Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/xU73rUwKD7KewG6cRhO3u89DqJE.roa
File: xU73rUwKD7KewG6cRhO3u89DqJE.roa (raw, json)
Hash identifier: YDcNqWPscDuIB79wXFiS3e7N1c4dCbxK06DCIeghI4U=
Subject key identifier: C5:4E:F7:AD:4C:0A:0F:B2:9E:C0:6E:9C:46:13:B7:BB:CF:43:A8:91
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 01D4ACCB
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/xU73rUwKD7KewG6cRhO3u89DqJE.roa
Signing time: Fri 04 Feb 2022 17:59:43 +0000
ROA not before: Fri 04 Feb 2022 17:59:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64267
IP address blocks: 147.185.162.0/24 maxlen: 24
147.185.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30715083 (0x1d4accb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Feb 4 17:59:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c54ef7ad4c0a0fb29ec06e9c4613b7bbcf43a891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c4:75:7c:cc:87:4f:cf:13:6f:cb:2e:0f:21:
1d:d9:4b:64:2c:31:1e:a0:6c:81:35:3e:66:3a:cc:
9a:64:14:9e:64:92:33:f7:3f:fb:b1:06:53:92:8e:
4e:e4:3e:61:3a:41:82:90:c1:01:f0:2e:d5:aa:f2:
fe:bd:28:ff:8d:da:c6:ed:e5:2b:a2:3c:30:75:49:
f4:38:2f:42:c2:4b:7a:6a:90:47:1d:c6:13:9b:42:
7f:29:4b:1c:9c:43:3b:f8:68:fe:ff:20:c6:09:bc:
7c:f8:ca:3d:f7:6d:3e:ea:aa:89:32:cd:ec:89:96:
d7:7e:48:d3:78:17:44:3d:bd:f1:86:d7:de:df:54:
ed:ab:22:e1:00:0e:6e:f2:30:ad:1e:c0:31:30:64:
dc:96:3a:ec:2f:7a:a1:9b:be:49:58:0a:c6:47:17:
e3:b1:b3:09:dc:b7:4e:f8:f5:43:44:75:b8:fa:7a:
bb:c2:b1:d0:5b:cb:ae:ab:fc:d8:8e:4d:d1:c0:70:
4c:e0:e3:9b:d5:29:fd:2c:1b:9a:6a:9e:74:e3:ae:
9a:26:0a:66:d0:5b:f4:48:b6:88:ac:4f:83:4f:58:
93:d7:dc:d7:d5:f2:bb:92:7b:ac:8f:1e:d2:2c:8b:
d1:34:54:38:c9:98:16:a6:6f:f8:04:6b:10:86:28:
b9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:4E:F7:AD:4C:0A:0F:B2:9E:C0:6E:9C:46:13:B7:BB:CF:43:A8:91
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/xU73rUwKD7KewG6cRhO3u89DqJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.185.107.0/24
147.185.162.0/24
Signature Algorithm: sha256WithRSAEncryption
81:5f:db:06:77:6e:49:af:d3:43:5f:3c:8f:c3:1a:79:fb:94:
76:5c:e0:96:5f:0e:69:ce:05:21:fe:b6:3e:9d:33:19:8a:e8:
c5:d8:f9:fe:0c:2b:b6:1c:d0:74:97:13:f4:96:cd:09:97:05:
cb:17:2e:80:e7:50:27:9a:3e:6d:0d:ea:0b:2c:fd:9f:3e:92:
9b:9e:28:65:dd:39:bb:fe:31:cb:3f:a5:b2:68:53:9e:58:d4:
59:82:f1:d1:4c:6f:e5:95:d7:ca:4c:4b:4e:b0:23:d5:b4:e1:
b7:38:17:e2:e0:db:ec:02:28:8a:ee:8e:49:87:2d:c9:88:ea:
d5:67:c6:6b:7c:13:5f:3e:ad:2c:e9:a0:1d:1e:87:e0:f4:ee:
fc:42:e7:e9:3b:6d:a9:66:6c:e2:08:62:b0:09:0e:89:4c:ac:
d6:9a:e0:4d:e7:f2:2e:02:a7:26:ea:2e:e0:1d:80:96:15:5d:
6e:1c:db:c6:94:df:09:26:86:cc:84:be:59:af:6d:14:42:03:
9e:e6:8f:d1:8c:93:e1:fe:6c:81:8c:10:4c:86:25:36:27:20:
48:9c:39:96:9c:71:ab:97:40:c1:51:95:e6:4f:2e:04:31:8c:
1d:2a:4b:15:7c:c8:56:d0:2c:19:f4:6c:23:1b:4a:93:ec:84:
1b:49:77:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:48 2024 by rpki-client on console-ams.rpki-client.org