Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/23ba46-fc7a-4b97-8b4f-231657829ef5/1/uzAX9Ghe2MmktxujRyNFLwYBvvo.roa
File: uzAX9Ghe2MmktxujRyNFLwYBvvo.roa (raw, json)
Hash identifier: SIOii5VpI3pKIfXIQIzacM/dcqi5Qh11LF3w0MVuOfY=
Subject key identifier: BB:30:17:F4:68:5E:D8:C9:A4:B7:1B:A3:47:23:45:2F:06:01:BE:FA
Certificate issuer: /CN=e6f1dedaf4dbda60da990d685650e68c888c6100
Certificate serial: F6F5D0
Authority key identifier: E6:F1:DE:DA:F4:DB:DA:60:DA:99:0D:68:56:50:E6:8C:88:8C:61:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5vHe2vTb2mDamQ1oVlDmjIiMYQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/23ba46-fc7a-4b97-8b4f-231657829ef5/1/uzAX9Ghe2MmktxujRyNFLwYBvvo.roa
Signing time: Mon 28 Feb 2022 20:36:45 +0000
ROA not before: Mon 28 Feb 2022 20:36:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 185.204.94.0/24 maxlen: 24
185.204.93.0/24 maxlen: 24
185.204.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16184784 (0xf6f5d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6f1dedaf4dbda60da990d685650e68c888c6100
Validity
Not Before: Feb 28 20:36:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb3017f4685ed8c9a4b71ba34723452f0601befa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:77:8e:0f:1c:6d:47:a2:d5:b5:8f:79:d7:0b:
25:7c:30:e7:37:96:03:3d:7e:8d:e3:c2:ea:c2:f9:
8e:32:d6:3a:85:d4:d5:71:a6:43:4a:57:f2:fe:6b:
a1:43:e3:8d:a2:9d:9d:77:d1:d9:19:9b:f5:d1:c1:
82:d2:b8:18:e9:84:4f:24:fc:f8:50:08:7f:5b:dd:
c1:9e:1d:03:8b:92:fe:9c:50:72:08:d1:99:1e:3c:
5b:a9:d0:34:84:cf:48:d9:f9:56:52:f1:e4:f3:0a:
8a:09:c5:3c:3d:1c:c1:64:36:62:4b:01:2d:d6:08:
a4:53:2d:bc:de:ef:fe:cd:6a:fe:fa:03:86:4d:1b:
39:39:54:10:27:77:d9:dd:44:86:ef:23:65:c4:f9:
4b:13:a7:03:15:e3:2c:21:b3:58:a7:56:06:5b:d2:
43:e5:ab:58:16:54:ab:6e:b6:1f:53:fa:40:4c:7d:
d6:78:04:d2:aa:f1:4e:90:73:2a:5f:45:69:a1:4c:
51:a8:0c:60:93:7d:6e:93:c3:c2:41:31:8a:2e:46:
61:2f:d4:7a:7b:c7:04:d3:d0:dc:a8:38:1e:5a:50:
0d:f9:6b:b3:aa:d4:a7:e6:00:a7:44:38:ce:10:fc:
13:ec:d1:1f:7f:f5:53:b8:2f:f1:1b:29:2b:bb:64:
87:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:30:17:F4:68:5E:D8:C9:A4:B7:1B:A3:47:23:45:2F:06:01:BE:FA
X509v3 Authority Key Identifier:
keyid:E6:F1:DE:DA:F4:DB:DA:60:DA:99:0D:68:56:50:E6:8C:88:8C:61:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5vHe2vTb2mDamQ1oVlDmjIiMYQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/23ba46-fc7a-4b97-8b4f-231657829ef5/1/uzAX9Ghe2MmktxujRyNFLwYBvvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/23ba46-fc7a-4b97-8b4f-231657829ef5/1/5vHe2vTb2mDamQ1oVlDmjIiMYQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.93.0-185.204.95.255
Signature Algorithm: sha256WithRSAEncryption
3e:2a:6e:db:b0:d6:57:e0:22:b4:fd:e7:12:e8:ad:be:e3:da:
af:3c:4e:6f:cc:bf:98:39:ab:90:b0:e1:30:bf:65:f1:7b:2d:
50:28:50:7d:e8:71:a8:5e:5f:53:a1:8b:fe:70:db:8a:d8:ce:
26:1f:69:cf:f0:d2:34:37:1d:3b:e5:a3:9f:ff:2e:99:c4:09:
8a:bf:14:f4:00:48:89:fb:ed:d0:4c:a6:7b:79:90:e0:1c:81:
01:76:ef:fe:62:60:c6:b4:3f:cf:75:76:5b:39:2b:81:e4:91:
ee:a8:9d:5e:ad:62:53:e7:2e:b8:6c:38:e1:b2:2c:08:0d:52:
33:c2:be:0a:e3:b2:55:e8:fb:c3:3c:01:69:91:f0:64:a0:3e:
90:20:fb:76:e3:06:19:45:66:2c:51:e8:a2:6a:b9:3c:b6:28:
5f:e7:c1:b5:b0:b2:6e:22:a8:7a:2f:8d:0d:ce:ec:9e:59:8b:
3a:0b:ec:d5:20:b9:e5:16:1a:c7:05:5a:d3:e9:f3:22:84:6f:
70:39:5c:8e:7c:d2:c7:2e:80:d7:d7:84:07:be:61:84:93:4e:
7d:0d:dd:2a:a6:2a:f9:3b:16:a2:a6:42:c4:75:4b:33:fc:9e:
5f:01:40:43:4c:1f:e5:4d:58:83:74:85:19:db:f2:b7:e2:81:
d5:7d:cd:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:33 2023 by rpki-client on console-fra.rpki-client.org