Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/Ct4uY5Fozz7YxNmOS8zH5LCbUag.roa
File: Ct4uY5Fozz7YxNmOS8zH5LCbUag.roa (raw, json)
Hash identifier: yFTUKMKA5Qy8j2PAIW7jKIdRhndB02rWwH+E2InZwRw=
Subject key identifier: 0A:DE:2E:63:91:68:CF:3E:D8:C4:D9:8E:4B:CC:C7:E4:B0:9B:51:A8
Certificate issuer: /CN=493289256e3388777d95e4d531567ce3672a149a
Certificate serial: 09C9909A
Authority key identifier: 49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/Ct4uY5Fozz7YxNmOS8zH5LCbUag.roa
Signing time: Sat 01 Jan 2022 13:01:34 +0000
ROA not before: Sat 01 Jan 2022 13:01:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24971
IP address blocks: 194.145.180.0/22 maxlen: 22
185.85.164.0/22 maxlen: 22
2a03:7460::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164204698 (0x9c9909a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=493289256e3388777d95e4d531567ce3672a149a
Validity
Not Before: Jan 1 13:01:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ade2e639168cf3ed8c4d98e4bccc7e4b09b51a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a6:25:c9:b4:21:42:7d:70:f7:6e:33:a4:aa:
62:ae:30:91:6d:f8:13:88:22:0f:ca:8b:bf:c3:a1:
1f:9b:60:3a:f5:40:b3:1f:7f:0b:a0:79:7a:77:61:
47:82:79:54:6c:53:5f:c4:31:69:b1:df:32:41:b4:
dd:c9:98:ba:6c:ca:18:88:f5:4f:3f:96:33:05:e5:
8d:a4:4b:6a:b0:ca:e2:12:76:e0:85:25:1d:7a:55:
2a:ad:02:ea:3b:58:23:18:0c:ec:1a:75:c7:9d:bf:
c5:ac:f4:97:6e:a5:d0:3e:81:4f:9f:8a:88:d3:6f:
94:55:93:4e:dc:37:10:75:43:69:c4:51:19:ed:e1:
86:a2:14:cd:1c:9a:7a:e8:15:9b:fe:04:6e:b1:af:
b3:25:1a:34:1a:ae:60:82:6c:e9:7a:de:93:fd:da:
6a:7d:33:52:90:5c:95:09:10:9a:cf:94:dd:94:d9:
f7:f4:86:35:01:bd:a3:e3:99:18:9b:b9:ef:6b:06:
2c:5a:71:be:26:cf:25:cb:22:0b:da:a4:6f:21:34:
c3:55:4a:6c:86:ff:fe:df:09:c0:4e:d5:53:6f:d5:
db:34:3c:c6:2f:2b:c3:46:b6:f3:af:36:30:fe:96:
d6:fc:a4:ad:2f:4e:4c:20:79:40:27:3d:29:86:f7:
ec:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:DE:2E:63:91:68:CF:3E:D8:C4:D9:8E:4B:CC:C7:E4:B0:9B:51:A8
X509v3 Authority Key Identifier:
keyid:49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/Ct4uY5Fozz7YxNmOS8zH5LCbUag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.164.0/22
194.145.180.0/22
IPv6:
2a03:7460::/32
Signature Algorithm: sha256WithRSAEncryption
61:1b:51:be:e6:e6:91:06:53:d7:7b:bf:33:d0:75:58:ae:73:
40:a7:54:02:12:c8:3f:e3:00:33:91:a8:c1:0c:a6:a3:d8:bc:
c8:ad:ab:70:e2:1e:22:2b:30:68:aa:65:ec:55:bc:12:64:29:
1e:88:df:9a:27:d5:2d:b8:c9:9f:69:7f:db:05:9f:63:14:3d:
f8:b0:62:2e:c6:7f:46:85:d0:c8:43:1f:ea:c7:e2:ee:49:e1:
ec:8f:ef:b4:27:5d:3e:d2:cf:ca:4b:fe:07:b1:eb:76:64:40:
0e:fd:5a:60:43:3a:79:12:df:0b:63:8e:9a:ff:8c:15:b9:af:
1c:cf:15:78:47:d0:b9:d8:27:ec:c8:6f:dc:ea:c1:cd:16:9e:
a8:28:99:28:0f:ac:b3:99:1d:de:7b:8a:96:87:eb:27:4a:ed:
ad:08:59:a9:08:09:9f:44:50:f4:df:ad:26:fe:9a:11:fe:50:
d7:4b:0d:d2:e3:af:05:31:16:99:dc:8c:29:19:b4:36:3a:0a:
55:00:a5:62:7f:c2:f3:28:da:cb:9c:28:a3:ac:d9:8f:33:93:
ee:aa:3f:00:a8:ce:3d:86:ed:36:d4:18:8d:70:2f:ac:41:74:
c3:26:bc:3c:98:12:b4:c7:c0:14:c9:ce:af:8e:15:98:32:48:
f6:a8:51:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:32 2023 by rpki-client on console-ams.rpki-client.org