Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/w95IH5vRiLSe1FHdd8hTgLGXQsc.roa
File: w95IH5vRiLSe1FHdd8hTgLGXQsc.roa (raw, json)
Hash identifier: cApbaf/MdPSGZjZLVyQra8gCz6513F14qtQ9MxbM9U0=
Subject key identifier: C3:DE:48:1F:9B:D1:88:B4:9E:D4:51:DD:77:C8:53:80:B1:97:42:C7
Certificate issuer: /CN=01538851167b4e3d6f64d53797b08cb41371870f
Certificate serial: 0DCAF7DD
Authority key identifier: 01:53:88:51:16:7B:4E:3D:6F:64:D5:37:97:B0:8C:B4:13:71:87:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/w95IH5vRiLSe1FHdd8hTgLGXQsc.roa
Signing time: Sat 01 Jan 2022 09:59:48 +0000
ROA not before: Sat 01 Jan 2022 09:59:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60111
IP address blocks: 185.182.204.0/22 maxlen: 22
2a0a:f880::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 231405533 (0xdcaf7dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01538851167b4e3d6f64d53797b08cb41371870f
Validity
Not Before: Jan 1 09:59:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3de481f9bd188b49ed451dd77c85380b19742c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bc:2c:a8:c9:60:f7:db:5b:90:9f:0d:24:50:
64:54:ef:80:b9:0e:e2:26:5e:6b:9f:04:95:29:ab:
51:7f:c7:f1:67:7e:1b:25:1a:15:1a:95:29:06:d9:
6f:08:50:9b:ae:81:11:f5:c8:6b:e3:9b:65:06:77:
ee:d4:d8:fb:e0:ee:80:5d:6a:53:5d:65:c7:04:50:
65:d0:c0:b1:2b:21:6e:44:28:9f:1e:42:2e:9c:c2:
66:3b:88:13:9f:68:7d:9d:00:b8:da:af:d1:17:20:
87:f7:1d:33:90:d4:5e:89:b9:dc:39:18:1f:74:a9:
71:63:d0:ef:3d:18:9f:1d:68:86:4f:24:08:71:fe:
b8:6c:19:ab:13:07:8b:9e:99:c6:74:ea:d9:a1:00:
0a:23:79:9e:1f:3e:76:a7:12:70:85:a2:e7:95:80:
c9:c7:77:61:79:59:bb:d1:d2:b0:e0:90:e6:0c:3b:
e5:89:10:b2:96:71:e2:4e:30:9d:ac:c8:88:24:cb:
0b:ef:e7:36:03:20:0f:75:a6:b9:6a:fc:4c:e5:63:
5e:9a:78:e0:9e:ba:36:5a:23:58:4a:e1:f3:42:d3:
77:a2:bc:42:76:2b:69:5f:9f:41:cb:fb:27:7f:33:
41:03:77:e9:bb:22:ba:60:bd:14:ea:a7:1a:89:1f:
f0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:DE:48:1F:9B:D1:88:B4:9E:D4:51:DD:77:C8:53:80:B1:97:42:C7
X509v3 Authority Key Identifier:
keyid:01:53:88:51:16:7B:4E:3D:6F:64:D5:37:97:B0:8C:B4:13:71:87:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/w95IH5vRiLSe1FHdd8hTgLGXQsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.204.0/22
IPv6:
2a0a:f880::/29
Signature Algorithm: sha256WithRSAEncryption
45:ff:f4:9f:bb:71:d1:b3:17:8a:15:8b:81:20:5d:71:14:c6:
8c:51:65:72:e0:e6:58:a6:9d:32:97:b8:c0:c8:8a:1f:0e:e3:
2c:4d:2e:1a:c1:a6:61:c8:c1:74:10:72:96:a7:82:3a:48:9b:
2f:9d:11:4d:1e:14:cc:07:fe:55:45:23:45:ac:8d:88:36:9a:
28:2a:64:b6:89:8f:b9:c5:d2:3e:7b:d8:06:11:2c:80:40:79:
33:d6:54:b2:a0:48:9b:00:8f:2e:65:ff:f0:bd:6f:3c:91:b7:
ec:be:85:ee:82:bb:20:c4:11:f5:d6:1c:1b:6d:0f:e1:32:9b:
be:98:81:77:44:e7:dd:4f:2c:b6:01:fe:01:aa:dc:68:7a:35:
2c:5b:07:2f:03:f7:44:ee:e7:01:c7:f1:c5:60:ca:12:5c:14:
7c:12:2f:ed:1b:06:10:21:65:44:af:93:08:c3:93:dc:8e:fa:
f5:b9:51:a5:20:08:6d:c7:06:c2:4f:81:7b:d1:29:c5:1b:03:
a8:43:1e:d0:ac:b0:7b:ff:b0:89:70:e8:f6:46:06:df:0e:9e:
7b:48:7a:98:40:f4:c2:f9:db:06:27:cb:60:5f:11:65:f4:eb:
ec:ae:1c:e3:47:5d:20:6e:a9:64:9a:c0:b9:9c:5e:c1:4f:c6:
ed:55:67:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:17 2024 by rpki-client on console-ams.rpki-client.org