Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/ff1078-d196-46a5-a741-ed31e43f1e08/1/a3W74mznCWlnUOiEWTJ1C_Tw3ug.roa
File: a3W74mznCWlnUOiEWTJ1C_Tw3ug.roa (raw, json)
Hash identifier: GlkgvWWEEEAmcWxrMGy+WW0ujS6q/7/7T/KJbvnjdik=
Subject key identifier: 6B:75:BB:E2:6C:E7:09:69:67:50:E8:84:59:32:75:0B:F4:F0:DE:E8
Certificate issuer: /CN=0cdc07fda6f4d55b7c8182c929a3c4ac3c0a82fd
Certificate serial: 0183D090390A2801C16E4DAC71E530299195
Authority key identifier: 0C:DC:07:FD:A6:F4:D5:5B:7C:81:82:C9:29:A3:C4:AC:3C:0A:82:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DNwH_ab01Vt8gYLJKaPErDwKgv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/ff1078-d196-46a5-a741-ed31e43f1e08/1/a3W74mznCWlnUOiEWTJ1C_Tw3ug.roa
Signing time: Thu 13 Oct 2022 08:57:36 +0000
ROA not before: Thu 13 Oct 2022 08:57:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199666
IP address blocks: 185.127.220.0/23 maxlen: 23
185.127.222.0/23 maxlen: 23
146.247.64.0/22 maxlen: 22
146.247.64.0/24 maxlen: 24
146.247.66.0/24 maxlen: 24
146.247.67.0/24 maxlen: 24
146.247.68.0/23 maxlen: 23
146.247.68.0/24 maxlen: 24
146.247.69.0/24 maxlen: 24
146.247.70.0/24 maxlen: 24
146.247.70.0/23 maxlen: 23
146.247.65.0/24 maxlen: 24
2a05:9dc0:ffff::/48 maxlen: 48
2a05:9dc0:400::/42 maxlen: 42
2a05:9dc0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:90:39:0a:28:01:c1:6e:4d:ac:71:e5:30:29:91:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cdc07fda6f4d55b7c8182c929a3c4ac3c0a82fd
Validity
Not Before: Oct 13 08:57:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b75bbe26ce709696750e8845932750bf4f0dee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c2:07:da:24:44:58:62:57:2c:a8:00:83:11:
8e:c6:3f:9b:75:b0:17:fd:3b:d7:f3:b2:62:06:57:
1c:b6:bf:3c:2f:f0:5a:e9:8a:69:e0:db:1c:25:13:
f9:73:a9:f3:f3:bd:65:52:b3:d9:fc:6b:5c:6a:f9:
e5:eb:12:ad:2f:da:41:ba:7b:de:bd:53:b4:94:9f:
97:e2:da:94:9f:87:c3:b9:af:54:37:6c:af:22:fe:
e7:f8:a0:26:24:1e:8d:88:8b:60:95:28:89:a2:61:
df:ad:ea:79:a4:1a:18:14:bb:4e:79:47:2e:22:ac:
d0:3d:36:11:d8:e7:3a:cf:b1:14:ac:97:bd:38:0f:
53:28:73:81:7a:09:aa:7a:bf:76:1d:b2:c1:39:b3:
08:a9:98:3a:53:b0:53:a9:74:2d:c7:75:08:26:f4:
60:63:aa:3b:34:b4:15:41:7c:f0:09:fd:df:3f:65:
39:d6:87:03:e8:43:1a:aa:f4:0d:cd:d8:e1:46:e7:
b0:e9:a8:92:58:34:4e:6c:05:a2:5d:c0:46:96:85:
cf:2b:f7:d3:3c:65:3c:da:b6:99:55:6f:2d:a5:00:
eb:d8:44:8a:04:b3:63:04:bf:d0:7c:53:f5:21:65:
d4:a2:af:65:21:99:25:d4:d1:67:67:5f:c2:88:ac:
c5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:75:BB:E2:6C:E7:09:69:67:50:E8:84:59:32:75:0B:F4:F0:DE:E8
X509v3 Authority Key Identifier:
keyid:0C:DC:07:FD:A6:F4:D5:5B:7C:81:82:C9:29:A3:C4:AC:3C:0A:82:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DNwH_ab01Vt8gYLJKaPErDwKgv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/ff1078-d196-46a5-a741-ed31e43f1e08/1/a3W74mznCWlnUOiEWTJ1C_Tw3ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/ff1078-d196-46a5-a741-ed31e43f1e08/1/DNwH_ab01Vt8gYLJKaPErDwKgv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.247.64.0/21
185.127.220.0/22
IPv6:
2a05:9dc0::/48
2a05:9dc0:400::/42
2a05:9dc0:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
88:e2:b0:8d:0b:99:52:ef:a1:2b:e9:8b:fe:8a:50:56:ad:f7:
b1:95:7d:fa:06:a2:aa:2d:71:96:0f:b6:b2:75:be:bc:ca:b7:
3a:45:52:37:ef:ee:13:7a:c5:01:23:98:1d:d1:c0:d2:3a:ae:
85:6c:d9:69:be:4a:94:bd:db:76:1b:c3:76:e1:96:c5:7e:21:
26:ab:d6:17:82:22:20:a5:a3:56:0c:a0:a2:ab:19:9d:37:e8:
f8:56:8b:4e:1d:82:a5:13:2b:25:08:26:99:a7:0d:1e:d1:2d:
25:67:1d:cf:ab:ce:d9:3f:65:22:f6:4b:cd:09:0a:42:2b:6e:
33:96:80:4a:d8:0c:0d:6f:a4:25:db:1b:dc:b4:d6:e9:be:b8:
32:16:4b:09:ac:56:fa:28:27:a9:43:8a:df:1c:d6:ab:e9:00:
1e:8b:63:89:b2:d8:3d:ac:ef:03:ec:aa:4d:7f:5b:1a:87:05:
90:bb:ee:2c:70:5a:c6:68:cb:27:3e:bf:19:ae:4e:9e:14:ad:
97:e2:74:73:45:a5:d3:80:37:a7:ec:10:42:78:9e:c5:97:e0:
30:a9:88:ea:d3:da:e0:54:a0:18:14:cf:78:be:1b:5c:d4:11:
74:12:ef:ce:5f:49:16:b3:84:32:9c:38:e1:b2:9e:9a:7c:4e:
dd:30:26:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:41 2023 by rpki-client on console-ams.rpki-client.org