Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/1-cfAF0NMNtb2o5Y8fBFUt2jrGus.roa
File: 1-cfAF0NMNtb2o5Y8fBFUt2jrGus.roa (raw, json)
Hash identifier: k6Bv/nvVEd5yIh5y+gHx0qyx0MDK05rz8pRgETxn4hM=
Subject key identifier: F9:C7:C0:17:43:4C:36:D6:F6:A3:96:3C:7C:11:54:B7:68:EB:1A:EB
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 0181CDBB
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/1-cfAF0NMNtb2o5Y8fBFUt2jrGus.roa
Signing time: Sat 01 Jan 2022 13:02:08 +0000
ROA not before: Sat 01 Jan 2022 13:02:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.22.56.0/22 maxlen: 24
195.14.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25284027 (0x181cdbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jan 1 13:02:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9c7c017434c36d6f6a3963c7c1154b768eb1aeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:da:72:a2:75:1c:5d:76:de:36:fb:69:b8:2b:
be:ab:e3:5c:b4:fb:60:11:e4:83:1a:7b:e0:7c:a3:
58:95:64:e0:75:92:b6:0a:04:2d:29:7f:ee:2f:3c:
a5:0e:6b:69:02:bd:2d:e7:73:4e:21:0c:32:84:9a:
09:bc:b9:5f:c1:a5:85:06:29:b0:c9:37:ad:2d:39:
ab:03:39:61:1e:05:f5:52:99:17:28:60:fd:31:32:
e7:e0:7a:14:34:99:a0:1b:83:8a:21:7e:45:67:a8:
53:bb:bf:66:4f:88:23:da:a4:f7:e7:f1:4b:0d:42:
11:fe:f9:d9:36:85:f9:d1:93:f4:db:b8:2a:3d:e7:
b0:4a:95:58:9d:ca:f1:d3:57:cc:cd:bd:fe:05:bc:
4e:85:8c:18:7a:7e:dc:61:1a:2a:17:6a:75:37:59:
f8:1b:f0:54:a2:20:25:66:f3:04:06:62:3f:20:7e:
42:61:e3:ce:8e:36:ef:d2:54:6a:eb:6d:6e:78:fd:
d4:40:be:39:df:1d:74:06:0c:80:55:0d:60:2c:0f:
e5:85:7e:a3:a8:3d:f1:27:7b:a3:c4:99:a9:4c:00:
ac:e2:b6:e9:2a:4c:9a:83:c6:fd:c0:8a:c0:ed:a1:
42:91:da:0f:71:76:97:2a:48:a5:d4:8c:9b:02:9c:
34:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:C7:C0:17:43:4C:36:D6:F6:A3:96:3C:7C:11:54:B7:68:EB:1A:EB
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/1-cfAF0NMNtb2o5Y8fBFUt2jrGus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.56.0/22
195.14.105.0/24
Signature Algorithm: sha256WithRSAEncryption
49:cb:d6:ea:a3:52:09:81:72:4b:8f:43:70:f6:90:be:50:21:
6e:a4:1f:13:f5:c5:2c:ca:63:4a:ac:ce:c7:f3:ed:b9:2d:4f:
3b:0f:5c:f7:73:ee:f6:fe:c6:93:82:90:ae:87:35:12:12:49:
21:1a:ff:d2:c5:77:3c:5d:a6:a5:71:d6:8f:da:4a:d2:37:e5:
3a:c3:d0:8e:34:71:64:c3:6f:95:40:48:21:92:c0:79:db:4a:
d3:02:9e:94:96:13:ae:6d:64:71:c9:8d:1c:8e:eb:69:dd:fd:
f4:f1:13:e2:4f:13:43:47:40:82:26:40:22:47:a8:82:8e:7a:
1b:28:af:5d:20:fd:0d:62:01:31:cf:4d:77:ed:87:ff:14:44:
b0:48:2d:1a:99:be:11:bc:93:19:85:5a:5a:59:d3:5d:1a:8b:
f7:fa:1e:fc:76:14:06:f1:f4:52:c3:76:0f:da:e8:87:a2:cb:
1b:de:20:8a:c9:1a:18:fe:e2:d6:88:95:77:4d:73:63:91:38:
4f:d5:49:0e:8c:2c:18:ce:e0:86:84:61:b4:65:71:f6:88:b6:
98:25:2c:ad:06:d0:0e:ea:a4:6d:23:e1:c1:13:5e:fe:e5:1b:
b2:86:b8:4d:1d:12:e1:92:65:f5:20:0e:2a:a6:98:91:a1:c3:
b5:bf:46:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:29 2023 by rpki-client on console-ams.rpki-client.org