Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/46c20c-f166-4041-a01b-0efec6ea77c6/1/RV1Pj8427qgIkvIKP12Ky264fX8.roa
File: RV1Pj8427qgIkvIKP12Ky264fX8.roa (raw, json)
Hash identifier: hvRFxZr1+HYg6CoYnwgCokDcjJT7U8wgBhnzA5Vgc98=
Subject key identifier: 45:5D:4F:8F:CE:36:EE:A8:08:92:F2:0A:3F:5D:8A:CB:6E:B8:7D:7F
Certificate issuer: /CN=d3acd2b7b7473af4350ea1aba83d177585ceedad
Certificate serial: 0D2C2E91
Authority key identifier: D3:AC:D2:B7:B7:47:3A:F4:35:0E:A1:AB:A8:3D:17:75:85:CE:ED:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/06zSt7dHOvQ1DqGrqD0XdYXO7a0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/46c20c-f166-4041-a01b-0efec6ea77c6/1/RV1Pj8427qgIkvIKP12Ky264fX8.roa
Signing time: Sat 01 Jan 2022 02:57:18 +0000
ROA not before: Sat 01 Jan 2022 02:57:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205360
IP address blocks: 185.221.4.0/22 maxlen: 22
2a0b:fec0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 220999313 (0xd2c2e91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3acd2b7b7473af4350ea1aba83d177585ceedad
Validity
Not Before: Jan 1 02:57:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=455d4f8fce36eea80892f20a3f5d8acb6eb87d7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:13:6d:aa:62:b8:95:4d:89:29:5e:42:7b:c3:
f6:b3:04:af:f5:0a:b6:cd:72:7c:ae:29:02:a8:4f:
2e:13:a5:15:f8:17:83:d0:92:19:4e:60:f1:73:a3:
2f:93:c6:15:63:86:38:85:6a:90:d6:79:2e:f8:51:
ca:93:56:a9:3a:e1:3f:48:db:63:c5:8d:05:f8:5f:
15:98:c8:fe:04:7c:bb:a5:de:af:a7:d2:81:b5:57:
ed:e1:c1:0a:93:39:fd:1f:1b:7f:69:f4:fb:ce:06:
88:86:b2:a8:2c:92:a6:aa:7a:b6:aa:65:df:9a:b2:
45:29:9a:c1:8b:79:05:29:3c:58:8e:ac:ad:09:02:
85:91:79:46:7f:ed:86:15:97:82:56:09:0e:71:ab:
52:5e:4c:8c:13:b2:50:f7:32:24:9d:60:18:5f:5d:
d7:4a:76:b6:a3:f7:76:78:fa:c3:ad:3b:12:e1:c0:
a0:31:2a:1b:89:c4:80:10:02:fc:fe:ff:f8:8f:b6:
7d:83:de:a5:6c:24:88:48:f1:ac:90:e5:00:06:81:
b9:e6:4e:3d:81:bb:2d:5a:48:2f:e3:46:d7:dd:b0:
e3:34:ff:a7:71:90:38:fe:8d:3e:9d:1e:fb:7d:3e:
3b:6a:7a:6c:50:3e:bd:5c:3e:38:37:7e:fe:87:d2:
54:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5D:4F:8F:CE:36:EE:A8:08:92:F2:0A:3F:5D:8A:CB:6E:B8:7D:7F
X509v3 Authority Key Identifier:
keyid:D3:AC:D2:B7:B7:47:3A:F4:35:0E:A1:AB:A8:3D:17:75:85:CE:ED:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/06zSt7dHOvQ1DqGrqD0XdYXO7a0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/46c20c-f166-4041-a01b-0efec6ea77c6/1/RV1Pj8427qgIkvIKP12Ky264fX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/46c20c-f166-4041-a01b-0efec6ea77c6/1/06zSt7dHOvQ1DqGrqD0XdYXO7a0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.4.0/22
IPv6:
2a0b:fec0::/29
Signature Algorithm: sha256WithRSAEncryption
2f:65:5d:dc:83:af:26:b3:2c:cb:7a:95:60:e7:1f:00:5f:ad:
a9:fc:fc:84:61:f2:84:a9:0c:23:64:23:9c:88:10:a6:c8:ee:
53:25:aa:f2:22:e1:5a:d7:f0:00:ce:c1:b9:87:29:64:64:f1:
1d:18:16:e7:df:cb:ac:b4:29:b1:bc:a7:f4:7b:c6:c1:a2:6d:
3e:36:82:41:89:44:73:5c:74:0a:c0:e1:3f:e6:4b:84:c5:31:
c8:4c:85:28:f7:1e:3a:a1:d5:7f:94:bb:8b:da:e4:93:94:1d:
f1:e0:26:20:f5:f7:63:fb:10:53:63:a1:d2:18:94:ad:23:e9:
e3:a5:69:a3:8d:85:ea:43:0e:1d:bf:99:07:76:a3:5d:69:c4:
97:73:c0:08:b4:78:90:a7:70:1a:66:7a:75:d6:b3:41:8e:72:
ad:fe:17:6b:c3:6e:4f:24:c8:33:4c:68:c4:d4:22:be:e8:c8:
8b:d7:dc:12:f6:d8:c6:8e:71:22:69:17:25:92:58:fb:40:e7:
80:96:31:e4:7a:0e:cf:9c:d8:79:27:60:b5:c3:fa:87:15:63:
50:ee:0e:6e:2b:0f:60:c3:3a:3a:26:a0:e7:c2:8a:55:71:b2:
50:f6:49:df:35:fa:3b:ae:9b:51:1b:07:07:af:7c:89:96:74:
38:e7:14:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:27 2023 by rpki-client on console-ams.rpki-client.org