Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/855011-092c-4f7d-a0b6-94d1369025fe/1/5uV5X7VAAZb8FQcOzwYw4MALzxA.roa
File: 5uV5X7VAAZb8FQcOzwYw4MALzxA.roa (raw, json)
Hash identifier: ktjCNONdUnfaUPltWyEX3gvlOdwaNrLliAq8EU/oMZ8=
Subject key identifier: E6:E5:79:5F:B5:40:01:96:FC:15:07:0E:CF:06:30:E0:C0:0B:CF:10
Certificate issuer: /CN=320444c0c2990b13749f3044662297ea824d5064
Certificate serial: 0183C74B2F75EE0933E4F43C103F0FA0171C
Authority key identifier: 32:04:44:C0:C2:99:0B:13:74:9F:30:44:66:22:97:EA:82:4D:50:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MgREwMKZCxN0nzBEZiKX6oJNUGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/855011-092c-4f7d-a0b6-94d1369025fe/1/5uV5X7VAAZb8FQcOzwYw4MALzxA.roa
Signing time: Tue 11 Oct 2022 13:45:36 +0000
ROA not before: Tue 11 Oct 2022 13:45:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197731
IP address blocks: 185.233.172.0/22 maxlen: 24
2a0c:eb00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:4b:2f:75:ee:09:33:e4:f4:3c:10:3f:0f:a0:17:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=320444c0c2990b13749f3044662297ea824d5064
Validity
Not Before: Oct 11 13:45:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6e5795fb5400196fc15070ecf0630e0c00bcf10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:95:21:50:34:45:49:3d:55:b9:b1:f4:0d:d6:
0b:9d:19:0b:a5:ac:e2:b0:39:d5:a2:0b:dd:33:62:
aa:81:17:0a:5a:18:fa:79:f0:83:43:70:15:20:dc:
cb:a0:28:ce:9e:ec:4c:25:82:45:88:ea:d4:a3:e8:
b9:d7:45:57:93:e6:47:7d:95:2d:61:fd:7e:0e:fc:
b6:5c:71:13:f8:b1:0b:33:12:a1:75:e4:5b:b8:67:
85:d3:f3:00:eb:b0:00:c4:ec:0a:ba:db:a8:c5:cd:
7b:5d:3f:9a:8c:d1:52:8d:af:8a:d0:02:fb:d6:50:
83:f3:25:70:b9:c2:b4:02:f4:86:3f:82:ec:50:a8:
a6:aa:87:d4:b6:92:55:07:f7:d1:cc:01:71:dd:e7:
85:9f:59:68:be:df:a3:29:9c:5a:4d:2e:f5:9a:57:
ca:23:6b:0b:35:c6:85:64:f5:c0:2e:d1:1d:3e:a8:
30:55:f8:08:c4:a2:8e:8b:4c:8b:05:bd:0a:dd:a1:
ac:e4:b4:22:6a:5f:0a:3a:50:03:12:f3:c9:37:0d:
df:e1:52:c7:e6:8e:43:cc:83:02:13:d7:85:85:99:
09:a5:3e:7f:27:80:5f:88:56:1a:91:6c:f5:29:f8:
85:4e:20:e6:42:3a:71:5b:d2:a3:ab:f7:46:59:71:
d0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E5:79:5F:B5:40:01:96:FC:15:07:0E:CF:06:30:E0:C0:0B:CF:10
X509v3 Authority Key Identifier:
keyid:32:04:44:C0:C2:99:0B:13:74:9F:30:44:66:22:97:EA:82:4D:50:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MgREwMKZCxN0nzBEZiKX6oJNUGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/855011-092c-4f7d-a0b6-94d1369025fe/1/5uV5X7VAAZb8FQcOzwYw4MALzxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/855011-092c-4f7d-a0b6-94d1369025fe/1/MgREwMKZCxN0nzBEZiKX6oJNUGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.172.0/22
IPv6:
2a0c:eb00::/32
Signature Algorithm: sha256WithRSAEncryption
a9:86:fd:97:ab:9b:de:2c:ec:89:2e:18:1c:c9:7b:af:42:69:
42:2f:52:8c:f3:32:ad:1c:bc:89:a4:28:4a:04:fb:ab:67:e2:
4f:dc:47:9e:11:e2:1a:b9:bc:07:40:54:cc:29:79:a1:b9:08:
8c:43:c7:86:f4:5d:bd:a5:66:a0:56:28:31:d6:2a:3b:aa:5e:
aa:81:92:34:b1:c0:c3:77:f8:e1:6c:a0:00:bd:8a:b6:fc:be:
0b:d0:58:7f:53:4a:a4:f4:34:9b:91:44:95:5c:6b:3a:fd:1c:
ee:64:50:26:52:c0:65:f4:0d:a9:11:25:75:21:2c:e5:16:e5:
5c:65:61:e5:47:6b:e4:a0:13:9f:68:6d:55:71:8d:eb:58:51:
bb:fe:5e:ee:41:1c:85:49:3f:f3:bc:27:db:4e:34:6a:c1:0d:
e8:f4:10:e9:d8:9c:d3:58:23:83:f9:d1:d6:ee:6b:3d:4a:08:
75:bf:21:d9:a6:94:e9:47:37:12:cb:ec:c1:43:c7:81:e5:6d:
4c:dd:ab:30:7d:3c:08:e5:32:cb:a3:22:6d:c3:3c:51:fc:9a:
73:e3:48:2d:8f:2d:a4:fb:04:f4:1f:3d:5c:ec:99:16:e0:1f:
9c:4b:25:43:bf:46:db:3c:06:71:41:45:c5:4a:9c:00:c7:7a:
e7:27:10:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:02 2023 by rpki-client on console-ams.rpki-client.org