Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/860a5e-e0d0-44f5-9c54-3cc4ff9aa1bc/1/wm5fYy8YtDrJSwwh9YLShx8H7p0.roa
File: wm5fYy8YtDrJSwwh9YLShx8H7p0.roa (raw, json)
Hash identifier: Zg7EzmkizWBPp7log7NOMz+p0TSMioKAyQSTBKs4wyA=
Subject key identifier: C2:6E:5F:63:2F:18:B4:3A:C9:4B:0C:21:F5:82:D2:87:1F:07:EE:9D
Certificate issuer: /CN=638c509cb77b0149b6f66f5019f858b3acf942e9
Certificate serial: 28AD728C
Authority key identifier: 63:8C:50:9C:B7:7B:01:49:B6:F6:6F:50:19:F8:58:B3:AC:F9:42:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y4xQnLd7AUm29m9QGfhYs6z5Quk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/860a5e-e0d0-44f5-9c54-3cc4ff9aa1bc/1/wm5fYy8YtDrJSwwh9YLShx8H7p0.roa
Signing time: Sat 01 Jan 2022 13:07:35 +0000
ROA not before: Sat 01 Jan 2022 13:07:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29562
IP address blocks: 185.2.142.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 682455692 (0x28ad728c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638c509cb77b0149b6f66f5019f858b3acf942e9
Validity
Not Before: Jan 1 13:07:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c26e5f632f18b43ac94b0c21f582d2871f07ee9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:19:6a:fd:5d:72:45:be:2e:a1:55:4a:56:fd:
8c:71:a3:a4:2e:09:6c:c9:bc:a9:6c:8f:43:db:80:
9b:dd:ea:de:c6:c4:e5:ac:e6:7b:ed:76:8b:8a:e8:
26:6d:8e:78:13:67:5b:0f:09:b6:87:32:c5:29:27:
7a:dc:37:41:cb:9b:5d:ca:2a:4c:04:d5:4c:e8:43:
80:86:14:e2:32:55:62:a4:b4:df:c8:94:52:7e:33:
b6:09:54:a6:e8:f7:58:5e:79:95:13:bc:34:27:95:
54:e9:ff:7b:a0:16:73:b3:69:4f:e3:f9:82:50:ff:
b6:e2:f2:9e:8a:89:a9:20:94:b8:9f:21:f8:f2:05:
d3:7f:b1:a4:36:28:48:b2:9d:e4:ca:7c:ff:3a:b0:
83:8d:89:e2:7b:ce:f2:e6:61:a0:f1:bd:eb:6f:6c:
a9:c5:75:eb:02:c7:65:f9:c1:61:e2:7b:8e:92:8c:
75:5f:57:a9:ef:4a:53:dc:62:a0:b9:fb:18:94:85:
05:94:93:23:8d:50:73:f3:5d:f4:0a:9d:60:c3:5d:
ed:4e:db:ba:8f:6c:82:51:5f:96:b5:51:07:1b:3a:
24:45:19:ae:64:2c:f7:2a:fc:d4:53:05:68:de:62:
c9:aa:06:62:2c:6a:09:41:db:b1:bb:1d:4b:07:70:
70:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:6E:5F:63:2F:18:B4:3A:C9:4B:0C:21:F5:82:D2:87:1F:07:EE:9D
X509v3 Authority Key Identifier:
keyid:63:8C:50:9C:B7:7B:01:49:B6:F6:6F:50:19:F8:58:B3:AC:F9:42:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y4xQnLd7AUm29m9QGfhYs6z5Quk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/860a5e-e0d0-44f5-9c54-3cc4ff9aa1bc/1/wm5fYy8YtDrJSwwh9YLShx8H7p0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/860a5e-e0d0-44f5-9c54-3cc4ff9aa1bc/1/Y4xQnLd7AUm29m9QGfhYs6z5Quk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.142.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:37:c8:35:a8:da:d4:00:fc:1d:08:1a:92:a1:60:e2:c3:8e:
86:51:ad:51:7a:f4:59:d1:e8:cd:c1:e8:fc:f0:69:3f:f1:4f:
5b:b9:90:f8:40:f7:63:95:ab:f9:4c:e4:54:07:29:d7:8d:07:
12:51:0a:3a:89:44:74:75:95:16:8f:ad:cf:3b:db:39:2f:78:
83:58:74:bb:9b:ca:c1:d8:e0:e0:33:44:54:fd:e0:57:cf:7d:
c7:a9:58:a9:bf:99:bd:be:1f:b6:cc:0e:4c:3e:14:04:8c:8e:
5b:7a:8a:21:71:b9:16:29:44:07:90:fb:16:5a:84:43:b0:0c:
84:fd:b6:71:d1:d2:7c:25:d0:8e:24:cc:c6:ec:2e:2d:e8:29:
9b:96:fc:08:76:3b:44:dd:9b:2f:fa:10:73:32:8b:c2:8c:ee:
14:90:b3:62:b7:84:3c:81:24:96:da:2e:00:08:aa:89:b0:ca:
cf:c4:63:3a:50:a6:39:48:1f:5f:34:7d:91:61:2c:cc:64:db:
7e:8f:4c:e1:0b:48:e0:6f:b2:30:7f:d5:ca:77:4f:a6:08:ed:
0a:5e:36:4b:6d:e2:24:f2:1a:0e:2b:95:6f:11:85:c2:e1:0c:
52:31:4b:12:fd:7a:65:7b:70:21:d0:68:a3:dd:e1:e3:be:b7:
d8:4f:2e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:36 2023 by rpki-client on console-ams.rpki-client.org