Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/gfMpM5w1O6DkE8ynCs_nuqHkgPM.roa
File: gfMpM5w1O6DkE8ynCs_nuqHkgPM.roa (raw, json)
Hash identifier: bTslGacYV++QJiW52tR78wXBHwfhDR0OPwaIuJyGbEw=
Subject key identifier: 81:F3:29:33:9C:35:3B:A0:E4:13:CC:A7:0A:CF:E7:BA:A1:E4:80:F3
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FF9ED86
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/gfMpM5w1O6DkE8ynCs_nuqHkgPM.roa
Signing time: Sat 01 Jan 2022 14:59:54 +0000
ROA not before: Sat 01 Jan 2022 14:59:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213151
IP address blocks: 185.197.135.0/24 maxlen: 24
2a06:e881:73ff::/48 maxlen: 48
2a06:e881:7300::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 268037510 (0xff9ed86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81f329339c353ba0e413cca70acfe7baa1e480f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ab:b4:87:4a:29:e7:c4:6c:c9:57:20:7b:be:
c7:21:31:fc:bf:df:47:fd:21:29:cd:73:70:04:4a:
ed:79:82:81:dd:44:55:d0:8b:d8:17:8f:aa:7e:22:
5a:ea:08:d6:1c:a7:8c:73:6c:fe:98:af:46:e5:96:
4f:38:d7:c1:6c:c5:e6:2e:74:f1:18:10:29:be:b6:
9c:85:47:dc:c7:d1:42:90:b1:24:9c:2e:c4:f7:d0:
e0:f9:6b:d7:61:4e:e2:85:d6:17:d9:22:e2:d1:8f:
58:9a:4c:7d:59:e5:8d:72:41:6e:b5:a0:e1:3f:f9:
f9:7d:26:5e:2b:eb:1d:2f:84:58:e8:02:06:7a:ca:
6c:06:23:44:4a:d4:4a:02:ce:0f:b9:57:1b:95:06:
79:7d:55:69:5a:c8:72:37:c4:ef:bd:91:b4:9b:b8:
1d:ee:22:d5:96:35:15:f2:36:8e:c3:5a:fb:4f:61:
5c:a1:cc:8a:bf:ec:6b:05:1f:39:54:89:6f:2e:52:
db:26:96:c7:94:91:49:1d:74:e0:86:2c:13:5e:69:
73:96:18:e1:db:4b:a9:3c:b7:d7:46:85:a1:dc:d5:
1c:6c:b5:fb:ff:5b:d0:ad:b6:8d:60:f2:86:0b:c7:
f6:f5:9f:d9:4f:7b:f8:6b:b5:fa:87:12:a0:7d:f6:
98:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:F3:29:33:9C:35:3B:A0:E4:13:CC:A7:0A:CF:E7:BA:A1:E4:80:F3
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/gfMpM5w1O6DkE8ynCs_nuqHkgPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.135.0/24
IPv6:
2a06:e881:7300::/40
Signature Algorithm: sha256WithRSAEncryption
15:8d:23:0a:1b:ed:94:c9:d7:12:92:ab:e3:3a:3e:fb:41:a1:
25:98:f6:07:16:31:8d:3f:f4:ca:87:d1:de:a5:9e:4b:99:d8:
a0:a9:b2:e3:01:2a:c2:22:f2:8f:cc:28:09:8d:af:73:e8:51:
3a:cc:75:f1:ad:67:41:6f:5a:4e:e7:1a:74:79:ab:db:0b:55:
62:e9:f2:7e:bf:90:0f:e5:e3:b0:f0:b8:a7:6a:31:3c:4a:3c:
37:96:19:ac:21:80:12:d0:1a:ac:e0:74:c7:2d:b4:81:ec:25:
aa:ee:3c:2a:34:13:db:42:2f:93:84:d3:1b:29:e2:f3:c8:51:
15:37:d5:5d:1a:51:9d:fd:38:c7:37:c1:7f:20:fa:35:21:e6:
aa:ec:9f:07:e6:e6:42:2c:cd:6e:19:6b:0d:ee:fd:19:b5:19:
43:64:37:07:70:ab:6c:90:77:ab:24:4a:d6:d7:2b:e2:52:f2:
fd:d7:3f:53:47:6c:8f:be:0a:49:d8:3d:5c:02:97:ad:2b:41:
32:39:19:56:01:52:37:b6:95:a9:2a:36:ad:c6:ea:41:1a:a1:
d3:0d:65:60:49:99:64:06:5a:dc:3e:21:94:07:ad:de:fc:da:
8f:e3:42:b1:35:88:8f:fc:65:ff:a3:cc:7b:dc:5d:20:f2:ef:
ef:aa:52:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-ams.rpki-client.org