Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/d045ca-c1f7-4ed9-afdb-090c46e9f2ed/1/2kW7dUAfEolfbRAnK22iFgHCSQI.roa
File: 2kW7dUAfEolfbRAnK22iFgHCSQI.roa (raw, json)
Hash identifier: 3VeFTUCRrSnpOod7GwJeKWdorGYC3spHy6mhHz+73vs=
Subject key identifier: DA:45:BB:75:40:1F:12:89:5F:6D:10:27:2B:6D:A2:16:01:C2:49:02
Certificate issuer: /CN=dc94bb69453f139a60029e22db0fb3424a906cee
Certificate serial: 03BD1314
Authority key identifier: DC:94:BB:69:45:3F:13:9A:60:02:9E:22:DB:0F:B3:42:4A:90:6C:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JS7aUU_E5pgAp4i2w-zQkqQbO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/d045ca-c1f7-4ed9-afdb-090c46e9f2ed/1/2kW7dUAfEolfbRAnK22iFgHCSQI.roa
Signing time: Sat 01 Jan 2022 14:07:16 +0000
ROA not before: Sat 01 Jan 2022 14:07:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6723
IP address blocks: 185.5.252.0/22 maxlen: 24
178.255.176.0/21 maxlen: 24
2a01:6d80:f000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62722836 (0x3bd1314)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc94bb69453f139a60029e22db0fb3424a906cee
Validity
Not Before: Jan 1 14:07:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da45bb75401f12895f6d10272b6da21601c24902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:90:da:cb:43:21:10:53:28:43:b8:30:9b:16:
93:4f:65:0c:28:39:91:0c:9e:ee:14:86:51:cd:91:
71:96:48:62:9f:d3:ee:cc:2b:e1:e7:d4:88:b8:40:
57:9e:51:df:80:1a:5d:61:87:59:d7:d7:60:59:4b:
f7:d6:9a:b9:ce:7d:c3:2d:a9:af:15:fa:74:0f:35:
3a:1c:10:d3:00:0e:9d:fe:5b:83:3d:77:13:b2:ec:
a3:1f:47:da:4b:3a:7d:03:15:04:44:8d:6f:fc:48:
bc:35:be:48:3e:2b:fb:77:4c:f2:92:a4:c6:c2:42:
b0:fc:d0:26:92:bd:4f:2d:f5:bf:e2:5d:24:d4:23:
08:67:5e:a2:93:74:02:32:8a:95:a1:0b:e4:a0:75:
1e:25:aa:17:bd:d7:a1:70:ae:b7:cc:b3:17:e1:cc:
8d:8b:39:52:99:4f:ad:16:73:c8:c0:91:8d:be:0c:
59:fc:39:9e:01:4c:f0:aa:db:1e:93:9c:43:1f:41:
f3:f6:62:ec:55:89:ba:11:80:97:c5:a3:fa:c7:a6:
e4:40:65:54:d5:7a:37:3a:d4:40:f1:e1:da:ac:76:
1c:65:43:a1:c1:ce:33:d0:68:56:28:cf:3d:a7:a3:
3b:82:a2:f2:a5:0b:ee:27:8f:9c:ca:41:a9:2c:39:
60:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:45:BB:75:40:1F:12:89:5F:6D:10:27:2B:6D:A2:16:01:C2:49:02
X509v3 Authority Key Identifier:
keyid:DC:94:BB:69:45:3F:13:9A:60:02:9E:22:DB:0F:B3:42:4A:90:6C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JS7aUU_E5pgAp4i2w-zQkqQbO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d045ca-c1f7-4ed9-afdb-090c46e9f2ed/1/2kW7dUAfEolfbRAnK22iFgHCSQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d045ca-c1f7-4ed9-afdb-090c46e9f2ed/1/3JS7aUU_E5pgAp4i2w-zQkqQbO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.176.0/21
185.5.252.0/22
IPv6:
2a01:6d80:f000::/36
Signature Algorithm: sha256WithRSAEncryption
c7:6d:cb:c5:54:f1:06:8d:cb:21:c6:a7:55:47:e0:7c:d5:f2:
d8:4b:49:c8:0a:37:c7:7a:d2:97:15:0c:f4:ed:df:e9:ff:68:
5f:01:69:d7:44:d2:f9:03:c2:ae:57:6f:a0:99:d8:0d:43:66:
2e:5b:0b:af:a3:3a:e4:5a:76:2d:76:2c:d7:b3:f3:bc:35:d7:
78:d7:ad:fb:02:aa:4f:7b:b8:34:ad:a6:a9:5e:29:11:a3:ce:
de:b5:33:7b:62:4a:96:c1:99:5a:3e:8d:19:92:b8:7a:a4:42:
20:ad:37:9b:f7:6e:bb:d1:4a:97:0f:9f:03:c9:c1:82:f2:39:
c4:b1:e4:dc:10:ad:9b:d5:dc:e6:a2:1f:2f:28:96:3d:97:b0:
86:eb:95:0d:2f:b1:a4:71:f3:56:07:34:5c:52:ac:e2:b4:73:
0e:92:67:1d:82:fc:5e:08:51:64:9a:41:32:3e:c2:32:3e:53:
c4:73:7e:46:74:f9:f8:25:e6:e6:9d:42:f9:c1:34:44:52:8d:
c8:6a:33:c1:fe:13:78:a4:3c:65:4f:39:8e:05:6a:a4:be:2f:
92:6a:b5:cb:d1:d1:f5:80:02:30:4d:a2:e0:62:c1:fb:5d:66:
93:1e:e5:54:be:b3:ec:49:d8:4c:36:1c:64:07:e8:4e:a2:7a:
a9:24:ea:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:30 2023 by rpki-client on console-fra.rpki-client.org