Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/595db6-8920-4231-ad01-3534c8c5a351/1/lIy9cTSQu4r4uhxblFr4dolz5UI.roa
File: lIy9cTSQu4r4uhxblFr4dolz5UI.roa (raw, json)
Hash identifier: F4Z5TaUrSK8kZId753y8PcbG7KYTWp4HJQ3XZmHReiM=
Subject key identifier: 94:8C:BD:71:34:90:BB:8A:F8:BA:1C:5B:94:5A:F8:76:89:73:E5:42
Certificate issuer: /CN=20e114a8fec3f53cbe9cbf6d6a0be0089e30c757
Certificate serial: 0C8ED414
Authority key identifier: 20:E1:14:A8:FE:C3:F5:3C:BE:9C:BF:6D:6A:0B:E0:08:9E:30:C7:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOEUqP7D9Ty-nL9tagvgCJ4wx1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/595db6-8920-4231-ad01-3534c8c5a351/1/lIy9cTSQu4r4uhxblFr4dolz5UI.roa
Signing time: Sat 01 Jan 2022 08:02:40 +0000
ROA not before: Sat 01 Jan 2022 08:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61984
IP address blocks: 185.51.176.0/22 maxlen: 22
2a01:b0e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210686996 (0xc8ed414)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e114a8fec3f53cbe9cbf6d6a0be0089e30c757
Validity
Not Before: Jan 1 08:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=948cbd713490bb8af8ba1c5b945af8768973e542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:90:58:7e:41:5c:ad:46:ee:94:fc:52:5c:49:
cd:f8:c1:65:9e:22:6d:3b:bf:e1:5c:e7:08:ef:4c:
86:94:2e:d8:c2:ff:eb:2c:6c:8e:f1:b0:c3:ad:1f:
fb:0f:96:9a:23:c1:53:62:0a:cf:6b:44:3b:2d:80:
b7:fa:ee:11:88:4b:61:24:d9:18:46:5d:21:05:d1:
9a:31:a5:41:c7:94:58:dc:77:0e:ab:95:3c:d3:6e:
f2:a4:9b:63:8b:98:c8:3e:ee:4c:21:d5:a5:cc:6b:
9d:46:ed:8f:4e:9c:c9:b0:15:36:f6:52:71:55:b9:
35:9d:8a:3f:b5:67:a3:33:c7:ce:eb:f7:9a:c5:f5:
12:b9:a1:df:99:d7:1a:54:a6:7f:7f:c8:85:90:02:
47:eb:84:ce:75:71:93:e7:01:bb:30:f3:54:2f:2e:
8f:a5:c0:be:30:9b:64:e8:cf:b4:0b:49:68:6e:38:
9c:b6:4d:e7:87:e8:56:3d:b4:49:92:6d:c0:f0:61:
c9:24:7b:c5:1b:23:ce:b3:0a:d0:95:d8:29:fe:58:
01:3f:e7:17:cd:3b:84:82:19:77:64:1e:a6:42:5b:
d7:14:69:ff:5a:31:f7:ed:05:ec:7a:3d:1a:92:82:
81:83:dc:21:04:7e:31:de:70:8c:7f:e8:c8:58:0e:
10:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:8C:BD:71:34:90:BB:8A:F8:BA:1C:5B:94:5A:F8:76:89:73:E5:42
X509v3 Authority Key Identifier:
keyid:20:E1:14:A8:FE:C3:F5:3C:BE:9C:BF:6D:6A:0B:E0:08:9E:30:C7:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOEUqP7D9Ty-nL9tagvgCJ4wx1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/595db6-8920-4231-ad01-3534c8c5a351/1/lIy9cTSQu4r4uhxblFr4dolz5UI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/595db6-8920-4231-ad01-3534c8c5a351/1/IOEUqP7D9Ty-nL9tagvgCJ4wx1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.176.0/22
IPv6:
2a01:b0e0::/32
Signature Algorithm: sha256WithRSAEncryption
62:0e:fe:25:54:c5:49:dd:f8:94:eb:52:bf:e2:43:10:97:80:
b8:fa:ea:1f:87:f3:09:e0:44:9e:21:3e:31:59:c5:83:01:45:
3b:cc:15:22:3e:34:e3:c8:32:2e:3d:ca:86:96:70:ed:c9:2a:
33:30:40:17:d9:de:c2:83:b2:2a:89:40:cc:14:17:77:d8:22:
da:43:ec:d2:72:a3:c9:00:60:bd:0a:23:96:02:13:40:f7:50:
99:e4:ae:f5:b9:ed:a3:73:16:9a:b3:07:52:89:27:d3:b2:aa:
d0:02:84:8f:55:de:1c:97:99:1b:b8:56:8a:7f:5a:1c:62:a3:
f4:99:c1:ae:ac:43:2f:18:b5:5e:a1:f0:a3:f9:a1:f5:47:5a:
f2:d6:65:78:5c:87:1e:18:c9:b5:ce:b4:a0:f6:fd:12:29:0d:
5d:8e:9c:f7:7e:4d:05:0f:76:2e:12:bf:dc:2e:23:5c:4f:ae:
21:a8:2e:83:ea:0b:fd:af:b0:68:2a:ef:b6:c2:61:7f:93:05:
74:78:60:f8:aa:88:e4:5f:10:4d:60:5c:67:02:69:8f:eb:f0:
df:88:40:f2:3f:e2:07:dc:bc:c7:73:90:44:ca:0a:23:92:58:
98:02:df:f4:45:77:5a:41:34:13:42:37:d3:9c:a5:ab:ea:08:
08:58:ed:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:58 2024 by rpki-client on console-fra.rpki-client.org