Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/AWBAyt4jMfRidJ_fFb8_vJDjw0M.roa
File: AWBAyt4jMfRidJ_fFb8_vJDjw0M.roa (raw, json)
Hash identifier: VbMas3+iyezB9ys5MmWAE6AjcmtH4xG5cxtPKYUwPRE=
Subject key identifier: 01:60:40:CA:DE:23:31:F4:62:74:9F:DF:15:BF:3F:BC:90:E3:C3:43
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 07A1FAEC
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/AWBAyt4jMfRidJ_fFb8_vJDjw0M.roa
Signing time: Sat 01 Jan 2022 08:01:44 +0000
ROA not before: Sat 01 Jan 2022 08:01:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34549
IP address blocks: 185.222.218.0/24 maxlen: 24
2a09:0:13::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128056044 (0x7a1faec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 08:01:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=016040cade2331f462749fdf15bf3fbc90e3c343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:de:c5:7f:a2:4f:ed:be:0b:7c:66:14:8a:5f:
d7:90:8b:53:eb:c9:ed:ea:ed:27:31:df:4e:79:57:
82:d8:cb:a3:d7:67:b8:ea:cc:0f:62:16:9b:b6:5a:
a8:c7:8e:b6:dd:ff:41:a6:97:d1:97:67:56:01:16:
7e:03:1e:3f:89:7f:4c:4a:85:d7:57:b8:7f:bd:d8:
42:e4:d4:9b:56:e0:b1:dd:19:92:4b:4b:fb:7a:8f:
25:99:54:5f:b2:78:f3:21:0b:a3:f6:71:61:ab:cc:
dc:c5:c0:9f:0d:98:00:7a:03:9c:89:99:b3:1a:73:
25:62:1c:ec:65:11:5c:b8:6d:5d:de:96:14:e1:9e:
3c:6a:0b:9d:5b:bb:c7:31:ba:41:2c:e1:87:73:16:
33:e9:a5:8f:70:8a:3c:3b:fc:3d:01:1b:30:4d:72:
7a:52:9f:a8:2e:af:83:f4:2f:1e:cd:7f:ec:43:94:
24:55:78:3a:ef:44:ff:e1:46:fe:cc:98:50:a5:63:
04:65:3c:87:60:f1:82:50:f4:9d:1c:31:ba:77:d9:
c0:ce:83:09:41:81:c7:09:52:4a:45:69:91:9f:af:
f2:9f:86:7f:1f:ec:7e:88:07:4e:f7:fb:c3:be:22:
27:72:1b:36:41:77:12:ed:e3:a7:c6:c4:b8:1e:88:
60:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:60:40:CA:DE:23:31:F4:62:74:9F:DF:15:BF:3F:BC:90:E3:C3:43
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/AWBAyt4jMfRidJ_fFb8_vJDjw0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.218.0/24
IPv6:
2a09:0:13::/48
Signature Algorithm: sha256WithRSAEncryption
81:6d:b8:ae:21:e9:6d:15:8a:1f:1f:0d:92:ea:e2:9d:1f:3c:
24:66:c9:0d:3d:63:b7:dd:4f:f2:12:10:4a:0d:32:18:df:13:
8a:b7:29:06:03:78:9d:90:6e:53:4e:9e:bd:ad:97:cf:8a:e7:
3b:3e:8c:47:85:22:fb:20:6e:12:8e:1f:a5:c3:b1:fa:db:d0:
09:b7:6c:80:cb:f7:df:ce:8e:24:84:12:e4:28:f1:7e:f6:2a:
83:87:af:eb:5c:45:e0:55:ec:70:e4:bd:d9:d4:0a:97:82:ec:
a0:d5:1b:95:52:23:c5:b9:43:50:ae:fa:a8:22:24:c0:8a:f8:
8c:e1:c3:ec:16:ec:02:c9:b5:95:68:06:bc:1c:e6:8d:bc:79:
2c:d2:66:98:8e:4f:f9:3d:ae:8d:d9:5c:08:01:a0:0a:8c:40:
be:eb:96:04:89:6c:7b:dc:3e:bc:c6:4e:2e:4d:77:8a:ed:f5:
5f:56:9d:04:53:ac:67:7b:52:7a:bb:ec:20:a5:62:b7:da:11:
2b:38:91:c8:19:62:eb:4b:2d:74:68:09:05:e7:1b:2f:bc:8f:
1e:09:14:6b:c7:11:f3:77:cf:7b:8c:69:1b:f7:81:21:1d:d8:
67:90:2e:2d:9b:d3:ef:46:77:79:81:f1:08:3e:e3:dc:53:1d:
f4:40:85:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-ams.rpki-client.org