Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/cd7526-61ad-46cc-8784-3d63557301c0/1/17j4aeDXGJ5b4WaiNBaBJCdC4OQ.roa
File: 17j4aeDXGJ5b4WaiNBaBJCdC4OQ.roa (raw, json)
Hash identifier: tbDFOs0GojzA48TO+igTwKN8/oErzmUWP9+1f03574Q=
Subject key identifier: D7:B8:F8:69:E0:D7:18:9E:5B:E1:66:A2:34:16:81:24:27:42:E0:E4
Certificate issuer: /CN=e5d90d7f03512f6dbd0645dfe274368e2d844c23
Certificate serial: 19ACCE2C
Authority key identifier: E5:D9:0D:7F:03:51:2F:6D:BD:06:45:DF:E2:74:36:8E:2D:84:4C:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dkNfwNRL229BkXf4nQ2ji2ETCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/cd7526-61ad-46cc-8784-3d63557301c0/1/17j4aeDXGJ5b4WaiNBaBJCdC4OQ.roa
Signing time: Sat 01 Jan 2022 11:54:43 +0000
ROA not before: Sat 01 Jan 2022 11:54:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200059
IP address blocks: 185.40.80.0/22 maxlen: 32
2a00:fc20::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 430755372 (0x19acce2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5d90d7f03512f6dbd0645dfe274368e2d844c23
Validity
Not Before: Jan 1 11:54:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7b8f869e0d7189e5be166a2341681242742e0e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0c:dd:46:d7:90:e3:dc:32:38:cf:60:cb:6e:
3c:3a:47:2f:62:35:92:2d:c1:72:ac:e7:a8:45:d7:
bf:52:db:37:4d:66:68:87:7e:ea:22:b5:54:a9:48:
18:ec:ed:04:64:89:d4:5f:e2:61:33:f8:2a:4a:0c:
7c:16:90:75:3f:bd:76:ad:34:32:3a:c7:5b:55:1e:
d3:22:c9:77:74:04:7c:bd:ea:2f:d6:18:34:0b:85:
70:c9:a9:f2:cb:ba:10:fe:93:3a:e8:a7:6e:b4:5c:
19:7c:80:0e:ba:7f:88:12:70:6e:bf:94:5d:73:14:
d2:ee:aa:f8:e1:6a:ee:f8:08:c1:63:de:d1:02:72:
0b:3b:09:49:08:69:22:34:ec:31:3e:68:9c:51:e0:
a3:c5:db:81:5a:94:7b:32:53:cd:d7:93:46:29:82:
ff:2d:8f:74:2f:fc:fd:3b:8f:9a:8e:3d:8a:1d:92:
48:79:e0:8b:a2:48:e4:ea:b6:ed:4e:e6:f7:ed:a7:
60:58:e7:fd:54:00:7b:38:b1:03:a1:8d:38:29:06:
f6:bc:75:6b:51:da:a8:0b:8d:85:47:8c:75:50:58:
e7:2a:5b:76:fe:50:15:9d:a4:6e:30:7f:c1:4c:c8:
f2:f0:09:20:4e:97:74:60:e0:db:0d:58:c2:55:ba:
fb:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B8:F8:69:E0:D7:18:9E:5B:E1:66:A2:34:16:81:24:27:42:E0:E4
X509v3 Authority Key Identifier:
keyid:E5:D9:0D:7F:03:51:2F:6D:BD:06:45:DF:E2:74:36:8E:2D:84:4C:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dkNfwNRL229BkXf4nQ2ji2ETCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/cd7526-61ad-46cc-8784-3d63557301c0/1/17j4aeDXGJ5b4WaiNBaBJCdC4OQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/cd7526-61ad-46cc-8784-3d63557301c0/1/5dkNfwNRL229BkXf4nQ2ji2ETCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.80.0/22
IPv6:
2a00:fc20::/32
Signature Algorithm: sha256WithRSAEncryption
21:9f:05:8d:c2:64:27:b2:de:75:45:4a:27:e2:5b:1c:2d:c1:
76:3e:9a:b1:41:ce:ee:87:28:fa:74:7f:2c:49:01:be:90:4c:
fa:b6:89:ee:5b:68:b5:a1:e3:f4:9e:eb:6e:7e:b5:94:6c:37:
fd:43:39:f8:69:d9:a0:d8:9b:74:7b:0c:30:59:89:af:40:a6:
bc:73:4a:6e:2f:fa:5f:9c:6d:58:74:a8:72:36:fa:6f:09:5b:
49:60:35:ac:59:c4:f7:e4:54:53:7b:af:c2:45:7e:2e:3c:36:
38:90:a2:a1:48:07:02:2d:43:f6:b4:3e:3d:ed:57:29:69:6f:
0e:1c:d9:e7:bd:53:6d:9f:f6:7b:6e:30:f6:d6:35:f6:bc:1b:
4c:f2:44:95:c7:e2:fe:37:31:65:ee:f9:29:2d:95:91:9b:aa:
0b:ef:80:b2:03:45:cd:83:28:72:ce:4e:2e:ee:72:bd:7a:c4:
a3:f7:74:8a:e0:e4:b9:18:dd:b1:ce:4e:85:6a:9e:f9:25:83:
ce:ce:4f:1f:32:aa:1a:a7:6a:ab:aa:65:03:b6:d6:67:c0:6a:
59:66:18:18:78:54:95:ae:14:b8:1c:ac:60:0d:21:b8:4d:77:
03:83:43:c2:c8:94:1b:ec:7b:44:f8:aa:7d:0c:c9:ce:2f:8e:
10:79:78:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:33 2023 by rpki-client on console-ams.rpki-client.org