Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/49d050-dace-45ec-8139-9e71f6a84801/1/A1py8KZ84NduD0Jr8LdYcLJkg_M.roa
File: A1py8KZ84NduD0Jr8LdYcLJkg_M.roa (raw, json)
Hash identifier: kRy6kNqz98luk5djInlOTPGqiXBVe8Zb1I6qG8zLt8c=
Subject key identifier: 03:5A:72:F0:A6:7C:E0:D7:6E:0F:42:6B:F0:B7:58:70:B2:64:83:F3
Certificate issuer: /CN=c04ede1e7bf67199e7ab6f5ed0049e9608317362
Certificate serial: 0183C18FAA20F7E4BDC7A555F6B24A0712A3
Authority key identifier: C0:4E:DE:1E:7B:F6:71:99:E7:AB:6F:5E:D0:04:9E:96:08:31:73:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE7eHnv2cZnnq29e0ASelggxc2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/49d050-dace-45ec-8139-9e71f6a84801/1/A1py8KZ84NduD0Jr8LdYcLJkg_M.roa
Signing time: Mon 10 Oct 2022 11:02:41 +0000
ROA not before: Mon 10 Oct 2022 11:02:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51188
IP address blocks: 185.166.28.0/22 maxlen: 24
193.28.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c1:8f:aa:20:f7:e4:bd:c7:a5:55:f6:b2:4a:07:12:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04ede1e7bf67199e7ab6f5ed0049e9608317362
Validity
Not Before: Oct 10 11:02:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=035a72f0a67ce0d76e0f426bf0b75870b26483f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:15:fc:67:0b:4c:a5:e7:f5:bc:62:9e:c1:71:
38:4d:2d:44:31:e6:57:f4:ed:6b:b5:2b:8a:45:05:
a6:28:52:b8:59:53:47:f4:26:46:76:fb:d1:3d:1d:
26:85:7e:4f:57:3a:e9:16:0a:f0:e0:34:27:02:9d:
2f:86:20:18:4c:90:59:0d:7d:f2:6f:2b:5e:39:b6:
4e:5c:53:ca:d3:bf:ba:93:b8:8c:02:56:1f:11:5a:
d4:a8:0f:7a:bf:f0:3f:61:2c:fd:11:c5:84:ee:58:
d9:1d:ad:bf:1b:6d:6a:41:c0:1b:2a:97:50:6b:c0:
22:74:26:bf:83:06:e4:82:5d:1c:ea:ca:ec:fb:7a:
b8:7a:8d:4d:cd:23:52:90:ee:4f:46:e2:da:e1:56:
bf:06:b4:66:7f:16:7b:21:62:3e:d5:23:11:7b:fd:
94:7a:12:18:83:fb:7c:92:6e:e6:13:01:6b:5a:c2:
1a:e0:3b:76:dd:cd:5f:b5:81:69:2c:83:48:3c:46:
52:e0:59:e3:20:7c:a2:bc:94:44:28:2c:6f:47:59:
f1:89:1c:82:32:85:85:9c:19:f6:98:8c:d3:3c:56:
60:7b:9f:2a:ab:5d:f5:25:fe:5d:b1:7f:9e:70:a1:
d8:42:84:16:d4:02:f3:ce:33:cc:01:88:6f:7b:15:
51:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:5A:72:F0:A6:7C:E0:D7:6E:0F:42:6B:F0:B7:58:70:B2:64:83:F3
X509v3 Authority Key Identifier:
keyid:C0:4E:DE:1E:7B:F6:71:99:E7:AB:6F:5E:D0:04:9E:96:08:31:73:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE7eHnv2cZnnq29e0ASelggxc2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/49d050-dace-45ec-8139-9e71f6a84801/1/A1py8KZ84NduD0Jr8LdYcLJkg_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/49d050-dace-45ec-8139-9e71f6a84801/1/wE7eHnv2cZnnq29e0ASelggxc2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.28.0/22
193.28.203.0/24
Signature Algorithm: sha256WithRSAEncryption
48:f2:37:10:32:4e:0b:43:2b:9d:e2:17:49:1b:e4:14:ae:e6:
a9:95:f2:c2:e2:e0:8d:66:9c:ef:c2:d3:02:65:d9:73:12:93:
fe:5e:41:0c:ef:4e:b9:93:38:92:18:2f:46:04:35:a5:12:d8:
6c:4d:3b:ea:11:9a:bb:99:fe:03:78:c3:06:f5:b8:e0:90:9e:
81:89:16:31:6b:48:ee:a0:9e:bc:78:71:ee:5c:3a:b5:14:06:
5a:a2:e2:fe:dd:09:dc:6b:2f:db:9a:36:12:b4:5f:31:80:52:
55:53:5a:e5:38:aa:1d:20:4d:02:9d:bd:0a:f6:f2:46:d2:b1:
e5:84:5c:85:e6:95:c1:d8:16:48:94:8e:ac:ea:58:30:96:5c:
8e:b2:38:4b:0b:d8:62:16:89:79:86:81:87:dc:b0:1e:7e:91:
be:63:ea:b1:c5:c7:59:48:46:01:2b:25:5d:a4:6c:17:87:9e:
35:41:c7:d7:ff:02:d4:c5:11:c4:00:81:03:68:50:0a:71:83:
23:db:0b:7c:4a:11:e9:3b:87:78:04:fb:93:d4:21:29:f8:0b:
9e:e9:c1:0b:aa:17:16:5c:35:88:99:3b:c2:87:44:c7:76:31:
2f:ab:d3:b9:ae:7f:4f:0f:66:ce:0c:ca:a1:a7:0d:b5:a9:ab:
4d:b4:85:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-ams.rpki-client.org