Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/2emKot92TaCFgUZ2hMPIdpdr8Tg.roa
File: 2emKot92TaCFgUZ2hMPIdpdr8Tg.roa (raw, json)
Hash identifier: GjMEDPH/jGBexqNbxCJ3Koi2uut68TBgn408qngWbf8=
Subject key identifier: D9:E9:8A:A2:DF:76:4D:A0:85:81:46:76:84:C3:C8:76:97:6B:F1:38
Certificate issuer: /CN=4acfac8645a3c6f10042dc4a74d700d9d06af17a
Certificate serial: 0372E0BE
Authority key identifier: 4A:CF:AC:86:45:A3:C6:F1:00:42:DC:4A:74:D7:00:D9:D0:6A:F1:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ss-shkWjxvEAQtxKdNcA2dBq8Xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/2emKot92TaCFgUZ2hMPIdpdr8Tg.roa
Signing time: Sat 01 Jan 2022 14:05:28 +0000
ROA not before: Sat 01 Jan 2022 14:05:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211680
IP address blocks: 185.180.143.0/24 maxlen: 24
2a10:3c0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57860286 (0x372e0be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4acfac8645a3c6f10042dc4a74d700d9d06af17a
Validity
Not Before: Jan 1 14:05:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9e98aa2df764da08581467684c3c876976bf138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:61:28:91:0e:2f:bc:6c:6a:3e:55:f7:c5:87:
02:53:f9:e0:da:91:ea:8f:b9:cc:7f:30:92:17:e2:
d9:5c:20:d9:c0:d4:4e:e1:3b:07:a9:e1:8e:1b:3b:
8a:f5:5c:84:40:8a:06:d1:d0:2b:0b:0e:03:9c:59:
d0:a4:c6:63:ea:20:72:fa:f2:14:44:b2:57:e8:0d:
a7:83:94:56:41:1f:67:55:fb:24:54:96:15:20:48:
6b:5e:43:ba:5a:8a:3f:84:e5:ee:93:70:84:5b:db:
a9:dd:75:9e:b8:d4:18:a0:17:e7:23:96:18:14:1b:
6d:ca:1e:0c:b7:c8:b1:9d:bf:52:39:c1:33:7a:8d:
d0:5e:d3:b5:63:84:8b:0b:63:15:a8:dc:f7:82:22:
bf:f0:6b:61:b2:ed:07:de:38:26:ac:45:7f:0e:35:
45:ed:83:76:18:b5:aa:75:fb:8a:1c:7c:93:05:73:
1b:b8:12:13:1b:3e:5e:06:64:8e:6b:47:7b:e3:2a:
63:dd:63:0a:73:eb:a3:25:72:d2:c0:09:43:6a:c8:
f6:f8:81:b1:ad:28:ea:0b:cf:b3:e3:87:4b:9f:ee:
a6:b7:96:c7:68:8f:2f:f1:45:19:c8:41:d5:0f:28:
a3:3f:de:c7:9b:c8:e4:6a:2f:52:e0:6f:66:d3:5e:
d7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E9:8A:A2:DF:76:4D:A0:85:81:46:76:84:C3:C8:76:97:6B:F1:38
X509v3 Authority Key Identifier:
keyid:4A:CF:AC:86:45:A3:C6:F1:00:42:DC:4A:74:D7:00:D9:D0:6A:F1:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ss-shkWjxvEAQtxKdNcA2dBq8Xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/2emKot92TaCFgUZ2hMPIdpdr8Tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/Ss-shkWjxvEAQtxKdNcA2dBq8Xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.143.0/24
IPv6:
2a10:3c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
62:e5:7e:ac:99:11:99:ab:29:a3:c4:23:f4:7a:8c:21:a8:c5:
46:2c:21:5d:1d:dc:5a:aa:33:24:db:85:6a:bd:0c:62:dd:21:
a4:0d:3d:9b:04:cf:bb:23:62:11:7c:e8:f8:06:29:28:1c:d6:
e2:fc:8a:39:c4:28:bf:a4:2e:80:cd:fb:ad:02:ff:91:70:d7:
aa:0f:5c:94:cf:5d:72:3f:65:95:54:e2:6e:f2:86:fa:89:2e:
c8:83:f9:03:26:54:c3:f2:2a:8f:f3:fb:fa:82:ab:5f:36:49:
61:ba:bc:a2:1d:69:c9:80:05:b2:41:e7:9f:3e:ee:27:12:d5:
7d:a6:95:c6:0a:f3:74:0a:91:e5:ca:a1:53:98:88:27:9b:15:
0d:f1:97:86:11:86:1c:a3:85:0e:18:6c:41:71:62:a9:85:26:
3c:b4:57:20:4f:43:ab:d7:8f:dd:c1:da:4a:5e:d3:0a:45:de:
d2:cc:d0:93:58:2d:51:4c:04:95:a8:81:38:4c:28:fa:72:5f:
0c:8a:7f:96:8c:e0:f8:fa:69:b9:79:65:93:aa:cd:e7:a2:79:
e3:49:3e:28:3a:5b:6a:15:f9:73:b1:53:33:ed:b9:e0:32:b3:
b5:96:cb:49:24:53:9a:e3:b6:88:18:8b:fa:05:ca:1f:9b:6f:
14:79:29:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:56 2023 by rpki-client on console-ams.rpki-client.org