Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/99dcca-963a-4003-bfaf-a1169a289c54/1/4oa0u5ui9iUTzCNypA_18g4xA1Y.roa
File: 4oa0u5ui9iUTzCNypA_18g4xA1Y.roa (raw, json)
Hash identifier: K8YS75Rf0Lf8Ed56cKwCbEIwkLY10V1kg/HU8SY7Sd0=
Subject key identifier: E2:86:B4:BB:9B:A2:F6:25:13:CC:23:72:A4:0F:F5:F2:0E:31:03:56
Certificate issuer: /CN=1a1ae5e49a44abddc22b0adbdaeb64136f25d467
Certificate serial: C60118
Authority key identifier: 1A:1A:E5:E4:9A:44:AB:DD:C2:2B:0A:DB:DA:EB:64:13:6F:25:D4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ghrl5JpEq93CKwrb2utkE28l1Gc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/99dcca-963a-4003-bfaf-a1169a289c54/1/4oa0u5ui9iUTzCNypA_18g4xA1Y.roa
Signing time: Sat 01 Jan 2022 01:57:42 +0000
ROA not before: Sat 01 Jan 2022 01:57:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47176
IP address blocks: 185.238.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12976408 (0xc60118)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a1ae5e49a44abddc22b0adbdaeb64136f25d467
Validity
Not Before: Jan 1 01:57:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e286b4bb9ba2f62513cc2372a40ff5f20e310356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5e:66:fa:04:da:1b:98:3b:d6:71:d5:00:3c:
48:35:c8:5b:2a:ba:b4:d0:ca:c6:f4:9c:56:50:1e:
0f:37:c9:33:00:76:93:eb:35:d9:ff:bb:8c:57:f4:
c0:fc:e1:f5:93:64:b9:09:9f:06:83:98:56:a4:9b:
3c:62:03:1b:47:82:e5:2a:cb:d6:49:b7:56:48:bc:
14:6a:70:98:2e:81:05:d3:8a:1a:40:df:22:cc:da:
3b:19:f9:f5:9d:99:99:c0:b0:5d:2b:d5:a5:85:56:
04:35:a8:3d:2a:ee:7c:d9:93:ad:12:65:f7:d0:f1:
38:ca:ef:c6:40:76:d3:d9:28:c8:35:cd:b9:b1:6a:
eb:4a:fb:b6:d2:23:6e:88:cb:0a:fb:45:3c:bf:42:
0c:db:cc:bf:aa:3d:b0:a7:11:34:c0:63:7e:c3:9a:
ac:63:fc:d2:16:c5:2e:50:7e:de:30:81:86:46:84:
76:fb:9f:c2:e2:86:a6:af:10:96:ce:32:01:8b:fe:
88:0c:71:6b:76:80:71:08:1c:09:fa:b5:73:d3:63:
aa:f1:4a:73:98:db:e9:4f:d5:bb:4d:71:f2:c5:5d:
54:2e:12:a0:e4:6f:b2:df:c9:1f:50:df:c6:1c:e4:
0c:67:5c:ee:56:49:8c:e3:2c:f0:ca:b8:de:f8:31:
de:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:86:B4:BB:9B:A2:F6:25:13:CC:23:72:A4:0F:F5:F2:0E:31:03:56
X509v3 Authority Key Identifier:
keyid:1A:1A:E5:E4:9A:44:AB:DD:C2:2B:0A:DB:DA:EB:64:13:6F:25:D4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ghrl5JpEq93CKwrb2utkE28l1Gc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/99dcca-963a-4003-bfaf-a1169a289c54/1/4oa0u5ui9iUTzCNypA_18g4xA1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/99dcca-963a-4003-bfaf-a1169a289c54/1/Ghrl5JpEq93CKwrb2utkE28l1Gc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.12.0/22
Signature Algorithm: sha256WithRSAEncryption
25:dd:2e:11:36:ed:4b:ac:44:5c:ec:ab:c4:2f:02:84:68:89:
76:29:c1:f6:02:0f:c0:46:72:76:ea:ff:03:e8:e7:8c:29:e0:
04:f1:5f:3e:7e:99:9f:96:fb:a2:c2:8c:20:13:60:19:94:f7:
24:87:27:a5:11:50:18:64:58:8f:b7:fd:44:64:50:6d:6f:6a:
23:83:69:4b:36:f2:b4:2e:b7:6c:2c:8f:3c:e5:33:45:2d:cf:
1f:d5:7f:24:6b:35:ab:3a:01:e8:a4:89:0a:a7:18:26:50:49:
65:c1:ad:b8:36:cc:bb:07:42:95:7c:1c:67:32:8a:31:8b:64:
6b:95:ae:ad:a5:95:e2:a1:27:6e:d5:1f:45:24:01:35:cb:64:
52:bc:da:96:84:41:c6:00:29:b4:72:e3:3a:83:d2:40:2b:42:
1b:1f:c9:31:de:5e:3d:7a:f1:6e:ae:4d:4c:4e:59:43:5f:3d:
64:de:1d:60:ff:e3:d5:b6:16:98:26:6c:58:83:bc:5c:29:a6:
f8:23:59:3e:de:29:3c:5e:53:b0:e9:64:88:ea:06:94:46:95:
fc:45:a8:c9:09:4e:93:97:79:4e:67:b0:9b:ce:cf:f7:1e:e7:
b6:a0:67:d6:3d:3e:b8:16:ed:fc:51:96:89:81:ec:9b:27:5c:
b0:54:e2:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:07 2023 by rpki-client on console-fra.rpki-client.org