Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/7UVzSQxjRI7MkerrKpZXfp9-sUY.roa
File: 7UVzSQxjRI7MkerrKpZXfp9-sUY.roa (raw, json)
Hash identifier: Zh0t4/tF+6ddpL2eGuYfnRTMka8wlPHhZr6vvKv9Wok=
Subject key identifier: ED:45:73:49:0C:63:44:8E:CC:91:EA:EB:2A:96:57:7E:9F:7E:B1:46
Certificate issuer: /CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Certificate serial: 042216F6
Authority key identifier: 23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/7UVzSQxjRI7MkerrKpZXfp9-sUY.roa
Signing time: Sat 01 Jan 2022 05:57:21 +0000
ROA not before: Sat 01 Jan 2022 05:57:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 185.164.64.0/23 maxlen: 23
84.252.84.0/23 maxlen: 23
84.252.86.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69342966 (0x42216f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Validity
Not Before: Jan 1 05:57:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed4573490c63448ecc91eaeb2a96577e9f7eb146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9a:07:90:2d:1a:aa:96:73:7d:73:39:5d:17:
37:3f:f5:f7:aa:9c:7d:28:0d:c1:72:57:46:ef:60:
49:67:14:f9:cd:d8:ca:0e:5f:b3:83:95:ee:8e:bb:
74:02:d5:93:82:e6:5e:8e:9f:79:29:79:0e:df:45:
b6:0b:59:13:e6:4f:2a:ac:ba:55:6e:81:98:c7:e4:
16:80:e0:1e:85:a8:b3:03:c4:d5:09:ea:d2:fe:26:
01:10:b4:82:2e:e5:37:08:97:5f:0e:47:f6:05:bc:
ad:76:bf:2b:37:3c:91:f4:0f:df:bf:6b:b6:ae:17:
ba:4b:cd:02:fc:0a:ef:d7:bf:79:b3:58:10:47:92:
b9:93:f4:21:4b:d1:67:f0:f0:f3:cc:71:48:42:19:
db:da:03:3f:c3:75:41:69:fd:11:64:a6:a6:60:4d:
94:4b:dc:1f:57:09:cc:c5:c6:76:cd:dd:52:a1:b4:
2d:c9:93:b2:ce:6e:af:ea:9c:af:f9:ba:40:c1:9c:
cc:3a:2c:ea:63:49:c2:79:11:ff:84:38:7c:ee:5f:
5e:ff:8e:8b:84:08:ef:a3:7e:00:5a:58:97:a5:49:
86:1d:af:ca:dc:51:b7:86:8e:86:9c:3a:36:c9:58:
4c:5e:3c:33:65:82:b8:98:d4:d9:d4:13:37:32:48:
6f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:45:73:49:0C:63:44:8E:CC:91:EA:EB:2A:96:57:7E:9F:7E:B1:46
X509v3 Authority Key Identifier:
keyid:23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/7UVzSQxjRI7MkerrKpZXfp9-sUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/I0Rtp6cLznc-wrwWVarjDDwYQSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.252.84.0/22
185.164.64.0/23
Signature Algorithm: sha256WithRSAEncryption
99:a2:60:88:9f:82:a3:05:4a:e3:81:b0:73:5b:49:9a:70:6f:
27:dd:16:b3:c9:67:28:aa:05:2d:e2:80:99:a5:24:00:7e:37:
f3:13:b9:75:79:95:ce:ec:68:ee:46:59:b4:19:ad:b3:87:e6:
b5:b9:6c:14:3d:b8:e9:d3:b8:2e:ac:0a:17:51:fd:0a:81:fe:
a5:26:51:11:d0:51:a1:ae:75:84:6f:9d:22:00:b8:90:84:8d:
c8:c1:fc:85:50:da:73:7e:f8:9c:2c:53:35:67:56:d9:ce:a7:
e4:20:32:47:8b:79:f6:9c:12:b5:44:f5:64:2c:7e:eb:bc:f1:
cd:aa:60:c1:c6:f3:b8:28:bf:55:f3:78:a0:ec:3b:67:ac:cf:
f1:ec:fb:a8:ad:6b:38:d4:77:2a:d2:79:19:c2:00:75:65:dc:
3d:a0:f5:13:aa:de:df:a5:ff:2b:68:0b:8c:a2:fe:28:41:33:
90:ee:ce:30:8c:f1:8a:24:0d:64:3d:6d:2e:19:29:3a:24:9e:
81:15:fe:dd:92:9e:82:81:36:4b:0b:ac:d7:74:01:b7:88:a0:
30:da:e8:5a:87:26:f0:24:df:0d:a8:69:36:3d:96:0d:36:68:
39:66:dc:08:2e:df:0a:fb:d0:a6:01:9a:aa:28:6b:74:30:7e:
0d:2a:15:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-ams.rpki-client.org