Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/wqOiKmor9MUVUClEGPH-ZoCBu44.roa
File: wqOiKmor9MUVUClEGPH-ZoCBu44.roa (raw, json)
Hash identifier: YQzVp1Ts9F57yvMgDYjnqdnYFSK9lX8K6ZSadWU09Nc=
Subject key identifier: C2:A3:A2:2A:6A:2B:F4:C5:15:50:29:44:18:F1:FE:66:80:81:BB:8E
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0181D49ED7C8AD92F0559BBCD26E814752DC
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/wqOiKmor9MUVUClEGPH-ZoCBu44.roa
Signing time: Wed 06 Jul 2022 17:46:28 +0000
ROA not before: Wed 06 Jul 2022 17:46:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210464
IP address blocks: 185.197.133.0/24 maxlen: 32
2a06:e881:8705::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d4:9e:d7:c8:ad:92:f0:55:9b:bc:d2:6e:81:47:52:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jul 6 17:46:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2a3a22a6a2bf4c51550294418f1fe668081bb8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fa:46:f1:52:61:4f:41:e1:9f:3a:57:5b:64:
41:70:15:d5:06:c3:c1:2b:8c:ce:f0:32:29:54:65:
f5:c7:8d:aa:8e:83:c0:08:7a:65:b2:8d:c3:3f:98:
6b:a1:98:e9:f2:de:c0:41:a8:71:83:f9:73:80:a0:
dc:53:cd:a0:44:22:33:cd:4d:5b:b0:04:20:ca:3a:
a8:b0:dc:f7:6b:60:9c:2b:32:d3:83:ad:c4:12:38:
7e:19:bf:d6:da:f4:15:9f:0a:ad:94:86:57:04:c3:
e3:ee:0c:40:80:3e:90:51:8d:b4:9a:a4:36:1c:30:
ce:0f:c6:77:6d:7c:2e:94:03:6a:77:6d:79:56:56:
07:f7:59:65:ff:18:fa:bc:38:c5:3c:8b:e5:db:57:
2c:c5:39:85:23:80:e3:6b:0d:cd:38:64:6c:4d:8f:
12:30:e8:42:e3:73:fa:0d:2d:b5:e5:e8:b4:d7:9f:
09:d7:2e:8e:5f:ee:c2:59:66:3a:58:08:3d:66:63:
fd:31:ad:db:25:94:d6:1f:30:f1:a3:fa:ae:8e:9d:
2d:9a:89:e0:0e:4f:86:c1:59:e6:b3:0e:50:7f:a6:
43:b4:37:ef:af:61:cd:af:10:d8:ac:d7:f8:a5:d8:
5e:ae:61:b3:4f:92:29:1b:13:67:be:8b:f7:c1:23:
39:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:A3:A2:2A:6A:2B:F4:C5:15:50:29:44:18:F1:FE:66:80:81:BB:8E
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/wqOiKmor9MUVUClEGPH-ZoCBu44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.133.0/24
IPv6:
2a06:e881:8705::/48
Signature Algorithm: sha256WithRSAEncryption
02:8a:dd:9b:0f:e1:5d:db:01:16:f3:c8:88:34:b3:1e:66:8d:
78:f0:4a:0d:74:90:08:ad:d7:9b:42:d0:03:7c:d5:3e:3d:aa:
06:5a:b1:62:4b:4f:b0:99:e4:60:bb:9c:d6:41:e1:93:e6:6d:
46:0a:34:9a:2b:fc:b6:0e:66:a5:7a:42:79:9d:0b:24:3f:15:
38:c9:65:9d:db:4d:a8:d5:db:ab:a1:99:47:c4:3a:49:52:ae:
bb:2b:51:62:bc:3b:45:e8:06:34:cb:2e:85:18:cf:d9:0c:61:
8c:24:47:94:8e:d1:63:67:56:1b:56:6a:64:38:2b:b4:2e:57:
12:1f:1b:1b:1d:3b:78:ca:d1:4d:af:a2:df:33:7b:cd:86:96:
bd:06:ab:21:60:77:09:6b:66:18:f9:6c:79:2d:be:58:1f:d9:
99:71:a4:21:aa:40:ef:29:e9:4b:f3:f3:91:3c:e3:d9:18:01:
f0:02:b4:67:bf:0e:9b:c4:8f:37:43:52:1e:9a:a9:39:7b:34:
dd:1a:8c:f7:d7:09:8d:a8:e8:65:23:f4:87:35:52:5f:85:c2:
82:10:cb:61:8a:a5:d7:5e:98:2b:c0:fe:01:bb:1f:81:43:93:
c7:22:32:a2:e5:3e:53:44:36:86:46:32:8f:98:bf:b4:10:fa:
26:44:0c:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:40 2024 by rpki-client on console-ams.rpki-client.org