Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/NT0EHIZeOSrTK5rjbmojoBqSyc4.roa
File: NT0EHIZeOSrTK5rjbmojoBqSyc4.roa (raw, json)
Hash identifier: ilgC0CLgCu1CgmUdwuxa3OcyWJFcdxOFEVsyuUWj+fc=
Subject key identifier: 35:3D:04:1C:86:5E:39:2A:D3:2B:9A:E3:6E:6A:23:A0:1A:92:C9:CE
Certificate issuer: /CN=1a349707197c73e414bf642c6042c7bfad600e54
Certificate serial: 0AD0511C
Authority key identifier: 1A:34:97:07:19:7C:73:E4:14:BF:64:2C:60:42:C7:BF:AD:60:0E:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GjSXBxl8c-QUv2QsYELHv61gDlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/NT0EHIZeOSrTK5rjbmojoBqSyc4.roa
Signing time: Sat 01 Jan 2022 11:54:49 +0000
ROA not before: Sat 01 Jan 2022 11:54:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43402
IP address blocks: 185.185.92.0/22 maxlen: 24
2a0b:5080::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181424412 (0xad0511c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a349707197c73e414bf642c6042c7bfad600e54
Validity
Not Before: Jan 1 11:54:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=353d041c865e392ad32b9ae36e6a23a01a92c9ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:49:e3:12:05:7d:7e:9b:c4:61:b2:53:c0:87:
f6:ba:b9:51:e2:10:91:41:40:8f:98:6d:d9:00:6c:
60:db:63:fd:87:69:27:89:ad:9e:c6:c3:ce:4c:33:
26:82:10:1f:38:f4:72:70:64:4a:87:b1:bd:78:5e:
8d:66:fb:ea:3d:5e:6c:b8:a2:d2:6f:f8:e2:51:06:
e5:f8:1b:20:4a:bb:ed:b4:6b:2e:70:2a:c1:cc:7e:
72:a5:a4:81:10:0b:cc:a9:43:ba:c4:6c:98:b4:51:
4b:b6:11:3c:93:85:f5:5a:77:3e:6a:d9:b6:0d:98:
69:2e:24:ae:52:f8:74:19:e4:b8:c2:71:bb:ac:b7:
5b:a6:81:69:61:18:3e:11:29:08:8e:07:e9:99:53:
6a:fe:3c:cc:67:5f:9e:60:8a:71:6e:e6:2e:16:6a:
e3:0f:05:48:0c:df:f3:b3:29:89:bb:d1:e6:e6:91:
6f:64:71:4d:62:76:9f:54:7f:3a:fb:1b:f3:47:8c:
3b:6a:36:46:cb:5d:8d:0a:0a:36:eb:b7:67:c4:fc:
e4:00:e0:4b:28:fe:61:cc:ca:28:5d:0a:44:bb:79:
43:f9:bb:af:03:65:0f:1d:17:2f:43:04:60:7d:df:
11:d8:e8:56:6b:49:f1:99:d4:52:a8:fb:e1:27:d3:
f5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:3D:04:1C:86:5E:39:2A:D3:2B:9A:E3:6E:6A:23:A0:1A:92:C9:CE
X509v3 Authority Key Identifier:
keyid:1A:34:97:07:19:7C:73:E4:14:BF:64:2C:60:42:C7:BF:AD:60:0E:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GjSXBxl8c-QUv2QsYELHv61gDlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/NT0EHIZeOSrTK5rjbmojoBqSyc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/GjSXBxl8c-QUv2QsYELHv61gDlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.92.0/22
IPv6:
2a0b:5080::/29
Signature Algorithm: sha256WithRSAEncryption
81:07:3c:17:2d:b0:a1:47:07:ed:db:a5:f0:f5:60:3c:de:78:
15:9f:2d:95:b9:4c:b2:89:4e:49:29:5a:25:9e:08:b5:88:27:
ed:14:76:79:8e:57:7f:a1:6f:bf:44:f0:0a:c7:95:56:91:02:
ea:f5:f1:18:51:87:5d:ec:c9:89:f9:12:04:81:f1:66:5d:fd:
a5:a5:08:95:55:15:f9:88:0d:ad:2c:b5:7f:b1:27:ba:97:6b:
1b:76:5f:de:8f:45:86:95:2b:62:c5:3d:95:d5:b1:28:cb:11:
f3:ef:78:85:8c:e2:0c:6a:2e:6d:90:71:d4:64:36:0c:27:67:
fb:75:38:c6:bb:ac:62:ed:b5:8c:f4:0f:03:03:d0:3f:62:cf:
1b:50:ee:be:5a:08:0a:c0:c2:d9:3c:0d:b0:93:fe:29:bb:42:
eb:f4:bb:83:43:c0:a6:54:77:c3:9c:38:bc:68:73:c7:d9:d2:
e0:ba:8b:b4:2b:6c:c0:07:b4:30:08:0a:8f:e6:91:26:fe:63:
62:59:6d:4a:15:1c:39:01:d1:d6:6d:24:fb:23:61:8f:e6:fd:
32:ca:02:73:59:61:78:14:08:03:24:25:de:a9:36:43:b4:75:
77:ed:af:49:d6:5c:15:72:5c:38:89:40:f6:55:e5:f1:5b:e7:
8b:87:b7:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:59 2023 by rpki-client on console-fra.rpki-client.org