Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/RHAg68Q7EJfFPJuBYWbFNVaT8lA.roa
File: RHAg68Q7EJfFPJuBYWbFNVaT8lA.roa (raw, json)
Hash identifier: cwMg/dmMySDHZqOz64sV1IDHgM7wpGB7J7cLCmjPbM8=
Subject key identifier: 44:70:20:EB:C4:3B:10:97:C5:3C:9B:81:61:66:C5:35:56:93:F2:50
Certificate issuer: /CN=1b0bb51a7b532be4d44ba604ae6e063f063f37d4
Certificate serial: 05D158FD
Authority key identifier: 1B:0B:B5:1A:7B:53:2B:E4:D4:4B:A6:04:AE:6E:06:3F:06:3F:37:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gwu1GntTK-TUS6YErm4GPwY_N9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/RHAg68Q7EJfFPJuBYWbFNVaT8lA.roa
Signing time: Sat 01 Jan 2022 07:57:20 +0000
ROA not before: Sat 01 Jan 2022 07:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206429
IP address blocks: 185.186.196.0/22 maxlen: 22
2a0b:8580::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97605885 (0x5d158fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0bb51a7b532be4d44ba604ae6e063f063f37d4
Validity
Not Before: Jan 1 07:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=447020ebc43b1097c53c9b816166c5355693f250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:00:3d:0f:02:26:12:4f:02:fa:76:12:f0:f8:
e6:44:fc:da:f9:b2:43:25:d9:de:02:10:03:ac:8a:
a6:57:1a:7e:6d:17:ac:e2:eb:90:48:5d:ba:f9:76:
df:fa:be:10:f9:05:18:07:24:79:36:aa:f2:e7:36:
ef:c4:6e:c3:92:32:91:12:0a:38:c6:92:0e:7a:8d:
0d:ca:2c:72:47:8d:8d:8d:e9:a9:8d:94:80:f2:fe:
71:43:70:0e:e9:3e:c4:54:0a:b5:a0:db:a7:a9:61:
58:3c:84:06:f1:c6:83:79:7f:b6:ce:de:62:db:40:
2e:5a:6d:60:5f:e3:07:43:cb:18:23:07:5e:22:02:
14:bd:1f:c5:53:da:c2:7d:79:44:26:5f:95:34:ec:
9c:9a:39:c3:30:a1:53:f4:16:19:7a:02:98:5d:b0:
bd:ff:2b:9b:fa:d7:9d:f5:a5:6e:62:99:1f:b4:19:
36:ef:54:b2:37:0c:10:9a:e6:df:79:42:b1:65:25:
4c:4f:a9:e1:e7:5f:8d:da:fd:47:da:2a:09:a5:37:
e0:e5:52:76:68:0d:03:cf:c2:d6:a8:a7:62:34:b9:
3d:76:82:94:5e:8a:15:f1:e4:7e:ad:03:0e:6a:e0:
ca:b3:1b:71:65:dd:a7:14:25:3a:2d:f9:86:aa:ec:
ed:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:70:20:EB:C4:3B:10:97:C5:3C:9B:81:61:66:C5:35:56:93:F2:50
X509v3 Authority Key Identifier:
keyid:1B:0B:B5:1A:7B:53:2B:E4:D4:4B:A6:04:AE:6E:06:3F:06:3F:37:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gwu1GntTK-TUS6YErm4GPwY_N9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/RHAg68Q7EJfFPJuBYWbFNVaT8lA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/Gwu1GntTK-TUS6YErm4GPwY_N9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.196.0/22
IPv6:
2a0b:8580::/29
Signature Algorithm: sha256WithRSAEncryption
a0:cb:a9:f8:b0:f0:01:79:dd:de:c0:c2:88:2d:88:ef:b5:39:
a3:49:c6:f4:ab:da:12:c8:5f:da:4e:c5:8b:0c:ba:59:47:0c:
ff:77:08:bf:34:d5:c8:aa:a9:0b:db:ca:c2:92:2c:19:d3:a9:
87:dc:52:24:b1:bc:3f:7a:46:41:ef:58:aa:0b:67:d6:d2:8c:
06:6e:17:41:c7:b9:74:aa:c4:b9:e8:11:cf:bf:22:0b:9c:8d:
1d:56:21:ea:0c:cd:6d:fe:94:20:87:0a:60:4e:ad:15:de:69:
3e:97:0f:16:7b:8e:3f:e4:72:ef:e2:db:db:36:5b:ac:20:4a:
96:09:2a:32:79:75:a4:05:b3:39:82:37:a5:92:f0:60:dc:66:
51:dd:1c:cf:62:ca:0e:02:78:05:22:c1:0f:fa:6b:57:08:d1:
d5:f5:d2:f7:7b:e1:f3:a4:9e:b7:01:43:3e:93:19:c3:5a:a8:
03:cc:9e:04:df:42:e8:2c:a6:ef:85:e0:c5:97:a9:8d:e7:c2:
ba:ce:a6:9b:be:a3:a4:be:bc:ce:f3:43:a1:cd:b8:a2:36:81:
1f:04:86:cc:ac:dc:92:a4:a1:7b:4c:75:be:e8:e1:2f:5d:2e:
d3:56:8d:ca:9b:70:41:6a:99:e5:21:06:04:1f:ed:27:a9:c4:
bc:d6:43:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:30 2023 by rpki-client on console-ams.rpki-client.org