Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/eee6f4-548e-4cef-8fa4-93b020fe8ff1/1/Se38ZT4zsPqkevjRVszu5Gev7_s.roa
File: Se38ZT4zsPqkevjRVszu5Gev7_s.roa (raw, json)
Hash identifier: ZaHbIWT5iYTDZEKjdrbQjnSgn2cZX3qxdsMbkUraicA=
Subject key identifier: 49:ED:FC:65:3E:33:B0:FA:A4:7A:F8:D1:56:CC:EE:E4:67:AF:EF:FB
Certificate issuer: /CN=e2ed643095ffa657de05ceeca5d20b265c1b7f52
Certificate serial: 38D403
Authority key identifier: E2:ED:64:30:95:FF:A6:57:DE:05:CE:EC:A5:D2:0B:26:5C:1B:7F:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4u1kMJX_plfeBc7spdILJlwbf1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/eee6f4-548e-4cef-8fa4-93b020fe8ff1/1/Se38ZT4zsPqkevjRVszu5Gev7_s.roa
Signing time: Sat 01 Jan 2022 02:54:12 +0000
ROA not before: Sat 01 Jan 2022 02:54:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60111
IP address blocks: 185.255.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3724291 (0x38d403)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2ed643095ffa657de05ceeca5d20b265c1b7f52
Validity
Not Before: Jan 1 02:54:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49edfc653e33b0faa47af8d156cceee467afeffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2c:d6:af:64:2b:84:47:58:07:f1:32:04:71:
9b:87:27:ee:80:27:fd:f7:5d:71:84:18:7f:95:4f:
d8:69:97:57:d3:55:fc:c1:76:d2:4f:51:1a:be:a4:
75:c1:c7:6f:3a:19:90:9f:69:b4:67:71:c2:86:5a:
a8:4d:28:0c:0a:b7:a6:2f:4e:53:4f:a6:43:0c:8c:
11:d9:64:21:58:ad:ed:51:90:23:b9:a5:9d:73:17:
78:86:9e:9e:fb:ec:e1:6f:78:14:0d:ea:37:64:9a:
84:57:dc:cb:9f:46:e2:3f:e2:fb:f2:c5:c9:97:7f:
13:3f:2f:0a:69:fa:56:ae:f9:8f:ee:ef:54:37:ea:
01:1d:40:7b:88:bd:5b:3d:43:59:38:87:6b:86:67:
5b:ce:e7:1f:16:d9:ac:21:f9:d0:bb:17:fc:d1:af:
bd:02:06:d6:80:8a:6f:91:84:af:a0:b5:13:0d:db:
d3:d4:49:b3:77:84:a6:5d:05:49:08:b7:76:25:81:
dc:b0:cd:06:09:2b:da:07:15:1a:6f:36:e5:f8:ae:
17:b8:d0:aa:4f:1c:40:f8:2d:ea:63:db:2b:93:fc:
33:0b:c8:7e:76:1e:40:f4:45:29:22:ed:6b:fd:f2:
1c:72:f2:5b:5b:5b:e0:36:8d:f6:9f:18:51:d1:d8:
04:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:ED:FC:65:3E:33:B0:FA:A4:7A:F8:D1:56:CC:EE:E4:67:AF:EF:FB
X509v3 Authority Key Identifier:
keyid:E2:ED:64:30:95:FF:A6:57:DE:05:CE:EC:A5:D2:0B:26:5C:1B:7F:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4u1kMJX_plfeBc7spdILJlwbf1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/eee6f4-548e-4cef-8fa4-93b020fe8ff1/1/Se38ZT4zsPqkevjRVszu5Gev7_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/eee6f4-548e-4cef-8fa4-93b020fe8ff1/1/4u1kMJX_plfeBc7spdILJlwbf1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.156.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:4a:1a:a4:59:08:f2:d0:c5:40:b7:22:75:74:d8:a9:38:ac:
00:b4:7c:e8:a6:eb:68:19:6e:51:9a:ad:ce:70:c9:96:65:ef:
f3:af:b9:9d:bf:29:14:3b:3e:b3:44:8b:64:14:f7:96:32:c8:
3b:40:52:a2:6a:b1:20:13:f9:99:5a:39:c5:10:91:8a:14:98:
9e:54:00:29:08:fa:e5:3f:d6:d2:8b:75:1f:58:18:97:4f:3c:
e5:00:07:a3:f5:c2:cd:f3:21:3d:1e:29:a9:a1:8c:4f:26:5d:
a4:4a:b4:8d:51:5a:cd:65:64:ea:d8:6c:98:90:2e:ab:e3:78:
a5:52:4a:07:4e:12:e4:95:0e:5b:b1:b0:cf:a1:62:d7:fd:80:
5d:91:6e:98:ff:cb:f0:14:7d:07:db:49:97:98:4d:48:0f:0e:
7f:46:6e:43:a4:e6:e6:ce:45:cd:0c:e2:a4:a9:4a:43:fd:ec:
13:26:66:bf:92:3b:4c:98:37:df:f4:49:83:ea:2a:65:0b:8f:
5e:70:5f:54:a9:56:7f:71:c5:d9:6f:88:a2:47:41:da:22:ed:
f4:b8:bf:78:c7:fe:1e:3a:b0:65:db:e3:6a:7c:b1:fa:ca:9b:
0b:0b:f0:5e:79:1f:37:cd:36:c7:1c:7e:e5:32:59:57:cb:77:
cc:c0:57:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:43 2023 by rpki-client on console-fra.rpki-client.org