Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/xO96YGp2wKjdknqd-WLYRHSMbOg.roa
File: xO96YGp2wKjdknqd-WLYRHSMbOg.roa (raw, json)
Hash identifier: GZqPpoaDqZd7L2r0RvQ+UcObHVlY9TgVOej8hO4FtyA=
Subject key identifier: C4:EF:7A:60:6A:76:C0:A8:DD:92:7A:9D:F9:62:D8:44:74:8C:6C:E8
Certificate issuer: /CN=b252dda27226a275e3e79b374c8f263cd2d8ecd1
Certificate serial: 12804DD2
Authority key identifier: B2:52:DD:A2:72:26:A2:75:E3:E7:9B:37:4C:8F:26:3C:D2:D8:EC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/slLdonImonXj55s3TI8mPNLY7NE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/xO96YGp2wKjdknqd-WLYRHSMbOg.roa
Signing time: Tue 29 Mar 2022 10:07:22 +0000
ROA not before: Tue 29 Mar 2022 10:07:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.156.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 310398418 (0x12804dd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b252dda27226a275e3e79b374c8f263cd2d8ecd1
Validity
Not Before: Mar 29 10:07:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4ef7a606a76c0a8dd927a9df962d844748c6ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1c:09:71:8c:cf:a1:c4:63:cf:1d:71:97:0a:
ac:b7:e2:ca:a4:6a:7b:75:85:50:ff:2a:f9:72:47:
63:d9:0c:71:34:4e:d6:38:41:bc:4f:de:cf:9e:66:
9f:c4:dc:3c:e9:5f:e5:72:06:26:8a:d1:fb:38:d9:
aa:03:69:51:25:5f:d5:4e:5c:82:47:20:98:49:ed:
a1:f2:27:2a:11:33:4a:7d:0b:5f:f0:e1:8b:10:a1:
45:b4:64:c9:0d:a8:d7:cb:61:88:12:70:5c:3e:88:
2c:5c:71:e0:b0:78:49:33:06:bb:48:cc:2d:b9:27:
9a:3c:0d:dc:ec:18:7c:3e:56:ed:10:10:49:e5:94:
cf:a0:f6:55:1f:2f:77:92:93:38:74:1b:03:37:73:
76:be:ee:c6:e1:71:de:4f:a7:cd:b4:4c:33:e7:25:
e9:99:9e:42:f4:8a:07:9b:73:85:55:0f:54:44:99:
fb:80:7c:73:3b:da:44:1d:dc:ec:56:43:dc:32:40:
a7:6b:e8:96:da:72:11:5e:c4:bc:73:4d:46:ae:f8:
d1:f9:1a:c6:23:4d:af:ee:de:b5:b8:57:2a:73:c3:
b9:f0:70:f9:fa:26:40:08:ca:af:05:96:8f:a8:aa:
3a:1b:78:92:8f:b5:12:78:58:72:3e:51:13:b0:7c:
89:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:EF:7A:60:6A:76:C0:A8:DD:92:7A:9D:F9:62:D8:44:74:8C:6C:E8
X509v3 Authority Key Identifier:
keyid:B2:52:DD:A2:72:26:A2:75:E3:E7:9B:37:4C:8F:26:3C:D2:D8:EC:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/slLdonImonXj55s3TI8mPNLY7NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/xO96YGp2wKjdknqd-WLYRHSMbOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/slLdonImonXj55s3TI8mPNLY7NE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.168.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:23:22:3c:4f:c8:39:83:d0:d5:34:ef:02:f4:4f:28:8d:ff:
69:b6:04:f6:a6:a9:1d:9c:f4:9f:d9:b5:5e:43:2a:19:64:ca:
04:03:db:d7:9b:9a:00:f8:0d:9b:19:30:fb:1b:0f:19:94:75:
e8:b3:c3:4a:89:1e:97:5c:c7:13:32:f5:9e:c9:82:79:8b:c7:
59:99:e3:a4:1c:e6:dc:ee:3b:7a:b1:36:c0:4d:35:d5:30:85:
ae:82:0b:16:ff:82:55:72:86:6e:6f:0d:72:94:56:85:e7:1b:
17:80:5d:18:a4:8e:2f:cd:15:83:86:33:ff:32:f9:22:72:1c:
e8:8a:c6:b8:38:d5:c6:03:99:cc:50:20:bb:fe:47:85:57:37:
14:f5:2a:a7:a9:21:b1:3f:af:fb:c5:b5:1d:a1:2c:cd:6d:ca:
bc:7a:9b:3a:14:6f:b3:50:fe:cd:18:f3:7c:97:16:a7:d0:eb:
77:ef:b9:83:68:be:3f:c8:25:7d:4d:41:ee:87:a6:4c:da:80:
fa:81:78:c5:55:93:3e:10:c3:25:3b:dd:d2:c9:e6:43:3a:ee:
c6:3f:66:fb:69:5c:ae:8a:7a:48:03:d0:ff:cf:12:0d:39:8b:
a0:fb:ec:e3:a6:9f:31:6a:91:e8:02:86:b0:a2:a7:cd:75:8e:
85:87:73:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-ams.rpki-client.org