Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/2fc167-b357-4394-b4e8-c825be2813bc/1/gU64LxomQpW9nMYmLdKnaLzW6KY.roa
File: gU64LxomQpW9nMYmLdKnaLzW6KY.roa (raw, json)
Hash identifier: HMZZ6kfFwOAOsZHUvfzBQyMfPJrLJgihYT0aaWA2PQg=
Subject key identifier: 81:4E:B8:2F:1A:26:42:95:BD:9C:C6:26:2D:D2:A7:68:BC:D6:E8:A6
Certificate issuer: /CN=0b84ea549f88211058b34bfcab0640c3030393c3
Certificate serial: 074EEED0
Authority key identifier: 0B:84:EA:54:9F:88:21:10:58:B3:4B:FC:AB:06:40:C3:03:03:93:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C4TqVJ-IIRBYs0v8qwZAwwMDk8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/2fc167-b357-4394-b4e8-c825be2813bc/1/gU64LxomQpW9nMYmLdKnaLzW6KY.roa
Signing time: Wed 02 Mar 2022 14:19:49 +0000
ROA not before: Wed 02 Mar 2022 14:19:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52195
IP address blocks: 185.12.20.0/22 maxlen: 23
46.149.208.0/20 maxlen: 23
185.237.160.0/24 maxlen: 24
2a02:ea80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122613456 (0x74eeed0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b84ea549f88211058b34bfcab0640c3030393c3
Validity
Not Before: Mar 2 14:19:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=814eb82f1a264295bd9cc6262dd2a768bcd6e8a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3a:63:9a:eb:b2:22:59:b5:0e:44:72:21:a3:
45:7f:bf:c1:ae:06:6c:83:19:bc:61:f8:b8:bb:59:
92:07:4b:30:02:d1:0b:24:92:de:d8:fd:5e:35:a7:
95:5e:b6:d1:8b:b3:a3:86:02:ae:a2:24:41:d6:5b:
00:43:3b:c9:cf:dd:35:3c:71:08:b2:62:89:9a:81:
b0:e7:db:0a:75:d2:b1:ad:a5:74:2e:1d:3e:2c:aa:
c5:b9:3f:42:f9:df:8d:70:62:f2:32:00:87:6e:c4:
92:80:fb:9e:93:c6:e1:3b:9b:e0:bf:a9:b1:96:93:
f6:21:62:bb:0d:d5:74:76:09:7a:41:b3:6e:45:45:
ee:51:59:19:e4:3f:2b:2d:13:37:2b:50:38:c3:4e:
e6:7d:e9:f5:e1:30:58:c6:96:8e:65:27:8b:08:09:
85:cc:d0:1c:6f:ff:e0:dd:e0:1e:a6:46:5c:94:8b:
cb:c4:0e:7c:d4:f9:dc:41:d7:5f:74:3c:83:40:6d:
0c:0a:a1:c8:f6:72:41:55:b9:41:45:9f:68:30:71:
1e:2f:bc:de:14:03:96:c7:4a:00:22:0a:5b:0f:1b:
b7:02:1a:4f:66:ca:11:ea:d9:1b:06:83:0a:1b:2d:
f7:65:28:03:c1:76:6d:53:a2:01:c9:4f:a5:0f:86:
ea:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:4E:B8:2F:1A:26:42:95:BD:9C:C6:26:2D:D2:A7:68:BC:D6:E8:A6
X509v3 Authority Key Identifier:
keyid:0B:84:EA:54:9F:88:21:10:58:B3:4B:FC:AB:06:40:C3:03:03:93:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C4TqVJ-IIRBYs0v8qwZAwwMDk8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/2fc167-b357-4394-b4e8-c825be2813bc/1/gU64LxomQpW9nMYmLdKnaLzW6KY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/2fc167-b357-4394-b4e8-c825be2813bc/1/C4TqVJ-IIRBYs0v8qwZAwwMDk8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.149.208.0/20
185.12.20.0/22
185.237.160.0/24
IPv6:
2a02:ea80::/32
Signature Algorithm: sha256WithRSAEncryption
82:7e:ec:e4:85:bf:f4:76:eb:28:92:06:47:a0:0b:22:26:b6:
2e:2f:08:0b:b0:85:5a:b5:b9:47:16:5a:e4:c5:8e:e4:98:93:
5b:f1:2c:8b:db:f9:da:90:54:33:2f:19:6a:e5:5b:9f:27:da:
b8:73:87:41:a4:26:fb:51:a1:36:e9:e2:aa:ab:d8:ea:eb:92:
2d:de:d0:6c:2b:bc:87:78:8e:61:73:cb:63:0e:49:af:37:8f:
e3:f2:de:38:ca:f6:69:bb:d2:aa:9d:75:0e:0a:e6:31:00:ba:
6b:3a:fd:7c:35:aa:9d:13:62:ab:c8:02:b2:bb:d0:83:35:b9:
6b:79:c2:70:79:de:a7:a1:d4:1b:8a:60:7c:e1:23:89:ea:15:
5c:8b:72:a3:23:2e:4d:71:56:5e:ac:42:af:d0:1f:cd:07:35:
d5:78:df:7d:c4:8c:41:f1:94:c3:6d:77:46:f6:5d:0b:0d:25:
f7:7f:4b:b4:7e:5d:91:d6:73:e0:51:53:29:20:8a:99:05:fe:
27:ca:fb:a1:a7:63:ff:b1:0e:10:65:a1:e9:27:e0:4b:ea:97:
fc:f7:3b:c6:aa:dd:c7:e8:99:51:92:6e:d8:94:04:fe:bb:d5:
20:35:b2:af:1e:78:cb:50:d7:0a:93:b9:6c:1d:3d:ed:c8:59:
87:9e:04:4f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:03 2023 by rpki-client on console-ams.rpki-client.org