Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/GQLuVgs4ufDgK5F6pY0qlVGrL0Q.roa
File: GQLuVgs4ufDgK5F6pY0qlVGrL0Q.roa (raw, json)
Hash identifier: jSCYDXLXVOhq9fYXX3eQfmWn15/OMAGsiEAz1vav1yU=
Subject key identifier: 19:02:EE:56:0B:38:B9:F0:E0:2B:91:7A:A5:8D:2A:95:51:AB:2F:44
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 0273524E
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/GQLuVgs4ufDgK5F6pY0qlVGrL0Q.roa
Signing time: Sat 16 Apr 2022 10:43:12 +0000
ROA not before: Sat 16 Apr 2022 10:43:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 185.22.56.0/24 maxlen: 24
147.185.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41112142 (0x273524e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Apr 16 10:43:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1902ee560b38b9f0e02b917aa58d2a9551ab2f44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0a:96:b5:83:25:c4:8c:5d:0e:32:f9:c4:af:
d1:ee:a6:87:f0:0d:c3:01:92:24:ef:aa:3a:ad:40:
f4:0d:e1:7b:14:f6:a1:96:68:9c:c5:3b:18:ea:de:
60:b2:35:ed:ed:96:b8:41:f3:f2:bb:69:14:01:10:
58:91:c2:d1:89:6a:27:c9:b6:37:f1:2c:00:03:7b:
da:55:a1:d0:41:97:d9:6c:75:90:77:0e:e2:6b:91:
97:b4:88:06:4c:00:37:0c:b2:40:25:b6:70:79:99:
cd:b3:0a:c8:e8:e8:52:f7:ca:2e:b7:c3:03:e5:08:
34:ae:49:a9:b6:7d:ef:e2:e4:db:c6:c6:0d:d0:9b:
92:aa:81:7f:8f:f6:98:1f:16:0a:fe:5b:0b:77:77:
0d:91:35:14:ca:63:1e:a4:de:ea:83:33:c3:4a:f1:
d3:5f:8d:06:27:06:ad:11:44:0c:b0:9a:bd:0c:2e:
bb:4f:62:52:08:ad:6d:34:d9:12:2d:1f:99:64:83:
b6:83:90:cb:1a:1d:1c:22:5c:30:1a:de:24:90:9e:
60:e6:25:09:2c:5d:2f:f5:81:d9:a8:f2:d5:16:af:
01:5e:59:3d:7c:58:7e:7e:6a:52:60:f8:07:28:6d:
bb:a9:4c:8e:c2:0f:fc:18:af:c1:5b:59:fe:6d:26:
bf:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:02:EE:56:0B:38:B9:F0:E0:2B:91:7A:A5:8D:2A:95:51:AB:2F:44
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/GQLuVgs4ufDgK5F6pY0qlVGrL0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.185.163.0/24
185.22.56.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:07:01:0a:c9:28:28:1c:c6:13:bf:b2:60:27:21:53:af:02:
73:5d:4a:02:59:71:b6:33:7d:a6:61:ac:50:b3:25:ba:e7:1a:
65:04:46:23:85:f4:da:d7:38:1c:17:8c:e8:1c:b6:af:5d:28:
1d:5e:47:df:80:97:63:34:4a:71:f3:91:11:d8:1e:08:cf:e6:
56:60:b9:a0:40:73:64:3d:9d:38:58:81:a8:d4:91:af:40:a3:
e4:4c:1d:c4:cb:65:2c:eb:36:51:ea:51:57:cb:fd:b0:b0:bf:
f5:8e:6d:32:9c:d5:8b:fb:24:75:0f:2f:21:d7:2d:5d:19:fd:
c4:e3:a7:36:11:ff:d7:33:d7:cb:09:d7:1f:b1:20:d2:5c:83:
ba:9d:f4:1e:7f:72:8e:64:93:5e:77:58:a2:02:47:f9:b6:73:
1b:2a:9d:40:6a:52:1c:bb:5a:04:18:35:d1:90:17:f0:6a:45:
f0:74:e5:0e:3f:c0:dd:34:32:e1:e1:49:f4:4e:f4:05:4a:71:
9f:55:69:40:1d:38:3c:a2:29:0b:49:fd:de:66:46:9b:8f:fd:
a7:a8:96:67:d5:7b:ca:41:8c:0a:cb:b8:ce:64:ab:20:62:da:
4e:65:9c:c7:e1:b2:8c:1e:1c:90:a9:13:3a:83:ff:59:4f:38:
b9:1d:80:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:29 2023 by rpki-client on console-ams.rpki-client.org