Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/j-cDkIecC365N22zV20KuQopjsg.roa
File: j-cDkIecC365N22zV20KuQopjsg.roa (raw, json)
Hash identifier: OlgPwd2VeJzAwrsMzA+sqMPl5MwqwGGvJgHhB4qPsC8=
Subject key identifier: 8F:E7:03:90:87:9C:0B:7E:B9:37:6D:B3:57:6D:0A:B9:0A:29:8E:C8
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17B2B5AC
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/j-cDkIecC365N22zV20KuQopjsg.roa
Signing time: Sat 01 Jan 2022 04:54:11 +0000
ROA not before: Sat 01 Jan 2022 04:54:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44541
IP address blocks: 185.142.142.0/24 maxlen: 32
2a06:7a06::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 397587884 (0x17b2b5ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8fe70390879c0b7eb9376db3576d0ab90a298ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:1d:e6:08:98:44:a5:6b:6e:c9:21:d2:39:e9:
94:b8:56:3e:c6:23:5f:2c:f4:5c:72:fb:b4:79:ff:
a5:7d:64:2b:cd:86:d5:3d:4c:63:30:2a:d0:26:07:
20:b5:7d:6f:5f:83:2a:f2:1c:39:3a:a3:a5:07:ed:
d3:fe:6b:1d:d4:c1:4c:a8:e3:3c:17:0f:a4:a8:45:
ed:4d:f0:5a:be:a4:9b:68:45:eb:bb:94:95:2d:c6:
02:2d:47:9e:cd:de:84:5b:f3:2a:97:df:77:d9:0f:
6e:47:b4:5a:a2:8c:d9:9f:c5:45:40:ac:79:34:95:
1c:8e:27:c1:fe:82:46:ca:29:b5:d2:7d:c3:43:38:
c1:e0:68:ee:a3:11:29:fe:d3:14:d2:43:19:d5:2f:
35:6e:56:8e:69:29:cf:6c:9f:14:e6:f4:1b:c0:83:
9f:92:21:b9:e3:37:95:ce:6b:23:83:63:25:c4:26:
87:02:69:65:24:de:38:f7:87:36:31:77:b4:15:7b:
80:50:bc:5b:61:52:fc:44:d8:e3:17:32:de:ed:f0:
02:49:05:76:6b:5c:d8:33:43:4f:d7:5d:35:cf:f3:
01:f1:c6:30:5b:69:b9:c1:c0:14:86:7e:41:af:a7:
c6:8b:49:f3:af:50:d6:7d:1a:1b:a7:b9:1c:77:7f:
31:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:E7:03:90:87:9C:0B:7E:B9:37:6D:B3:57:6D:0A:B9:0A:29:8E:C8
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/j-cDkIecC365N22zV20KuQopjsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.142.0/24
IPv6:
2a06:7a06::/48
Signature Algorithm: sha256WithRSAEncryption
12:50:33:a6:a7:d1:68:42:8a:78:15:2e:ab:9e:32:6e:b3:3a:
24:29:95:4b:79:12:f9:99:68:f9:d4:e6:41:19:56:13:ff:1d:
90:1e:16:18:13:4c:9a:9e:f7:3e:61:24:d7:8e:68:11:44:51:
11:46:f4:b0:7d:a5:2d:84:9d:64:bb:c7:b9:f9:ad:1e:a9:4c:
ec:fd:eb:ad:a6:2c:01:8b:39:32:d7:a5:91:61:60:02:02:3d:
42:c2:ad:4c:5d:f6:13:9f:41:9a:c0:ab:e4:b7:c1:0e:79:3b:
45:51:7e:92:d5:f8:47:1a:f7:88:78:5f:12:e6:51:6e:68:af:
19:5b:9f:07:fc:8c:b2:08:1e:c3:2d:66:85:b2:61:3d:d7:48:
a1:92:db:62:20:64:3e:1d:58:52:5a:83:b1:2f:8f:6c:c2:fa:
df:b3:b1:b5:2e:96:47:ac:be:a2:95:89:ef:f1:ca:7a:49:fb:
e5:08:3c:42:4b:37:67:59:6c:18:59:ed:15:c6:97:a2:5d:b7:
72:72:cb:6f:c8:59:d4:c9:7d:5d:3d:94:a4:c5:8c:a6:3c:2c:
07:28:55:c6:d9:16:00:23:e3:8d:ac:82:0f:87:c2:1c:20:5d:
5e:6b:fa:c5:91:36:ac:8c:f2:e7:21:45:88:13:48:ed:b8:f1:
1e:05:54:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org