Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/0868af-f2d7-4905-88d2-9db6665449cb/1/xMCsk1bqQThjfS_xT7SpU0ARxdw.roa
File: xMCsk1bqQThjfS_xT7SpU0ARxdw.roa (raw, json)
Hash identifier: xzOPbGwCse8wvnTQYbHm5WEISNVh3BuDXkZBNjS0RUA=
Subject key identifier: C4:C0:AC:93:56:EA:41:38:63:7D:2F:F1:4F:B4:A9:53:40:11:C5:DC
Certificate issuer: /CN=f3e23abae3cf0b351260d66f32339928fddf2ebb
Certificate serial: 059012F1
Authority key identifier: F3:E2:3A:BA:E3:CF:0B:35:12:60:D6:6F:32:33:99:28:FD:DF:2E:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8-I6uuPPCzUSYNZvMjOZKP3fLrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/0868af-f2d7-4905-88d2-9db6665449cb/1/xMCsk1bqQThjfS_xT7SpU0ARxdw.roa
Signing time: Fri 01 Apr 2022 08:00:16 +0000
ROA not before: Fri 01 Apr 2022 08:00:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49584
IP address blocks: 185.179.114.0/24 maxlen: 24
185.179.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93328113 (0x59012f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3e23abae3cf0b351260d66f32339928fddf2ebb
Validity
Not Before: Apr 1 08:00:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4c0ac9356ea4138637d2ff14fb4a9534011c5dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:1e:09:b1:fc:b2:a4:fd:9d:d5:04:17:41:00:
15:ec:01:a7:6c:38:38:85:29:24:fa:c7:16:b4:eb:
a6:e3:81:71:18:02:03:02:58:9a:6d:3b:00:d3:ea:
72:85:31:6c:5a:96:97:02:e5:9d:80:40:7b:ec:67:
ca:8a:68:ec:f2:fb:bb:19:05:c9:ae:91:e0:1b:be:
89:33:0a:e5:b5:c5:8e:ca:ae:8c:1f:2c:62:2c:a4:
ea:39:03:62:6d:b1:d6:17:7d:42:a6:45:9d:fe:77:
cc:16:d0:ae:77:b9:a9:5c:19:17:21:56:a3:ec:13:
33:37:6a:60:ae:fa:ec:20:c9:a8:98:b1:58:76:be:
b0:0e:e8:89:2b:bf:6e:73:19:b5:a9:c2:d3:03:f6:
4b:b8:68:6b:3b:11:a1:1c:76:67:8a:22:3d:a9:cb:
fd:60:b4:3f:10:6c:49:da:35:78:19:92:a9:e1:ed:
d1:6a:27:bf:76:12:92:0e:ba:3a:41:d6:b3:9c:48:
1c:41:0d:75:f5:40:37:31:9d:73:47:14:13:02:50:
d4:3f:b1:01:f8:a7:6a:a8:41:1d:56:bc:c5:e5:44:
f7:f9:83:c7:7f:f7:a6:b8:e6:26:3b:0c:7e:8b:44:
bd:6b:55:dc:f1:2f:65:10:6c:a9:49:c9:22:62:31:
c3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C0:AC:93:56:EA:41:38:63:7D:2F:F1:4F:B4:A9:53:40:11:C5:DC
X509v3 Authority Key Identifier:
keyid:F3:E2:3A:BA:E3:CF:0B:35:12:60:D6:6F:32:33:99:28:FD:DF:2E:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8-I6uuPPCzUSYNZvMjOZKP3fLrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/0868af-f2d7-4905-88d2-9db6665449cb/1/xMCsk1bqQThjfS_xT7SpU0ARxdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/0868af-f2d7-4905-88d2-9db6665449cb/1/8-I6uuPPCzUSYNZvMjOZKP3fLrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.114.0/23
Signature Algorithm: sha256WithRSAEncryption
41:bd:c9:f7:0f:83:ce:02:cf:cc:34:4d:f7:95:db:8e:f8:ed:
25:7e:26:76:78:60:a0:ed:52:1a:f8:8d:16:60:b1:04:44:e4:
93:86:42:31:51:f3:2b:82:fb:0a:c1:99:54:f8:15:51:c6:ae:
17:82:58:aa:3b:73:3d:66:a0:05:24:a2:66:f7:04:93:52:0a:
0f:0b:30:56:80:af:64:1a:c1:9a:30:a8:60:db:5e:3c:cc:6d:
11:a3:55:09:f8:b2:71:dd:65:b0:1d:02:4b:84:ba:20:b3:62:
c3:e8:b9:cd:89:10:0d:29:7b:8f:d1:df:94:b7:c1:d2:34:4d:
6b:cb:1f:c4:e4:63:bf:dd:f9:0c:fa:3e:86:ea:63:be:cf:72:
73:e8:ae:00:d9:2a:f6:28:ee:ff:1c:1d:0c:f4:93:f7:cf:b8:
a4:63:83:76:4c:d7:ba:aa:36:28:38:0b:38:e8:6a:56:83:49:
2f:df:08:03:89:de:f5:cb:3b:35:fd:34:68:cd:00:a9:5c:06:
19:c5:ab:a9:4d:97:01:6c:ac:f8:8a:ed:74:f8:94:aa:de:97:
5a:de:5c:c3:c8:d6:2c:2f:e4:e7:eb:41:44:3b:2c:7c:60:e8:
01:7d:89:f1:9a:64:08:45:3a:48:9b:c3:5d:ed:bf:14:1a:5d:
b6:5a:09:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:30 2023 by rpki-client on console-fra.rpki-client.org