Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/5UJKhVp562ZsqJPw5mNnsgWT-e8.roa
File: 5UJKhVp562ZsqJPw5mNnsgWT-e8.roa (raw, json)
Hash identifier: VqQZoSetiCfgMr+ePhI7v/liY5zAf8ApLrrKRrfhrL0=
Subject key identifier: E5:42:4A:85:5A:79:EB:66:6C:A8:93:F0:E6:63:67:B2:05:93:F9:EF
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 07AAC116
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/5UJKhVp562ZsqJPw5mNnsgWT-e8.roa
Signing time: Sat 01 Jan 2022 08:01:49 +0000
ROA not before: Sat 01 Jan 2022 08:01:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60144
IP address blocks: 185.222.219.0/24 maxlen: 24
2a09:0:12::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128631062 (0x7aac116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 08:01:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5424a855a79eb666ca893f0e66367b20593f9ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4b:27:a2:3b:58:4c:05:92:bc:7d:9e:f2:05:
85:0d:9a:a1:f8:2b:27:a5:62:70:15:79:5e:60:92:
d6:cb:c0:12:4f:0b:34:3e:db:05:c3:84:d1:25:a7:
76:72:7c:68:9e:27:50:ca:e6:d0:79:fe:f5:1a:c0:
ea:5a:6c:ce:df:e1:77:6d:4d:ce:6e:1d:a9:8a:6c:
2d:3d:d9:f7:7f:9f:ea:bd:88:f5:bb:44:b0:ce:90:
bb:51:4c:33:c8:1f:c7:7d:8c:b8:1d:fa:60:87:d7:
a3:f3:5d:a3:c0:05:ff:64:c3:6c:69:8a:65:dd:b5:
83:3c:ec:7a:a0:76:54:75:ad:7d:49:69:ef:e5:9e:
de:05:53:14:94:cf:21:8c:d4:33:8e:df:07:e7:26:
ee:64:5d:a3:a4:35:8b:c5:ea:ef:49:11:ad:f0:93:
4e:58:37:8d:04:55:78:04:db:33:c9:75:f6:16:11:
94:ef:99:e2:4a:4d:88:0e:24:d9:52:2d:ad:b1:0f:
6b:9e:40:77:a5:b4:d0:5c:fb:8c:87:35:e6:5c:11:
72:84:a7:b3:de:e4:67:c1:fa:2a:61:6f:76:49:41:
62:0a:60:96:66:0c:9c:b5:d6:b1:8d:42:01:82:d4:
c7:11:8e:69:ca:fd:cf:11:0f:52:80:74:5a:57:20:
03:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:42:4A:85:5A:79:EB:66:6C:A8:93:F0:E6:63:67:B2:05:93:F9:EF
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/5UJKhVp562ZsqJPw5mNnsgWT-e8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.219.0/24
IPv6:
2a09:0:12::/48
Signature Algorithm: sha256WithRSAEncryption
0d:80:4b:f4:e9:ca:62:27:7b:ca:56:9e:15:5a:80:ad:da:b8:
32:4c:2e:d7:f7:6a:b3:dd:a4:5e:86:4d:b3:c0:2e:95:3f:86:
bd:3a:c6:0f:ca:4f:c8:78:34:c6:66:f5:8f:93:b3:ec:98:89:
8d:c4:45:d1:e0:2a:71:9a:60:94:53:1d:ec:37:fe:f9:1a:36:
bb:94:d6:5f:06:26:3c:61:ab:41:f9:44:74:a6:e0:9c:38:16:
4a:1f:9f:a7:1e:fa:03:9d:7c:6f:11:e2:4b:00:da:3f:80:5d:
3b:26:6d:61:a4:ef:1d:a1:f9:e3:27:34:6f:fc:4e:60:37:06:
bd:34:42:27:b8:71:da:6e:13:95:df:51:3b:43:5b:5b:a4:58:
e7:0e:1f:52:48:c2:2c:da:32:ad:b4:7e:12:c4:bc:c9:4d:71:
23:82:ef:71:77:2e:62:26:fb:54:51:5b:0a:aa:51:28:e6:8f:
c8:a1:6e:07:c8:06:09:c4:bf:60:c2:7d:f3:78:fe:82:37:dc:
54:a9:23:af:84:a9:f2:84:80:9d:f4:53:52:4d:6c:dd:91:ba:
3b:18:b2:77:4b:7d:c6:e6:31:69:74:95:9d:a3:2a:bc:b2:dc:
51:2d:54:66:e9:89:98:bc:97:a2:80:23:f5:86:9e:23:eb:e4:
0b:0f:9e:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-ams.rpki-client.org