Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/20bb49-e509-4c7b-8e5a-8d3dcc33ad0a/1/XYdiJ7copp2944C9leV73Z9Pdu4.roa
File: XYdiJ7copp2944C9leV73Z9Pdu4.roa (raw, json)
Hash identifier: IsvJ77MgGtGiiHVP6XEQy7jKB3a7nRHOEDt57wayGck=
Subject key identifier: 5D:87:62:27:B7:28:A6:9D:BD:E3:80:BD:95:E5:7B:DD:9F:4F:76:EE
Certificate issuer: /CN=20c0b9b33dce5eba0aea6489158d3fb27022ace7
Certificate serial: BA61A7
Authority key identifier: 20:C0:B9:B3:3D:CE:5E:BA:0A:EA:64:89:15:8D:3F:B2:70:22:AC:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMC5sz3OXroK6mSJFY0_snAirOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/20bb49-e509-4c7b-8e5a-8d3dcc33ad0a/1/XYdiJ7copp2944C9leV73Z9Pdu4.roa
Signing time: Sat 01 Jan 2022 10:02:50 +0000
ROA not before: Sat 01 Jan 2022 10:02:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.150.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12214695 (0xba61a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c0b9b33dce5eba0aea6489158d3fb27022ace7
Validity
Not Before: Jan 1 10:02:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d876227b728a69dbde380bd95e57bdd9f4f76ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:45:9a:2b:1c:d1:11:77:0a:82:38:bc:1e:7c:
ac:84:f0:19:49:f2:9e:87:b5:a1:49:d4:43:c8:56:
94:14:d8:7f:44:ce:df:66:6d:d9:06:20:dd:d3:63:
2a:22:02:91:a4:e2:22:7f:93:ac:50:76:4e:91:96:
0c:61:27:4c:3e:66:da:3d:f4:6d:77:76:43:58:ac:
2b:eb:c3:5b:2f:a2:f8:ed:6d:00:67:be:06:70:60:
7c:e0:fd:6d:ef:50:12:ab:07:e9:32:1a:88:35:9b:
75:b5:14:68:0a:92:3b:27:3f:f1:7a:7d:57:f4:b8:
70:7e:41:d4:6c:a8:ee:a2:a9:f2:ba:ad:c9:88:1a:
d7:cd:af:b2:76:05:41:64:bc:40:e2:7a:49:75:f6:
81:e5:8d:c1:95:c3:a2:1a:ac:4d:e5:ef:a5:bf:da:
74:b2:6c:61:25:11:cf:06:e0:c8:7e:ab:87:38:a9:
ff:ac:aa:43:fc:a0:b2:0a:71:d2:ac:f9:ee:22:e7:
91:00:cb:02:d7:d4:47:5a:ba:64:17:67:62:8a:46:
f3:e1:08:38:1c:1f:d4:dc:b8:92:96:8b:3d:75:f6:
4b:fd:c9:78:71:af:43:4a:3d:91:c3:1f:c5:49:96:
63:a6:9b:04:16:4b:22:e9:c0:48:58:3b:04:b7:8b:
11:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:87:62:27:B7:28:A6:9D:BD:E3:80:BD:95:E5:7B:DD:9F:4F:76:EE
X509v3 Authority Key Identifier:
keyid:20:C0:B9:B3:3D:CE:5E:BA:0A:EA:64:89:15:8D:3F:B2:70:22:AC:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMC5sz3OXroK6mSJFY0_snAirOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/20bb49-e509-4c7b-8e5a-8d3dcc33ad0a/1/XYdiJ7copp2944C9leV73Z9Pdu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/20bb49-e509-4c7b-8e5a-8d3dcc33ad0a/1/IMC5sz3OXroK6mSJFY0_snAirOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.179.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:68:9a:39:a6:eb:85:a3:9b:a6:e2:5b:ac:40:b9:24:85:d2:
c9:10:7f:d6:08:e3:35:ae:d1:fd:ce:aa:f9:ea:6d:4d:b5:b6:
27:5d:3f:0a:68:7f:d6:5d:4d:38:a8:46:56:6b:dc:c6:5b:a7:
72:57:7b:95:6c:36:6a:b1:95:d0:65:02:21:b2:cc:e5:1a:a5:
69:8a:32:bf:49:41:fb:6c:f2:39:03:b4:f7:06:2d:db:40:7d:
13:1e:e0:ad:5e:2b:f8:ff:32:91:48:3d:63:74:32:97:90:86:
61:fe:00:27:ed:42:45:e8:95:da:9f:5f:81:37:97:4f:8e:4f:
36:52:17:98:3e:b7:dc:21:21:ab:4d:09:5a:6d:6a:3e:c3:89:
e3:cd:d6:74:26:af:5a:db:3d:6f:36:d5:c5:3f:f4:4e:92:b3:
e0:be:80:8e:15:ca:72:b9:42:74:a3:39:11:80:ee:cc:c2:61:
c4:5e:d3:91:65:48:c4:ff:02:04:6a:16:fb:5b:5b:01:90:a4:
17:13:de:e8:80:5e:08:8c:1d:b9:af:85:c2:23:b3:6d:79:bf:
5e:85:15:6e:10:68:a7:28:35:76:7c:99:fd:0c:be:7a:18:eb:
31:4a:2b:38:b9:ca:8a:50:f6:fa:71:75:d5:c6:75:ad:62:0c:
c4:1f:39:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:30 2023 by rpki-client on console-fra.rpki-client.org