Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/1COLUZF6apavcZra7XBI0O9hgIk.roa
File: 1COLUZF6apavcZra7XBI0O9hgIk.roa (raw, json)
Hash identifier: eKuJRyCm7enk/hLMBxplrBPMIxl/O6IUKVwD0E16N80=
Subject key identifier: D4:23:8B:51:91:7A:6A:96:AF:71:9A:DA:ED:70:48:D0:EF:61:80:89
Certificate issuer: /CN=31d4ee4afff55e67444d47d49b512a8368bf9ef6
Certificate serial: 028E71FB
Authority key identifier: 31:D4:EE:4A:FF:F5:5E:67:44:4D:47:D4:9B:51:2A:83:68:BF:9E:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdTuSv_1XmdETUfUm1Eqg2i_nvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/1COLUZF6apavcZra7XBI0O9hgIk.roa
Signing time: Fri 04 Mar 2022 14:23:38 +0000
ROA not before: Fri 04 Mar 2022 14:23:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211656
IP address blocks: 185.165.228.0/22 maxlen: 24
185.117.252.0/22 maxlen: 24
2a10:ad40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42889723 (0x28e71fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d4ee4afff55e67444d47d49b512a8368bf9ef6
Validity
Not Before: Mar 4 14:23:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4238b51917a6a96af719adaed7048d0ef618089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b8:52:96:3a:ea:e4:1d:26:46:08:61:49:8a:
0f:f1:4f:94:59:78:aa:23:04:60:1a:79:17:fe:b9:
2e:70:3f:f0:ef:f5:3f:8b:05:f6:06:f4:07:07:a2:
db:84:9a:5d:21:af:54:08:e4:34:df:51:32:72:c3:
89:57:51:f6:cd:b0:16:c2:ff:75:d1:a4:f4:10:8a:
3b:69:e9:71:0e:1d:99:41:6c:23:fb:62:17:44:90:
e6:7e:27:e1:e5:94:b1:d2:04:ec:82:1b:86:20:2e:
05:27:a1:f3:8b:7f:34:50:03:ae:ac:8a:68:e0:b0:
a1:25:a2:42:5f:b4:00:2f:14:99:ed:3c:f3:56:cc:
4f:3f:09:ed:fe:7b:02:95:b6:24:a4:b1:a5:42:d4:
d3:79:5d:8a:b1:6b:f2:03:4d:66:8f:8a:59:bc:5f:
48:1c:a1:f8:b6:cd:db:8e:04:04:f3:e0:ee:65:0d:
a1:c7:53:b1:09:68:6b:25:7e:c8:e6:7c:d0:0c:79:
2e:25:bb:8e:5f:d3:cf:6d:9d:b9:7f:47:0b:fa:4b:
7d:d4:72:e3:16:a8:a6:17:bb:1e:e9:70:5b:dd:d1:
d1:57:66:49:de:ec:f4:21:6e:14:dd:3a:82:04:ad:
fa:39:58:f6:63:10:68:33:5c:8e:d5:55:55:a3:f2:
18:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:23:8B:51:91:7A:6A:96:AF:71:9A:DA:ED:70:48:D0:EF:61:80:89
X509v3 Authority Key Identifier:
keyid:31:D4:EE:4A:FF:F5:5E:67:44:4D:47:D4:9B:51:2A:83:68:BF:9E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdTuSv_1XmdETUfUm1Eqg2i_nvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/1COLUZF6apavcZra7XBI0O9hgIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/MdTuSv_1XmdETUfUm1Eqg2i_nvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.252.0/22
185.165.228.0/22
IPv6:
2a10:ad40::/29
Signature Algorithm: sha256WithRSAEncryption
0b:67:db:55:e1:3b:e7:4e:31:05:69:ae:31:1f:e1:a6:67:3a:
bc:f7:cb:ed:69:5d:bc:36:95:38:d5:5d:fa:db:a0:1c:db:22:
14:00:a0:82:5e:c7:92:c0:49:ed:e5:8d:b4:64:f6:be:a9:42:
04:1e:57:f6:66:1c:c0:a4:ca:2b:ef:32:28:91:97:8a:b6:58:
fc:19:e2:f5:7b:79:89:dc:38:4c:34:c9:97:e4:de:9e:f6:c5:
ae:0f:66:aa:57:8b:2e:a4:f7:cd:31:21:ef:78:15:3b:1e:99:
b2:7f:ff:18:41:36:12:75:09:42:a7:f5:ea:2f:d2:38:88:ad:
96:43:23:27:91:87:3d:9b:61:76:ad:ab:2b:9a:c8:6d:8c:ed:
a7:22:2c:a0:41:c1:57:fb:f1:c8:c5:67:7f:b8:45:1a:a0:ff:
f7:26:81:4f:90:72:a5:a4:19:5a:58:4e:70:13:80:62:3d:d8:
7a:f2:34:ff:31:9c:7b:a5:7a:0f:34:2e:35:a9:f3:98:f2:f4:
20:96:f5:5c:ff:00:eb:a3:de:67:d7:0f:1d:51:01:6f:e4:32:
a7:af:be:52:4e:f6:b2:fd:1c:4a:a6:bb:8f:57:26:29:05:7c:
d9:c6:76:2b:33:5d:84:bb:4e:e7:7c:3b:5f:52:a1:a6:95:e9:
ad:b4:fb:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-fra.rpki-client.org