Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/9f536d-0dd6-43ea-a914-9c088c345ae6/1/TOvTmanmqlxCsQmlLcIOzUt8Ggs.roa
File: TOvTmanmqlxCsQmlLcIOzUt8Ggs.roa (raw, json)
Hash identifier: +mKK2FywtuyhkIkcYWjnQprKo9BeB0qjr49qMdCbqXE=
Subject key identifier: 4C:EB:D3:99:A9:E6:AA:5C:42:B1:09:A5:2D:C2:0E:CD:4B:7C:1A:0B
Certificate issuer: /CN=c5c5acc7f7ec2b45b43d2547c96464c008933d52
Certificate serial: 30255EF7
Authority key identifier: C5:C5:AC:C7:F7:EC:2B:45:B4:3D:25:47:C9:64:64:C0:08:93:3D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcWsx_fsK0W0PSVHyWRkwAiTPVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/9f536d-0dd6-43ea-a914-9c088c345ae6/1/TOvTmanmqlxCsQmlLcIOzUt8Ggs.roa
Signing time: Sat 01 Jan 2022 11:03:24 +0000
ROA not before: Sat 01 Jan 2022 11:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199229
IP address blocks: 185.2.20.0/22 maxlen: 22
2a02:6740::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 807755511 (0x30255ef7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c5acc7f7ec2b45b43d2547c96464c008933d52
Validity
Not Before: Jan 1 11:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4cebd399a9e6aa5c42b109a52dc20ecd4b7c1a0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:27:48:31:e3:59:8d:4f:36:66:9f:4d:83:ea:
ce:65:cf:c4:8c:1d:ec:f8:a7:fa:08:47:a2:e0:60:
ad:07:d8:ce:77:c6:fe:ec:35:eb:bd:bd:6d:12:1a:
0d:f6:7c:c9:46:5e:7d:da:dd:0e:96:2e:50:98:c1:
c4:2d:bd:6b:1c:f0:47:3b:0b:73:ad:bc:01:17:30:
98:36:aa:fa:60:ac:0a:b7:df:1a:81:44:03:ba:f5:
0c:5b:20:87:03:13:22:f7:e0:15:15:32:e5:40:58:
c5:12:7f:97:64:b7:58:62:66:3e:d3:64:0d:a5:e1:
e6:25:77:bb:fa:3c:96:5b:1c:6d:bf:56:d6:ea:2a:
a9:a1:9a:30:76:28:a9:92:e9:05:eb:fe:97:24:9d:
96:d9:f6:9d:5f:04:d3:c8:78:f6:00:e0:b9:f1:86:
d5:da:b3:f8:5d:80:e9:98:47:bf:e5:64:18:24:db:
6b:aa:e6:03:08:31:a2:b2:16:c5:36:b9:3b:f4:72:
78:cb:ff:5b:fa:24:72:eb:cb:98:86:07:e0:46:bf:
38:33:8e:03:f3:00:d7:3b:a1:c6:00:33:4f:93:64:
37:95:bc:0d:17:87:e3:dc:9f:ee:25:83:9b:f1:84:
b2:42:a7:10:84:11:7b:8b:35:22:28:4f:0d:18:31:
44:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:EB:D3:99:A9:E6:AA:5C:42:B1:09:A5:2D:C2:0E:CD:4B:7C:1A:0B
X509v3 Authority Key Identifier:
keyid:C5:C5:AC:C7:F7:EC:2B:45:B4:3D:25:47:C9:64:64:C0:08:93:3D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcWsx_fsK0W0PSVHyWRkwAiTPVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9f536d-0dd6-43ea-a914-9c088c345ae6/1/TOvTmanmqlxCsQmlLcIOzUt8Ggs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9f536d-0dd6-43ea-a914-9c088c345ae6/1/xcWsx_fsK0W0PSVHyWRkwAiTPVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.20.0/22
IPv6:
2a02:6740::/32
Signature Algorithm: sha256WithRSAEncryption
0b:cb:10:d3:10:b0:c9:04:64:9c:d5:3d:bf:13:e9:26:f6:71:
9e:8d:40:97:67:92:f3:a9:08:34:2f:2d:11:06:1f:1d:17:1b:
94:db:28:24:12:80:3f:5c:1a:f7:7f:94:9c:1a:e5:b0:e6:3e:
94:05:25:1d:54:de:61:d0:0c:4b:57:19:8a:51:04:d6:cc:c8:
76:72:af:fb:06:d2:cd:f6:89:af:59:7a:0d:5a:4d:0c:15:2b:
2c:51:49:ee:9c:3b:71:35:38:7c:bf:39:02:4c:3a:40:93:b6:
bb:7f:ef:c9:b8:2a:7c:eb:d4:49:83:88:37:7b:96:ae:0b:02:
c6:62:04:a3:d7:e3:0b:1d:de:24:18:b2:9f:bf:ba:53:12:14:
f6:06:e0:8d:53:55:ed:42:f8:e2:66:51:21:d0:60:13:77:2e:
2c:8f:e4:80:b5:a4:40:f8:39:86:4d:2b:77:f8:85:ea:99:cc:
8e:e3:47:36:33:fd:af:10:a2:15:9e:26:cf:15:71:21:2c:31:
9b:e0:81:50:3c:a4:13:5c:b4:c9:72:6a:0f:85:0a:2d:3e:a5:
f5:a2:fd:19:5a:0c:7a:30:61:97:df:b7:ee:bc:60:60:a5:c5:
63:23:9a:c6:2a:d0:5d:42:2a:0e:3b:b8:e5:6b:10:ba:2b:7d:
99:d1:41:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:57 2024 by rpki-client on console-ams.rpki-client.org