Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/XLvtx-oz5guiz8XrMw5q3Rp2uOQ.roa
File: XLvtx-oz5guiz8XrMw5q3Rp2uOQ.roa (raw, json)
Hash identifier: CoE/VX9rV86EVCsItnpjL192r2dq3px4qncHvCP6jig=
Subject key identifier: 5C:BB:ED:C7:EA:33:E6:0B:A2:CF:C5:EB:33:0E:6A:DD:1A:76:B8:E4
Certificate issuer: /CN=679a75debd65359a45317f203f11a321e14b2f2c
Certificate serial: 05A061D5
Authority key identifier: 67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/XLvtx-oz5guiz8XrMw5q3Rp2uOQ.roa
Signing time: Sat 29 Jan 2022 19:33:39 +0000
ROA not before: Sat 29 Jan 2022 19:33:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396073
IP address blocks: 185.142.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94396885 (0x5a061d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=679a75debd65359a45317f203f11a321e14b2f2c
Validity
Not Before: Jan 29 19:33:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5cbbedc7ea33e60ba2cfc5eb330e6add1a76b8e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1c:75:cd:58:16:3d:ec:98:60:03:26:60:fe:
75:f1:c8:a1:68:30:1e:d1:2a:6c:80:f0:05:23:ee:
a7:22:39:5a:f3:82:06:c0:22:62:f9:0c:e3:5f:01:
5a:02:f1:86:0e:38:68:9b:9f:f0:20:18:92:e0:62:
72:6c:7d:8b:cf:9e:b6:13:a1:a4:08:fc:5e:e7:52:
c4:6a:b5:b4:bb:6b:6c:a1:13:ba:b7:28:25:a0:07:
7c:57:cd:37:9a:05:51:53:3d:95:be:6b:64:61:66:
d9:b8:6e:d5:c6:df:c4:49:3d:a2:79:f6:e8:8d:f2:
8b:e3:e1:f2:31:f4:1b:4e:df:29:70:2a:f8:a5:3d:
06:53:98:3a:29:17:7d:f3:67:8d:84:5b:b9:e7:a3:
85:d7:7a:46:09:51:9e:e0:3e:c2:1d:d0:ec:dc:a8:
04:a8:ae:26:0c:71:56:e7:10:b4:78:55:ab:2d:24:
6e:89:ac:6b:e5:7c:3a:14:41:56:b3:4e:a8:e6:c1:
01:09:29:e6:10:d3:14:03:40:72:56:b4:09:0d:8f:
ac:d4:fc:91:8d:c5:79:ea:15:30:2f:dd:3a:4e:34:
02:4c:3a:19:57:a5:31:e7:19:f1:ec:91:e9:a8:85:
01:08:30:6c:52:ab:74:a2:fd:ec:ef:86:9f:e3:20:
60:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:BB:ED:C7:EA:33:E6:0B:A2:CF:C5:EB:33:0E:6A:DD:1A:76:B8:E4
X509v3 Authority Key Identifier:
keyid:67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/XLvtx-oz5guiz8XrMw5q3Rp2uOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/Z5p13r1lNZpFMX8gPxGjIeFLLyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.164.0/22
Signature Algorithm: sha256WithRSAEncryption
40:5e:fb:7c:25:90:5d:5c:07:bd:b1:e6:dd:0e:c4:ba:35:9c:
24:dd:ba:8c:ab:95:02:0d:8a:bd:2d:78:8a:c8:1d:40:c5:3a:
89:a9:bb:b0:2a:e1:f4:3d:83:05:00:cc:a9:4c:c9:77:17:e3:
48:c3:38:89:01:df:c4:e3:4e:48:e5:2b:28:7c:55:85:db:b2:
3e:dc:13:22:fd:07:0c:23:64:73:01:47:b6:7b:8a:13:3b:88:
f0:02:79:41:03:4f:91:53:8b:6b:3d:c7:58:7f:a7:05:6a:42:
07:30:65:dc:87:51:7e:88:39:86:3b:20:ee:c8:3f:70:2f:97:
29:8d:ab:26:93:db:87:f5:8e:f0:27:da:52:f8:64:82:b2:85:
63:3f:67:4a:26:ca:7e:eb:fc:8e:6d:b3:ae:01:dd:e5:8c:dd:
db:d2:b2:3a:c4:0b:04:ff:22:54:76:30:25:0d:32:71:e3:fa:
df:ed:c3:f9:53:bf:19:3a:c7:8d:5f:85:ec:f8:e8:86:f9:7f:
22:37:30:9c:f9:93:c8:7e:5e:01:95:9f:35:27:56:d3:8b:5c:
70:e9:e6:f6:b5:96:07:8c:a1:d7:6c:de:7f:43:15:bb:ea:bd:
26:8c:87:31:56:13:5b:96:b6:7c:35:5b:b8:9a:49:be:be:dc:
23:d8:90:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-fra.rpki-client.org