Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/pXG4kDtzGaQiy2qhgwZbZgj8M-g.roa
File: pXG4kDtzGaQiy2qhgwZbZgj8M-g.roa (raw, json)
Hash identifier: ic3keiVN8BTld5u17jfmtB6G8rpFCbv3u9/26ace6UQ=
Subject key identifier: A5:71:B8:90:3B:73:19:A4:22:CB:6A:A1:83:06:5B:66:08:FC:33:E8
Certificate issuer: /CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Certificate serial: 0FE2B366
Authority key identifier: 6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/pXG4kDtzGaQiy2qhgwZbZgj8M-g.roa
Signing time: Sat 01 Jan 2022 12:59:42 +0000
ROA not before: Sat 01 Jan 2022 12:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205957
IP address blocks: 185.190.148.0/23 maxlen: 23
194.28.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266515302 (0xfe2b366)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Validity
Not Before: Jan 1 12:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a571b8903b7319a422cb6aa183065b6608fc33e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:db:33:87:b5:5f:49:d0:4f:10:59:ed:ef:16:
3b:80:c5:ed:e2:59:b6:fe:1a:9c:f1:34:4f:ee:50:
46:44:02:22:4f:ae:d5:95:6d:a6:de:d5:13:95:f8:
84:ba:75:85:a2:4c:bc:68:f5:81:2a:45:04:3b:d4:
59:4a:39:d8:86:45:86:72:71:75:ac:3d:3e:f8:d7:
92:ce:c9:46:30:14:6b:a5:e5:03:ea:42:d3:80:34:
3d:37:bf:b0:27:d7:87:dd:98:ed:5f:02:24:52:24:
b2:cd:8d:48:9a:db:01:e5:1b:9d:d0:64:7a:34:e5:
2d:32:0b:4f:33:f7:80:0d:cf:3c:1e:0d:77:f9:36:
b0:b3:8f:9b:69:55:07:93:1a:7d:60:df:e5:d6:24:
7c:47:fe:91:e3:43:00:bc:5e:5b:d5:4a:62:27:6c:
fb:1e:c5:71:8f:fc:e7:47:b5:cf:d0:76:fe:1c:54:
a4:24:bd:e5:d1:87:8f:a0:67:fd:c0:3a:60:79:6c:
cd:e4:fe:20:48:10:43:8d:d5:b2:6a:97:84:e5:8f:
b9:72:be:7e:23:9b:d5:a5:56:e0:9a:77:c0:e1:ef:
cd:16:fe:be:0c:cb:3f:ef:20:86:0f:a4:d0:4f:cb:
cf:57:fe:0e:50:c8:0d:67:b2:d9:dc:c3:fd:9f:1f:
bc:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:71:B8:90:3B:73:19:A4:22:CB:6A:A1:83:06:5B:66:08:FC:33:E8
X509v3 Authority Key Identifier:
keyid:6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/pXG4kDtzGaQiy2qhgwZbZgj8M-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.148.0/23
194.28.102.0/24
Signature Algorithm: sha256WithRSAEncryption
49:71:57:29:0d:d2:19:21:56:90:ed:67:ca:7d:85:74:9a:df:
68:3f:55:c0:63:6d:9f:60:97:b9:75:90:fb:31:c1:6d:31:c3:
0c:be:be:b7:97:d5:c6:08:73:be:a7:79:b2:19:27:19:0e:96:
b7:43:46:4d:cb:f3:50:80:93:bd:2f:b6:23:9a:cb:f2:51:12:
09:ca:94:e8:72:3b:5d:84:49:b5:79:cb:60:91:6c:2b:de:46:
b7:3d:b8:4e:3f:77:47:e2:7e:54:f2:ce:4d:4c:bf:8d:ef:42:
d9:de:f3:c1:1c:04:45:07:10:ed:ad:8b:8b:2e:b2:ea:6b:1a:
20:88:b5:72:f5:12:7d:be:0f:3b:48:3e:ee:d4:1b:0f:f2:b0:
62:27:79:1e:18:9c:5e:94:71:a6:3a:78:08:c5:df:8e:87:62:
d1:f0:60:6a:50:99:6c:67:5e:2c:96:73:fb:99:78:ba:c1:58:
ae:bf:05:7e:fd:6e:27:d0:0f:b0:f0:ef:8d:3d:e2:84:74:16:
4e:bf:9c:99:9e:13:3a:a8:8d:45:21:65:8b:a4:8d:3a:f8:43:
21:da:00:fc:49:82:48:31:4f:e6:0b:5a:54:97:1a:89:6d:f9:
1e:ff:47:a4:c5:61:98:0a:6c:ef:85:96:4e:26:2d:72:19:73:
6d:14:dd:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:23 2024 by rpki-client on console-fra.rpki-client.org