:77:18:a8:1b:a3:35:e7:78:81:ab:03:
32:eb:e7:39:b7:33:2e:5b:a5:71:d9:14:b7:d8:f9:
0e:79:69:09:a7:49:b6:d7:ae:47:c1:2a:e4:88:25:
99:d0:64:bc:a0:6e:8e:10:39:e8:e0:0e:2a:fa:b5:
d2:0c:37:c4:96:59:96:68:33:04:ea:40:07:ca:e2:
54:ac:05:dd:28:b4:86:7f:e9:56:9d:e2:b4:34:a8:
82:18:41:f9:c4:09:a5:8f:b5:62:6d:41:1a:91:88:
a2:c6:5c:4e:eb:88:90:09:6e:11:34:1c:38:f5:ac:
52:a8:8c:01:50:09:ee:d6:52:4d:fd:b9:78:34:d2:
43:23:8a:f0:15:57:29:e3:e0:0a:b4:66:2a:1e:bc:
15:19:a2:0c:0c:5a:e9:a8:78:8b:40:db:8c:ad:a7:
99:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:9F:F3:4F:BB:40:99:3C:8C:94:93:4A:1E:B2:90:A9:C6:75:A7:39
X509v3 Authority Key Identifier:
keyid:12:E1:08:B4:6C:25:D9:32:B6:50:6C:3E:F0:A8:7E:8B:82:12:EA:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EuEItGwl2TK2UGw-8Kh-i4IS6hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/74f9e0-1f4c-4720-8e69-ea4a6dc163c9/1/Xp_zT7tAmTyMlJNKHrKQqcZ1pzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/74f9e0-1f4c-4720-8e69-ea4a6dc163c9/1/EuEItGwl2TK2UGw-8Kh-i4IS6hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.0.0/22
Signature Algorithm: sha256WithRSAEncryption
24:e3:60:a2:a3:6b:ee:60:41:8f:28:58:58:77:29:b0:04:89:
08:07:6d:56:90:85:e9:01:fa:02:14:25:b2:33:d4:59:b6:00:
26:22:c9:66:8e:c5:5b:6f:b1:d6:19:63:57:23:b9:af:b4:c4:
63:43:dd:74:aa:1f:5d:2c:cf:84:34:be:6b:2e:6b:1a:46:d5:
36:3e:82:4a:56:71:a7:da:94:ca:a3:a4:18:d7:88:24:03:72:
83:ff:c3:17:56:a0:ce:f8:72:bf:f0:d6:93:4e:08:c9:e9:7f:
bf:1a:39:07:f2:de:b6:46:9f:a2:1f:d5:a0:b0:3e:d3:ac:b7:
ac:c9:58:de:d2:1f:99:75:34:0d:e2:f3:fa:7c:33:a9:0c:bd:
bf:15:65:8d:9b:a0:68:4a:2b:6d:10:59:d3:5d:e7:f0:ad:ea:
a0:21:9f:ff:cf:8f:ae:43:b1:5d:ac:d9:23:f3:80:c4:b3:1c:
e1:e3:c7:05:28:9f:f5:2c:31:a9:ed:7c:b2:84:f5:86:53:0b:
40:e9:08:ff:02:0b:2b:c7:59:8c:c0:68:74:46:1e:24:6b:8a:
99:78:2f:6d:d8:1a:83:4e:b8:91:2e:1c:26:1b:47:f8:c1:1c:
c3:07:f0:4e:c4:cd:01:6c:d6:36:2a:c2:84:fb:4d:cd:bd:63:
58:93:06:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:56 2023 by rpki-client on console-fra.rpki-client.org