Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/48a8ba-dc61-42bd-943a-c31fa71e2635/1/6UO4jNvMORlBuqQdClxLj4YH_hM.roa
File: 6UO4jNvMORlBuqQdClxLj4YH_hM.roa (raw, json)
Hash identifier: LmO1jud8HjEei2sUV7ONfjr5cBJO+nLd2xfB6zmKVgU=
Subject key identifier: E9:43:B8:8C:DB:CC:39:19:41:BA:A4:1D:0A:5C:4B:8F:86:07:FE:13
Certificate issuer: /CN=e695cfb36fe5a1f384cc778ae299acab81c27bfa
Certificate serial: 1AFA078D
Authority key identifier: E6:95:CF:B3:6F:E5:A1:F3:84:CC:77:8A:E2:99:AC:AB:81:C2:7B:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5pXPs2_lofOEzHeK4pmsq4HCe_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/48a8ba-dc61-42bd-943a-c31fa71e2635/1/6UO4jNvMORlBuqQdClxLj4YH_hM.roa
Signing time: Sat 01 Jan 2022 13:03:39 +0000
ROA not before: Sat 01 Jan 2022 13:03:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60237
IP address blocks: 185.34.44.0/22 maxlen: 22
2a00:d5e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452593549 (0x1afa078d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e695cfb36fe5a1f384cc778ae299acab81c27bfa
Validity
Not Before: Jan 1 13:03:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e943b88cdbcc391941baa41d0a5c4b8f8607fe13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:38:ad:88:35:82:4e:94:e1:6e:f8:58:6a:56:
4c:91:69:c0:a5:5a:ab:8d:2f:ae:b2:26:66:a0:81:
13:20:93:80:00:a6:a0:da:68:b3:cf:f2:53:33:40:
2a:48:29:9f:4d:a2:a3:33:15:21:47:d2:59:7b:ca:
a7:4c:2d:9b:53:b5:76:87:a5:cc:09:3c:8c:13:0d:
ae:e1:09:49:82:24:6b:82:14:90:65:a2:f6:24:1b:
09:18:59:df:94:b3:92:09:46:f8:1a:04:89:fc:73:
37:aa:d9:68:2a:d2:17:d1:50:d3:5d:01:16:34:81:
f8:48:3a:ee:87:10:2e:5d:21:e4:f6:de:a1:8f:68:
c0:2a:da:b7:2c:0f:15:bf:42:0c:ad:42:b4:e2:9d:
69:5e:35:76:1c:06:c5:2e:b4:c3:5a:60:4a:0d:98:
82:fb:23:46:80:a4:24:06:65:33:55:4a:36:49:06:
45:f7:de:c3:b4:50:9e:2f:f0:d5:dd:62:2f:58:36:
08:9f:b6:12:4d:92:9d:61:be:05:40:84:a7:18:ab:
ac:12:3b:41:12:0d:c3:6e:ad:d5:29:a5:cd:0a:ae:
29:67:a5:59:a8:94:c2:bc:14:59:05:de:6a:0c:4f:
3b:29:71:e3:40:3c:25:48:de:0d:51:e1:2c:fb:2b:
44:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:43:B8:8C:DB:CC:39:19:41:BA:A4:1D:0A:5C:4B:8F:86:07:FE:13
X509v3 Authority Key Identifier:
keyid:E6:95:CF:B3:6F:E5:A1:F3:84:CC:77:8A:E2:99:AC:AB:81:C2:7B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5pXPs2_lofOEzHeK4pmsq4HCe_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/48a8ba-dc61-42bd-943a-c31fa71e2635/1/6UO4jNvMORlBuqQdClxLj4YH_hM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/48a8ba-dc61-42bd-943a-c31fa71e2635/1/5pXPs2_lofOEzHeK4pmsq4HCe_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.44.0/22
IPv6:
2a00:d5e0::/32
Signature Algorithm: sha256WithRSAEncryption
a0:d5:33:3f:24:63:72:36:2a:a6:7f:f0:fa:86:be:e4:fb:23:
d5:e6:01:a5:f8:ff:57:46:63:8f:4e:9c:1b:f8:81:4b:68:ff:
e7:9f:61:b0:0e:de:da:53:d9:d1:53:2e:b6:66:29:13:47:01:
d7:1b:ff:b6:23:0a:26:c9:11:36:18:d7:24:09:3a:9b:62:53:
a2:4d:8d:7a:7c:f3:b9:4a:a0:72:0d:c8:41:12:f8:ae:37:2a:
2e:c6:d3:04:22:83:1f:7e:e2:08:79:e1:6c:81:f9:b3:73:00:
24:53:2e:de:fb:d1:cc:f9:e9:18:b6:cf:0e:39:44:cb:55:5e:
4e:a4:35:80:8d:d4:f9:e2:58:f6:14:8a:97:44:9f:6b:ae:5c:
3a:a4:e8:09:dc:3b:de:6e:8d:4a:74:9f:98:86:96:27:e0:0b:
1d:81:2f:dc:d1:0c:db:8a:07:e4:d3:76:a3:02:45:76:bc:e1:
c8:91:70:57:f4:d4:21:1c:bb:f2:03:9e:8a:ed:08:8b:35:9a:
da:10:0c:2b:07:7f:d1:e8:4f:24:42:b8:9c:68:04:c1:ab:a5:
ae:6e:84:a0:33:75:73:24:fb:1c:33:94:d0:47:45:f2:bb:d2:
3d:a7:65:ce:9a:42:3e:36:fd:50:fc:50:1e:f4:4d:22:80:c5:
07:a5:38:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:06 2023 by rpki-client on console-fra.rpki-client.org