Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/20bb49-e509-4c7b-8e5a-8d3dcc33ad0a/1/sOW06itJnIBo-ebffDh4CPRY9VA.roa
File: sOW06itJnIBo-ebffDh4CPRY9VA.roa (raw, json)
Hash identifier: DVhvnzk0At4gqd7OGYkzRDxkodtaGV5qMFnnF+W4BRc=
Subject key identifier: B0:E5:B4:EA:2B:49:9C:80:68:F9:E6:DF:7C:38:78:08:F4:58:F5:50
Certificate issuer: /CN=20c0b9b33dce5eba0aea6489158d3fb27022ace7
Certificate serial: BB6214
Authority key identifier: 20:C0:B9:B3:3D:CE:5E:BA:0A:EA:64:89:15:8D:3F:B2:70:22:AC:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMC5sz3OXroK6mSJFY0_snAirOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/20bb49-e509-4c7b-8e5a-8d3dcc33ad0a/1/sOW06itJnIBo-ebffDh4CPRY9VA.roa
Signing time: Sat 01 Jan 2022 10:02:50 +0000
ROA not before: Sat 01 Jan 2022 10:02:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.150.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12280340 (0xbb6214)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c0b9b33dce5eba0aea6489158d3fb27022ace7
Validity
Not Before: Jan 1 10:02:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0e5b4ea2b499c8068f9e6df7c387808f458f550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:42:12:a3:8d:28:d8:77:cc:40:17:e9:42:f9:
6a:21:4b:3d:f3:ce:7b:d6:aa:83:9e:85:b2:6b:f0:
35:75:42:25:1e:f2:b2:22:d3:73:df:56:af:f8:99:
23:26:ec:bc:43:59:5e:0b:c1:6e:7f:49:cd:94:92:
4f:71:3f:fb:26:24:7b:fa:b6:4b:11:1f:63:29:26:
75:b9:3f:06:92:7b:2b:09:38:c0:a2:5a:8e:6a:3d:
04:94:6e:5a:e3:13:7c:4e:fb:67:4a:63:be:74:13:
00:34:4b:20:8a:ad:2c:58:73:e1:cf:ea:19:49:05:
44:de:db:17:8b:e9:cf:fe:80:52:20:f6:09:43:a0:
be:09:53:55:b3:56:12:b5:1d:48:c6:1a:42:58:da:
4b:e8:6d:dd:d3:b9:97:ae:49:58:be:25:18:17:02:
68:8f:c4:20:28:68:51:b6:96:2e:50:dc:65:be:c2:
f2:77:5f:af:36:00:fa:f6:60:cf:b3:77:9f:53:c7:
aa:a1:3f:9e:64:3e:fd:cf:bc:03:e5:ea:38:d9:6e:
74:1f:a4:9b:95:74:49:23:98:ba:4a:4e:1b:c0:a7:
10:bc:12:26:f3:11:a2:aa:13:65:c1:7d:6f:37:ab:
ad:96:27:da:bb:44:d1:cb:97:3b:69:1d:2d:57:ff:
fd:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E5:B4:EA:2B:49:9C:80:68:F9:E6:DF:7C:38:78:08:F4:58:F5:50
X509v3 Authority Key Identifier:
keyid:20:C0:B9:B3:3D:CE:5E:BA:0A:EA:64:89:15:8D:3F:B2:70:22:AC:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMC5sz3OXroK6mSJFY0_snAirOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/20bb49-e509-4c7b-8e5a-8d3dcc33ad0a/1/sOW06itJnIBo-ebffDh4CPRY9VA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/20bb49-e509-4c7b-8e5a-8d3dcc33ad0a/1/IMC5sz3OXroK6mSJFY0_snAirOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.179.0/24
Signature Algorithm: sha256WithRSAEncryption
40:af:20:1d:68:d7:f6:0f:80:3e:47:c0:18:c1:bd:d8:6a:b8:
82:3c:a7:0c:ef:7c:1b:37:fe:d8:8c:f5:c4:14:5b:f2:12:51:
dd:0c:2b:a7:70:67:05:54:6b:a2:e1:b5:35:22:75:e1:03:96:
2f:63:48:04:bf:ed:9e:3f:dc:47:45:2e:e0:09:64:b8:ee:40:
29:11:e3:b1:5b:d3:2d:1f:3e:ba:ee:73:2e:29:87:b6:e5:bb:
64:d8:1d:38:1a:2d:d7:4a:1f:25:77:00:72:bd:2e:c1:44:09:
fd:11:6f:e0:65:26:5b:91:0d:f8:1b:32:d2:62:ab:a1:33:b6:
f1:7d:72:67:5a:17:c8:86:ff:eb:d5:57:f0:8d:37:12:03:ee:
7c:4e:80:6e:11:bd:ff:20:c8:de:29:f9:f2:75:72:15:d6:ce:
35:54:db:37:d4:db:56:c4:a2:b0:ab:0c:96:a9:41:6c:32:6a:
16:29:b6:a5:72:85:11:54:17:ba:cf:21:cb:a0:bf:3e:8a:94:
f4:c1:3a:a3:07:38:01:80:d3:08:97:95:9d:0b:b4:5e:84:61:
6b:b6:b6:7a:b2:e5:13:80:9a:be:12:98:58:07:03:2e:3d:1a:
d6:68:1e:63:b5:a4:b5:e1:5f:59:03:83:d7:51:cc:61:83:fc:
8c:ef:df:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:24 2023 by rpki-client on console-ams.rpki-client.org