Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/FTugy4suNVn2p_0yCXzz8LP0dtk.roa
File: FTugy4suNVn2p_0yCXzz8LP0dtk.roa (raw, json)
Hash identifier: HPLg1XfQuZKWsrcHDD5JPpCtc3hNKz834UU21HuqOgg=
Subject key identifier: 15:3B:A0:CB:8B:2E:35:59:F6:A7:FD:32:09:7C:F3:F0:B3:F4:76:D9
Certificate issuer: /CN=e88c04771e2bfac8f60f1b4c9cbd093aafea974e
Certificate serial: 0566C29D
Authority key identifier: E8:8C:04:77:1E:2B:FA:C8:F6:0F:1B:4C:9C:BD:09:3A:AF:EA:97:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6IwEdx4r-sj2DxtMnL0JOq_ql04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/FTugy4suNVn2p_0yCXzz8LP0dtk.roa
Signing time: Sat 01 Jan 2022 07:02:03 +0000
ROA not before: Sat 01 Jan 2022 07:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202551
IP address blocks: 185.160.208.0/22 maxlen: 22
2a07:c000::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90620573 (0x566c29d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e88c04771e2bfac8f60f1b4c9cbd093aafea974e
Validity
Not Before: Jan 1 07:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=153ba0cb8b2e3559f6a7fd32097cf3f0b3f476d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8b:56:a0:8a:bd:94:c1:6f:97:0b:9a:e3:1e:
1d:ae:28:56:7b:57:33:bb:ee:53:26:b0:3a:d1:9e:
de:83:6c:1b:e0:dd:03:c4:9d:af:5f:1a:ec:bc:bd:
77:df:ae:1c:e8:54:d8:84:06:24:a2:00:bf:af:74:
a5:e0:12:84:89:3f:5d:d5:26:4c:59:1b:7c:05:39:
13:bb:9b:5d:e2:45:d5:87:95:27:54:9d:cd:0f:79:
09:08:62:e7:8d:2d:49:f8:53:b6:f3:54:1d:2c:d7:
61:a9:e9:9f:d7:6f:a3:c9:51:fc:70:e1:04:e7:d2:
9a:88:96:e6:5d:33:f7:f0:1f:5e:3d:68:d2:62:2a:
0a:2c:87:b2:aa:00:00:97:8a:f4:47:6d:aa:0c:20:
8a:2e:db:89:b3:e3:24:3d:4e:a5:38:de:cf:00:77:
82:f8:2a:61:a6:9c:c5:3b:11:6f:28:22:a5:d8:98:
05:04:39:aa:ce:e2:69:c3:55:68:03:42:58:15:f6:
61:2a:f4:15:c1:ba:63:ef:94:97:67:47:f4:58:a8:
8f:0e:8d:c8:c8:07:5d:fc:d6:35:f4:b9:80:22:01:
11:f4:3a:1a:ab:aa:14:26:92:92:ca:51:43:5b:19:
d2:ed:5a:78:4f:02:c3:c8:b0:eb:ea:15:cf:43:f0:
7c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:3B:A0:CB:8B:2E:35:59:F6:A7:FD:32:09:7C:F3:F0:B3:F4:76:D9
X509v3 Authority Key Identifier:
keyid:E8:8C:04:77:1E:2B:FA:C8:F6:0F:1B:4C:9C:BD:09:3A:AF:EA:97:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6IwEdx4r-sj2DxtMnL0JOq_ql04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/FTugy4suNVn2p_0yCXzz8LP0dtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/6IwEdx4r-sj2DxtMnL0JOq_ql04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.208.0/22
IPv6:
2a07:c000::/29
Signature Algorithm: sha256WithRSAEncryption
86:1b:44:4f:87:b6:22:e7:0b:98:58:82:c8:41:69:16:ba:64:
36:50:97:6c:62:8e:99:ae:1c:eb:22:da:b5:10:bf:05:49:6b:
06:47:96:d3:ef:e7:b3:0c:b6:90:2d:99:db:0e:7b:86:d4:36:
7e:39:45:67:bf:f0:d5:1c:fc:b4:8d:f4:23:8e:0b:d7:4d:f1:
73:b9:58:54:fb:03:1c:38:41:51:21:af:24:41:bf:ed:bd:f8:
9d:88:17:81:b1:e2:04:90:86:4f:92:fa:1e:b1:e8:39:a3:50:
19:28:d4:d2:a2:e2:72:d2:c1:f0:0e:ae:3e:04:05:a3:ba:4d:
ff:0d:fc:a0:a6:2f:e9:0c:5d:3a:b7:bf:b2:b4:bb:6a:13:84:
a9:4d:42:65:4f:94:1b:ba:2c:1a:91:b3:6f:d8:a9:75:e7:09:
a8:65:9b:89:cc:f6:d7:86:9c:dc:63:60:76:bc:16:c3:67:52:
cc:2a:cc:70:7e:67:6a:22:95:5d:60:b2:1a:b2:b2:cd:4e:e4:
e5:f0:55:90:e8:da:ea:c4:12:b2:2c:52:bc:65:7b:27:d6:99:
81:fe:eb:7c:1b:cb:1b:54:9d:ca:27:dd:44:17:43:8a:c0:31:
2d:77:c0:a2:50:05:59:17:17:f7:5c:86:97:79:40:10:96:81:
20:6b:bb:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:51 2023 by rpki-client on console-ams.rpki-client.org