Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/Cl6Mi-oGsrKYQ-vgS6rhWi5gN4Q.roa
File: Cl6Mi-oGsrKYQ-vgS6rhWi5gN4Q.roa (raw, json)
Hash identifier: UOGExvraQJvE758Tni+IFzRrMCmzvQwua/pyyKF57KE=
Subject key identifier: 0A:5E:8C:8B:EA:06:B2:B2:98:43:EB:E0:4B:AA:E1:5A:2E:60:37:84
Certificate issuer: /CN=10773f32d3cb4e13e43f10a3dc422f1f3271bfba
Certificate serial: 0182C53893F5D5801CEBF100FA61F66975E2
Authority key identifier: 10:77:3F:32:D3:CB:4E:13:E4:3F:10:A3:DC:42:2F:1F:32:71:BF:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHc_MtPLThPkPxCj3EIvHzJxv7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/Cl6Mi-oGsrKYQ-vgS6rhWi5gN4Q.roa
Signing time: Mon 22 Aug 2022 11:03:15 +0000
ROA not before: Mon 22 Aug 2022 11:03:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206754
IP address blocks: 185.194.112.0/24 maxlen: 24
2a0a:4a40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:38:93:f5:d5:80:1c:eb:f1:00:fa:61:f6:69:75:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10773f32d3cb4e13e43f10a3dc422f1f3271bfba
Validity
Not Before: Aug 22 11:03:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a5e8c8bea06b2b29843ebe04baae15a2e603784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2e:8b:b2:98:a8:69:c1:7a:1e:6c:3e:a5:6c:
51:09:d2:93:30:4e:75:cb:1d:12:eb:79:f6:51:11:
ef:46:77:99:83:75:99:82:fe:18:42:e7:f8:eb:2f:
f4:91:83:50:0c:c9:6a:82:51:1d:6e:81:37:b3:6a:
4a:bb:de:c6:c5:83:a1:8e:1f:6c:e2:b2:0d:fb:af:
67:29:82:c9:2e:86:e8:45:a1:ee:f9:54:af:5e:c6:
0f:81:e0:73:c4:96:4d:b0:4d:bf:79:4f:f9:d3:b1:
a4:13:e9:1b:fd:2a:ed:6f:b8:c6:5b:9b:77:59:11:
dd:f0:01:70:e9:4e:22:c0:d7:2b:ce:6b:5f:de:14:
5a:18:e2:45:3c:d9:15:3f:c1:fe:99:c6:50:b9:40:
d6:46:8a:d6:65:0e:53:46:c6:cb:6e:68:67:9f:c7:
16:5a:e3:f7:8a:db:ca:af:da:bc:5f:72:ce:1e:b7:
e3:2a:f4:90:0f:ff:75:37:2f:00:76:0a:28:a7:6b:
d5:57:c5:43:9a:28:e7:0c:86:4c:e7:a1:84:cf:cf:
71:d8:e2:1c:80:5a:25:69:07:02:99:c4:a0:51:f3:
04:58:91:90:b1:6b:e9:0e:1d:c5:28:65:70:f0:87:
50:6e:c7:4c:2f:2b:a3:39:b4:64:72:3b:d8:77:f1:
22:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:5E:8C:8B:EA:06:B2:B2:98:43:EB:E0:4B:AA:E1:5A:2E:60:37:84
X509v3 Authority Key Identifier:
keyid:10:77:3F:32:D3:CB:4E:13:E4:3F:10:A3:DC:42:2F:1F:32:71:BF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHc_MtPLThPkPxCj3EIvHzJxv7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/Cl6Mi-oGsrKYQ-vgS6rhWi5gN4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/EHc_MtPLThPkPxCj3EIvHzJxv7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.112.0/24
IPv6:
2a0a:4a40::/29
Signature Algorithm: sha256WithRSAEncryption
c8:a5:de:b2:ce:42:7d:6c:40:4b:38:84:d3:c7:03:53:03:63:
95:ec:26:1a:43:9c:28:a9:e5:db:90:18:4c:d1:eb:8c:91:0d:
35:a7:18:cd:05:33:48:7e:85:ea:07:ea:bf:f1:36:e6:cc:40:
21:27:39:ea:f5:bb:7c:fa:d6:25:b8:b4:d3:7d:7a:90:bc:7f:
73:eb:1e:31:f1:99:46:03:c5:fb:58:80:33:3c:d9:58:8b:a5:
89:52:33:54:a1:ff:7c:4e:91:cd:d0:03:4b:1d:09:b5:da:c0:
3f:5e:7f:ec:1f:80:09:99:c4:c4:b9:fd:39:79:5c:c7:c0:f0:
b3:84:57:b2:2b:9d:eb:a5:52:57:a1:c2:ec:32:78:16:d4:8a:
2e:69:07:13:6b:72:80:8b:9d:dd:0d:c1:51:6a:7c:32:f6:15:
c1:c2:71:97:98:58:f2:05:37:5d:61:9a:d3:17:a9:52:76:fa:
9a:fc:87:30:a4:e5:53:d7:23:0a:79:46:d8:99:ab:ef:42:3d:
85:d1:77:9b:83:0f:62:08:3e:9e:0d:a4:f1:90:0d:70:7b:0f:
aa:fb:12:6b:e1:c4:9c:d1:85:26:45:bc:2e:52:f1:c2:fd:c5:
9d:16:da:93:2d:fe:42:a4:e3:29:ae:97:dd:72:b7:90:2f:3c:
d3:71:4b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:23 2023 by rpki-client on console-ams.rpki-client.org