Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/28bd13-8a3b-4550-9700-f0f93cca2479/1/XnQZFzRkY1FRHWBAKz1KW6UKjG0.roa
File: XnQZFzRkY1FRHWBAKz1KW6UKjG0.roa (raw, json)
Hash identifier: mbOAW74gQ06D8EcBr9xpOLFgAdUpotSY40pX6sJLqHg=
Subject key identifier: 5E:74:19:17:34:64:63:51:51:1D:60:40:2B:3D:4A:5B:A5:0A:8C:6D
Certificate issuer: /CN=f4f430d0805f42ffa3bcd0c0b7c550805117923a
Certificate serial: 05990E4B
Authority key identifier: F4:F4:30:D0:80:5F:42:FF:A3:BC:D0:C0:B7:C5:50:80:51:17:92:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9PQw0IBfQv-jvNDAt8VQgFEXkjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/28bd13-8a3b-4550-9700-f0f93cca2479/1/XnQZFzRkY1FRHWBAKz1KW6UKjG0.roa
Signing time: Sat 01 Jan 2022 11:03:39 +0000
ROA not before: Sat 01 Jan 2022 11:03:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200480
IP address blocks: 185.105.240.0/22 maxlen: 22
2a06:38c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93916747 (0x5990e4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4f430d0805f42ffa3bcd0c0b7c550805117923a
Validity
Not Before: Jan 1 11:03:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e74191734646351511d60402b3d4a5ba50a8c6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:8b:fe:b7:35:47:64:37:29:90:b7:df:ff:33:
9b:76:9e:69:8a:c8:ee:13:8a:6b:b3:ea:11:d2:43:
01:ad:bf:61:32:fc:ae:49:15:c8:79:4b:b3:c4:4e:
09:21:c9:d4:93:5f:c5:6e:b6:1e:4e:8d:6e:5f:19:
9a:b3:b6:d1:13:43:f4:83:71:27:12:ed:69:31:06:
1f:35:3b:72:98:65:a5:d8:ed:c4:41:62:2d:ac:9e:
c1:cc:17:55:7b:ca:f6:8b:49:c9:9e:dc:fd:26:f2:
d3:33:5a:83:e8:ae:fb:de:8f:74:c1:ba:9d:0c:ed:
a7:32:f5:68:72:d7:7c:ee:a8:1c:54:4d:64:7a:f9:
58:6d:e5:e1:b2:af:e9:a6:e2:28:00:1a:43:11:71:
7b:69:a5:63:04:23:ed:6e:83:91:98:45:76:bd:58:
01:21:98:49:6b:83:46:2b:46:53:b2:23:ff:c1:7d:
5c:9b:94:ef:68:9d:8e:81:a4:14:6c:a7:a3:b6:7b:
43:89:72:09:c9:02:97:40:e3:5f:3d:a3:54:b7:94:
da:15:46:86:33:97:9f:52:96:8e:bb:45:7f:f9:89:
c7:7e:d3:79:49:31:84:b0:29:88:1b:74:55:ed:60:
cb:21:73:84:61:99:ea:d0:ef:ec:60:69:ab:2c:bf:
48:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:74:19:17:34:64:63:51:51:1D:60:40:2B:3D:4A:5B:A5:0A:8C:6D
X509v3 Authority Key Identifier:
keyid:F4:F4:30:D0:80:5F:42:FF:A3:BC:D0:C0:B7:C5:50:80:51:17:92:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9PQw0IBfQv-jvNDAt8VQgFEXkjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/28bd13-8a3b-4550-9700-f0f93cca2479/1/XnQZFzRkY1FRHWBAKz1KW6UKjG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/28bd13-8a3b-4550-9700-f0f93cca2479/1/9PQw0IBfQv-jvNDAt8VQgFEXkjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.240.0/22
IPv6:
2a06:38c0::/29
Signature Algorithm: sha256WithRSAEncryption
56:c8:2d:70:f5:2f:c2:66:cc:15:e4:56:0e:f5:e3:4d:a1:d6:
56:fc:6f:32:d7:f6:31:6b:09:4b:f5:41:64:a2:94:22:0b:c6:
91:a7:1a:81:46:8f:3b:3a:fb:9f:6b:12:6c:15:a0:77:75:97:
3b:86:f3:1d:c9:19:31:22:67:22:bb:77:e2:51:47:1c:6c:ee:
a9:99:6a:c8:3c:30:60:27:d9:0f:0b:20:b5:b2:fd:49:1d:35:
be:86:0a:3b:fb:76:b3:d6:dc:d2:ee:a7:75:30:16:b0:80:44:
7e:ab:0f:d6:65:d7:a8:51:ae:8c:4e:cf:77:90:8c:b7:d1:6c:
d4:15:a0:ff:9d:37:c2:0c:68:70:47:18:12:59:78:31:80:1c:
5e:87:81:88:76:8d:87:54:28:bf:54:9e:cd:d9:18:81:d8:62:
d3:3c:2d:3b:63:01:c0:1d:3c:5f:0d:c0:cd:c2:b6:6f:6a:93:
ad:b7:af:10:be:68:75:b5:c8:cb:e8:f5:4b:b4:10:1e:64:ba:
46:6e:16:95:7d:d9:fb:35:1d:0d:8f:b0:77:4b:46:c6:9a:df:
ec:14:5a:bd:e7:b6:07:e5:6e:59:2c:3f:d3:40:dc:3f:ea:f6:
cf:11:13:bc:e1:97:db:b4:63:6c:0f:ee:a3:03:57:72:60:7e:
3d:b0:a6:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:35 2023 by rpki-client on console-ams.rpki-client.org