Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/dc35eb-6ecf-4452-8599-70d59cc4f7cc/1/w-ugcBthcjW_RhkgyM_1JC0nyeY.roa
File: w-ugcBthcjW_RhkgyM_1JC0nyeY.roa (raw, json)
Hash identifier: 7WkNToYDR5deefN3V5XcvjQxfK4bp5GIx2kNAqJhWBg=
Subject key identifier: C3:EB:A0:70:1B:61:72:35:BF:46:19:20:C8:CF:F5:24:2D:27:C9:E6
Certificate issuer: /CN=f0bfad31c14c93daa5344ba04f4b52354696dfaf
Certificate serial: 0F6D5DC0
Authority key identifier: F0:BF:AD:31:C1:4C:93:DA:A5:34:4B:A0:4F:4B:52:35:46:96:DF:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8L-tMcFMk9qlNEugT0tSNUaW368.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/dc35eb-6ecf-4452-8599-70d59cc4f7cc/1/w-ugcBthcjW_RhkgyM_1JC0nyeY.roa
Signing time: Sat 01 Jan 2022 04:51:42 +0000
ROA not before: Sat 01 Jan 2022 04:51:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43181
IP address blocks: 185.169.149.0/24 maxlen: 24
185.169.148.0/22 maxlen: 24
185.169.151.0/24 maxlen: 24
185.169.148.0/24 maxlen: 24
185.169.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258825664 (0xf6d5dc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0bfad31c14c93daa5344ba04f4b52354696dfaf
Validity
Not Before: Jan 1 04:51:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3eba0701b617235bf461920c8cff5242d27c9e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cf:5b:61:1f:8d:67:e2:b7:ef:91:71:7a:93:
08:ec:54:77:eb:6b:05:a6:92:8c:01:73:d6:c2:54:
78:61:3a:cc:ef:db:66:90:a2:ff:da:c4:0c:4f:db:
c7:7b:2d:99:d0:26:4f:cb:46:07:c5:60:37:78:2b:
44:b3:54:de:c9:9c:b6:ff:1a:c8:12:39:d1:0a:36:
2c:da:be:86:bb:9c:86:c2:9e:c7:0b:a4:99:59:32:
65:0b:f3:ff:b6:45:fe:4c:e3:35:0c:60:fc:3f:41:
c9:a5:df:d6:18:51:2d:41:48:3e:b8:0c:8b:17:00:
9d:fa:f5:b5:88:12:03:4b:3a:f5:00:d2:9e:91:1b:
76:a6:ba:51:0d:27:4f:f7:29:ce:a9:7c:74:6e:1a:
55:6b:38:04:90:db:66:5c:e1:39:ce:e0:c5:44:fc:
35:71:6e:e9:52:6b:d4:46:70:09:11:28:1e:a9:48:
56:55:18:70:e9:9a:0c:1f:20:5a:f8:20:ff:6b:39:
ec:62:e8:28:05:79:b4:62:98:dd:e4:b7:50:81:06:
2d:c1:97:91:0a:d9:ca:2a:c1:76:f1:40:71:b8:9e:
78:58:90:69:84:1b:3a:f9:95:06:9e:52:24:7a:9d:
c7:7a:bb:f9:47:32:bc:e3:e1:7c:2f:fc:8b:83:ea:
47:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:EB:A0:70:1B:61:72:35:BF:46:19:20:C8:CF:F5:24:2D:27:C9:E6
X509v3 Authority Key Identifier:
keyid:F0:BF:AD:31:C1:4C:93:DA:A5:34:4B:A0:4F:4B:52:35:46:96:DF:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8L-tMcFMk9qlNEugT0tSNUaW368.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/dc35eb-6ecf-4452-8599-70d59cc4f7cc/1/w-ugcBthcjW_RhkgyM_1JC0nyeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/dc35eb-6ecf-4452-8599-70d59cc4f7cc/1/8L-tMcFMk9qlNEugT0tSNUaW368.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.148.0/22
Signature Algorithm: sha256WithRSAEncryption
af:56:93:93:83:fb:0b:02:bb:59:84:de:29:ef:7c:01:ff:98:
fb:a1:e0:bd:45:58:65:78:a2:2f:53:91:d3:a5:cd:a1:94:21:
e7:ce:4a:4c:b0:53:f4:5a:f1:56:bb:5c:b4:cb:4e:4a:72:99:
06:03:2e:ba:14:80:42:96:8f:62:e9:d7:48:ff:11:80:7f:f5:
11:34:90:38:b4:25:91:2b:49:c6:cc:0b:7f:69:75:a1:7e:12:
b8:ff:81:32:98:28:86:6c:8a:f0:ca:68:a6:31:e6:c2:20:4f:
2d:e3:44:8d:72:e2:3f:a9:99:0b:27:b4:e9:89:b0:b1:b6:34:
07:34:02:0c:13:41:1b:29:7f:a1:69:65:57:b4:ea:87:64:bd:
23:a0:90:71:31:70:32:22:5f:01:f6:a8:aa:a2:dc:93:d4:d4:
ed:66:d1:fe:0d:da:88:45:9e:c1:39:a8:5c:68:78:55:4e:ae:
96:9e:78:0f:42:0f:12:d9:9e:89:04:72:59:b3:3d:cd:e4:f3:
2a:d6:91:ed:ab:7d:a7:87:28:3e:cb:ae:06:6e:bc:18:1b:34:
f0:f3:8c:bd:b0:81:bc:a7:37:b3:b6:de:17:4c:a9:a1:81:a6:
69:21:73:8c:38:a8:d8:9b:ce:ed:a0:a5:46:07:8d:be:ac:14:
6e:52:9b:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:43 2023 by rpki-client on console-fra.rpki-client.org