Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/1osBnHqYJ-YCWpQ51fYdiv4BBM0.roa
File: 1osBnHqYJ-YCWpQ51fYdiv4BBM0.roa (raw, json)
Hash identifier: 2DlyMniXmsNHgk51PtjAAyVm621XKhqPEGq95TfvMkI=
Subject key identifier: D6:8B:01:9C:7A:98:27:E6:02:5A:94:39:D5:F6:1D:8A:FE:01:04:CD
Certificate issuer: /CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
Certificate serial: 1649F389
Authority key identifier: 88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/1osBnHqYJ-YCWpQ51fYdiv4BBM0.roa
Signing time: Sat 01 Jan 2022 08:59:49 +0000
ROA not before: Sat 01 Jan 2022 08:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60162
IP address blocks: 185.51.156.0/22 maxlen: 24
185.143.108.0/22 maxlen: 24
2a01:b420::/32 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373945225 (0x1649f389)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
Validity
Not Before: Jan 1 08:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d68b019c7a9827e6025a9439d5f61d8afe0104cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:be:78:4e:0f:f5:9d:0c:29:70:a1:ab:07:11:
f1:e3:06:6d:42:e8:bd:2b:48:29:65:e0:c0:22:32:
20:cb:db:b6:67:65:6f:d4:3e:cf:96:c2:0e:7a:fd:
f6:d8:51:a1:c6:9c:38:e4:02:f2:6b:d2:df:86:bf:
9d:1a:4b:25:51:73:10:84:c5:14:fd:e5:5e:e3:19:
ff:48:ed:28:fb:3c:2a:7d:73:1d:77:8e:a2:b1:28:
d1:79:45:eb:32:27:f2:92:b5:3e:f0:6a:ba:63:5d:
cd:f1:c7:ca:69:4f:10:76:92:90:e3:3d:dc:06:dc:
a5:ff:0d:75:34:b6:45:2b:f4:6b:ca:17:a6:7b:a3:
c7:e9:b2:46:e9:32:bb:39:7d:c0:24:1e:2b:4d:fa:
7c:0f:27:7f:25:2a:bd:68:9a:87:71:50:0c:a9:d6:
01:58:e8:ae:6c:1b:3f:71:a2:c1:e3:d3:ef:b0:e9:
36:7a:0b:8e:dd:7a:c0:c0:d0:e7:20:05:57:b5:ea:
49:e7:82:82:04:15:f2:bf:c1:70:84:9c:75:1a:ed:
09:46:f1:f4:f1:5b:53:0f:4f:e8:07:08:ce:54:59:
3f:20:a3:91:17:ce:d7:44:f0:82:8e:a3:8a:30:cb:
75:7e:20:b8:59:ee:67:0f:00:31:38:1c:ea:ba:7b:
24:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:8B:01:9C:7A:98:27:E6:02:5A:94:39:D5:F6:1D:8A:FE:01:04:CD
X509v3 Authority Key Identifier:
keyid:88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/1osBnHqYJ-YCWpQ51fYdiv4BBM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.156.0/22
185.143.108.0/22
IPv6:
2a01:b420::/32
Signature Algorithm: sha256WithRSAEncryption
09:93:09:23:9e:d0:83:4f:13:c3:77:9d:34:b2:af:aa:22:8f:
4a:91:f5:db:02:11:04:47:09:0d:4c:3d:84:8f:1d:07:fa:3c:
c1:f7:4d:e2:7e:8f:1f:e9:98:11:78:db:44:45:fc:c5:7f:c6:
93:a8:55:af:51:f5:b8:64:38:d3:1c:ba:b8:f9:b0:05:c3:53:
54:d3:bc:3c:3a:98:e4:4e:64:ea:99:7b:12:76:d3:a9:08:8b:
ef:70:d3:9a:4e:ee:08:3b:90:da:60:03:3e:08:89:66:2e:47:
d1:44:b5:0d:cc:0f:5a:f5:bc:da:ec:60:71:b7:ca:40:08:c1:
80:6c:97:5e:d3:8b:ed:9f:07:63:d5:5f:45:3d:2e:b1:32:4a:
f3:2a:ae:f3:8b:cf:a1:95:f1:81:c8:5a:e5:fd:66:22:dd:b0:
dc:b3:eb:f2:de:cd:c0:88:a3:ac:7d:30:d5:86:5d:64:36:5d:
db:c3:5d:cc:aa:6b:85:98:a8:52:82:29:af:5c:6a:ef:8c:8b:
d1:56:9d:c2:34:c4:f2:4e:34:8b:49:91:b4:ed:5c:f4:dd:83:
21:18:78:52:d1:4e:76:5c:31:a6:62:a3:cc:ed:a8:da:93:28:
f4:b3:3f:99:58:e1:77:a6:1a:fb:8a:e2:8e:fb:ca:20:19:39:
c7:57:95:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:36 2023 by rpki-client on console-fra.rpki-client.org