Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/ce022d-d8db-4459-be1c-b091215d5e4d/1/x4WQ5AS3S1rS15vyBoXhdJ0VAqo.roa
File: x4WQ5AS3S1rS15vyBoXhdJ0VAqo.roa (raw, json)
Hash identifier: O0nv35jl9GceEvnV2ZTZAmRvIoT7zgqa7tenBTMPBBo=
Subject key identifier: C7:85:90:E4:04:B7:4B:5A:D2:D7:9B:F2:06:85:E1:74:9D:15:02:AA
Certificate issuer: /CN=c9470ae418eeddd6b39dae9e7a177a19c7799c41
Certificate serial: 06F53A14
Authority key identifier: C9:47:0A:E4:18:EE:DD:D6:B3:9D:AE:9E:7A:17:7A:19:C7:79:9C:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yUcK5Bju3dazna6eehd6Gcd5nEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/ce022d-d8db-4459-be1c-b091215d5e4d/1/x4WQ5AS3S1rS15vyBoXhdJ0VAqo.roa
Signing time: Sat 01 Jan 2022 01:52:34 +0000
ROA not before: Sat 01 Jan 2022 01:52:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197014
IP address blocks: 185.36.216.0/22 maxlen: 24
194.247.26.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116734484 (0x6f53a14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9470ae418eeddd6b39dae9e7a177a19c7799c41
Validity
Not Before: Jan 1 01:52:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c78590e404b74b5ad2d79bf20685e1749d1502aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:40:30:2b:45:60:62:ec:2c:8b:e0:f5:27:7c:
47:65:0c:09:0e:6a:fa:c4:e7:9b:d1:ef:2d:6a:82:
d7:80:70:56:4f:93:dc:15:2c:69:57:49:b2:0d:4b:
63:67:60:07:75:f5:27:26:9e:60:68:1c:5e:b5:25:
75:eb:89:31:29:27:c0:6c:b5:ca:29:df:b4:59:72:
63:68:95:bf:3a:a6:45:42:81:13:a5:84:9a:94:97:
7c:fe:a5:98:eb:13:c6:c0:b1:36:37:6c:c5:b2:5f:
87:84:25:92:d5:c6:45:ee:ab:9a:0a:c5:02:0c:62:
6a:f8:b4:f7:05:7c:c0:18:e5:78:45:b3:40:58:7c:
ca:3c:cd:10:33:12:bd:50:53:7e:be:cf:d0:80:a2:
ea:39:9d:40:f2:fb:46:2f:ca:b8:22:1f:71:56:9d:
09:d1:0e:5f:77:6c:4f:45:60:3e:12:8d:33:27:64:
08:f3:d0:b1:af:17:7f:32:16:7d:69:9a:ac:c8:7f:
67:e2:c4:86:32:34:4e:1a:3c:a7:68:5f:7c:e0:4a:
6c:41:d1:6a:3f:d3:9e:db:b5:c2:6c:3f:f5:c8:95:
67:6b:0f:47:df:8d:e9:67:c9:36:49:44:b3:49:5d:
af:de:34:59:99:50:7f:f1:95:b6:55:48:8c:d0:11:
e6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:85:90:E4:04:B7:4B:5A:D2:D7:9B:F2:06:85:E1:74:9D:15:02:AA
X509v3 Authority Key Identifier:
keyid:C9:47:0A:E4:18:EE:DD:D6:B3:9D:AE:9E:7A:17:7A:19:C7:79:9C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yUcK5Bju3dazna6eehd6Gcd5nEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/ce022d-d8db-4459-be1c-b091215d5e4d/1/x4WQ5AS3S1rS15vyBoXhdJ0VAqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/ce022d-d8db-4459-be1c-b091215d5e4d/1/yUcK5Bju3dazna6eehd6Gcd5nEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.216.0/22
194.247.26.0/23
Signature Algorithm: sha256WithRSAEncryption
61:e9:f0:17:04:90:1d:df:2a:d2:ab:69:6d:4a:d1:da:2b:e2:
13:13:ea:a1:b5:af:d2:38:40:e5:ba:19:10:0f:b3:7d:13:6d:
04:68:a4:e2:79:06:54:86:dc:96:c8:e4:73:92:d3:2d:63:a5:
21:6a:af:b1:39:d0:ea:a3:6d:97:2c:51:62:8d:98:cd:8a:a5:
3c:30:f6:0c:71:3e:bc:c7:7f:f5:a9:03:6e:c7:f2:3a:cb:49:
14:4d:3e:1a:10:bf:0c:02:c8:d3:27:2e:78:a8:46:1d:b2:e9:
6c:b4:35:94:5e:d7:cf:af:f0:a5:b6:5a:53:9d:27:d6:61:e6:
1a:a3:c0:26:43:52:ae:12:c7:16:61:76:7f:16:a6:f5:90:7e:
90:43:ba:0e:79:00:0d:ef:a0:d3:5c:04:d2:26:1a:d2:10:bf:
2b:6a:f5:43:7d:5f:eb:a8:a0:4f:c9:13:3a:f1:e8:dd:6c:64:
84:82:4d:ec:3e:35:bd:e8:7d:d6:c4:fc:91:99:b2:ef:7e:79:
30:24:a5:88:4d:82:fc:ac:41:5b:cc:6e:89:b6:e2:b0:4c:13:
0e:81:f1:ae:c9:9d:23:74:1b:23:d5:33:57:40:b9:d0:f5:80:
97:6b:f8:7a:08:95:7d:d2:45:38:73:0f:64:27:da:dd:81:db:
21:ad:f5:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:55 2023 by rpki-client on console-fra.rpki-client.org