Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/S5wPzIYN0qwh4kLvsZphG0OiJkY.roa
File: S5wPzIYN0qwh4kLvsZphG0OiJkY.roa (raw, json)
Hash identifier: XrLG8UsSwNQL5Ff/CoyIGA9hPC3htDlcVhdpiVx5BB8=
Subject key identifier: 4B:9C:0F:CC:86:0D:D2:AC:21:E2:42:EF:B1:9A:61:1B:43:A2:26:46
Certificate issuer: /CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Certificate serial: 0A8B7CE8
Authority key identifier: 68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/S5wPzIYN0qwh4kLvsZphG0OiJkY.roa
Signing time: Sat 01 Jan 2022 02:52:23 +0000
ROA not before: Sat 01 Jan 2022 02:52:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51088
IP address blocks: 185.181.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176913640 (0xa8b7ce8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Validity
Not Before: Jan 1 02:52:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b9c0fcc860dd2ac21e242efb19a611b43a22646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:9b:98:d1:c6:fa:92:a0:76:bf:db:f5:98:15:
64:8f:9f:cb:8f:46:92:81:c5:5b:cd:c2:79:0c:57:
36:b0:ca:8c:bf:11:87:cc:0a:2e:9a:3b:0e:df:a2:
7e:58:75:92:0b:39:bb:71:3e:a5:ab:42:2e:8e:ce:
c3:46:02:74:d6:eb:01:0f:68:83:e8:ae:2c:7a:ef:
81:e5:67:3e:3b:ab:b1:c7:93:2c:2f:36:17:b0:32:
23:8b:09:c6:5f:3d:77:40:b1:b8:8a:29:0b:50:8d:
53:82:a6:20:f4:54:d7:9a:86:1d:87:e7:91:9e:42:
d8:ca:d7:01:ce:58:e1:07:03:41:b1:e7:cb:ff:c3:
97:14:5c:4d:3a:ff:8a:ec:4d:a4:eb:18:2b:8d:76:
51:9c:d3:d3:51:d7:57:a0:5c:ec:02:18:8a:e1:09:
37:c7:73:db:6e:54:d1:61:fa:01:23:96:d3:bb:11:
c7:dd:d1:99:6c:e3:19:36:a6:45:80:e1:40:8e:93:
bf:d2:09:de:e7:6b:00:40:2d:55:df:81:47:13:57:
20:c5:94:cd:00:72:94:2a:5a:d1:83:4b:dd:e2:2c:
01:93:d0:ae:f1:55:01:9f:d5:38:d0:27:7e:36:5e:
95:31:cf:1d:bf:d7:a4:fe:9a:b5:df:1a:7f:62:6f:
87:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:9C:0F:CC:86:0D:D2:AC:21:E2:42:EF:B1:9A:61:1B:43:A2:26:46
X509v3 Authority Key Identifier:
keyid:68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/S5wPzIYN0qwh4kLvsZphG0OiJkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.84.0/22
Signature Algorithm: sha256WithRSAEncryption
af:1f:08:4a:aa:6d:43:4b:ca:50:0a:41:39:99:c9:55:ac:8e:
75:71:f2:12:4f:a0:b6:5e:62:d2:07:b0:02:1e:5a:e7:65:bf:
c1:31:16:ea:d3:5f:fd:a5:25:c0:a3:75:44:aa:02:9d:8b:00:
77:35:04:27:03:7e:b8:5d:b0:d4:88:2b:6d:f5:e7:2d:3d:98:
ce:21:84:08:a2:b2:3f:a6:be:f5:55:65:39:7d:9f:8d:e0:df:
98:f2:29:81:19:0d:80:1c:4f:d7:cd:d6:cb:e6:d0:5e:16:cb:
df:e8:45:5a:97:3a:d5:06:61:0d:57:df:40:4f:75:99:64:35:
10:97:7c:0e:7a:fe:7f:48:4c:a6:e8:6c:0b:7a:67:94:e7:de:
eb:c5:c8:9b:b6:40:4b:f4:f9:6a:2c:9d:44:1e:cf:5b:67:82:
c8:95:0f:40:aa:08:f8:d1:05:63:61:10:1e:d9:82:9d:8b:61:
19:5c:ac:86:13:7e:79:f9:a0:68:de:0d:72:58:8e:b6:3a:64:
a3:8b:69:16:43:4e:01:5d:bb:f4:6a:e7:18:b8:fd:12:de:ce:
e7:18:64:2c:12:89:71:03:26:a8:a6:f2:4c:64:e5:6f:28:1f:
03:25:40:85:4d:1e:8b:b1:50:9b:ed:d1:d9:ac:78:36:7d:32:
53:33:83:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:17 2024 by rpki-client on console-ams.rpki-client.org