Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/AgoD0BVOk4IXvMP28MgPF8bNh6M.roa
File: AgoD0BVOk4IXvMP28MgPF8bNh6M.roa (raw, json)
Hash identifier: xtTcNYdAqWqLgkW2mutr5UVntnV2AbUmCJBhiC+Dc1g=
Subject key identifier: 02:0A:03:D0:15:4E:93:82:17:BC:C3:F6:F0:C8:0F:17:C6:CD:87:A3
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 0186AE83
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/AgoD0BVOk4IXvMP28MgPF8bNh6M.roa
Signing time: Sat 01 Jan 2022 13:02:11 +0000
ROA not before: Sat 01 Jan 2022 13:02:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 147.185.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25603715 (0x186ae83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jan 1 13:02:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=020a03d0154e938217bcc3f6f0c80f17c6cd87a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ae:e2:c0:15:5e:56:32:d6:06:7d:42:d1:85:
5d:e6:ab:a1:23:76:a8:fc:e3:bb:47:41:72:09:70:
65:77:b1:d0:4e:74:7c:1c:9f:8b:ac:41:a2:8d:e7:
fc:57:8e:cd:b0:26:a6:e0:3c:c2:4e:f9:2d:e2:45:
08:e0:78:27:2d:7e:38:b0:1e:12:30:96:16:a0:3d:
01:cd:16:17:e0:d6:cb:73:16:21:cf:eb:31:0e:88:
ae:b2:a1:69:4f:be:be:f4:77:3f:4a:39:9e:be:07:
36:f1:cd:8c:61:ab:88:02:76:d4:97:45:d0:5b:64:
a0:e6:0a:e3:40:30:56:2d:ee:a2:fe:cf:6f:b6:79:
ce:81:86:8d:9d:13:57:eb:5e:c5:7d:7a:3e:72:ec:
0c:b9:7f:8a:8b:cf:c3:36:25:3b:89:03:52:8e:92:
35:da:00:55:e5:f7:16:19:53:25:0a:b5:30:7f:fd:
a3:64:05:d8:9b:5d:4d:03:8f:2e:73:c5:86:cb:9f:
c2:55:75:d0:cb:73:56:65:67:08:85:01:18:41:88:
6b:17:86:31:25:91:59:58:9b:60:f0:7b:eb:3b:de:
09:69:dc:35:9d:40:16:6d:c6:6d:7b:89:e0:f9:24:
fa:2c:42:7f:a7:37:ba:44:ea:03:a6:a8:90:ec:b8:
9a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:0A:03:D0:15:4E:93:82:17:BC:C3:F6:F0:C8:0F:17:C6:CD:87:A3
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/AgoD0BVOk4IXvMP28MgPF8bNh6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.185.162.0/24
Signature Algorithm: sha256WithRSAEncryption
21:4b:af:2d:63:72:92:78:57:41:79:e4:7e:d5:c2:71:9e:1e:
2d:49:25:d6:3a:0c:d6:48:be:15:43:0e:8b:60:41:c5:de:5c:
b8:66:5d:fb:48:e8:80:27:be:ba:bc:a8:8e:69:25:49:c6:55:
4b:87:a5:57:25:0f:81:fd:7f:0a:34:49:f9:ee:25:35:f8:74:
3f:5d:58:72:f2:29:ca:8c:c9:1b:46:d8:b3:e0:0b:b2:48:3d:
1b:b6:b4:6f:ce:92:6c:5e:77:90:ea:d6:09:1f:c1:08:2e:8d:
1e:7e:83:26:40:07:64:a9:4a:d1:0b:6b:87:9d:b5:4c:88:2e:
4d:4a:f8:11:b3:5d:af:be:04:f2:7a:47:2e:66:db:62:24:bc:
9e:62:77:f7:0a:fe:df:2d:18:2a:23:ed:bb:b7:1b:33:9d:2f:
b5:23:71:00:69:9b:31:9e:df:b1:22:ff:92:fb:c9:e1:bf:d2:
aa:53:2f:12:03:f5:f6:57:2d:cf:c0:76:6d:be:4d:5c:eb:a0:
c7:44:92:5c:d8:a0:2c:e0:7c:29:a2:ab:86:da:a9:e8:00:23:
55:8a:bb:82:01:a2:39:69:6c:92:2d:c9:b4:8e:86:62:b6:b3:
16:28:4c:31:0f:9b:a7:a6:a0:ed:3c:06:73:e1:6d:ff:f9:0f:
03:f1:8c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:48 2024 by rpki-client on console-ams.rpki-client.org