Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/4utGilDuxYGF6DR5Gssjh5ogFPQ.roa
File: 4utGilDuxYGF6DR5Gssjh5ogFPQ.roa (raw, json)
Hash identifier: Kw1cIAr0kr5U1pRlT2iw6yZpuloswNxSwzuDbhBX49s=
Subject key identifier: E2:EB:46:8A:50:EE:C5:81:85:E8:34:79:1A:CB:23:87:9A:20:14:F4
Certificate issuer: /CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Certificate serial: 0319C93D
Authority key identifier: A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/4utGilDuxYGF6DR5Gssjh5ogFPQ.roa
Signing time: Mon 09 May 2022 11:42:53 +0000
ROA not before: Mon 09 May 2022 11:42:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209768
IP address blocks: 185.228.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52021565 (0x319c93d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Validity
Not Before: May 9 11:42:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2eb468a50eec58185e834791acb23879a2014f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f4:d7:87:7d:40:f4:fd:1a:45:89:60:14:cb:
3b:79:58:aa:28:97:5f:58:24:1d:60:9d:6f:e5:49:
c4:50:9d:6e:08:1d:bc:46:8f:8a:76:ed:4b:5f:55:
45:57:32:c3:8d:19:dc:25:1a:1b:f6:21:1e:f0:1a:
c8:63:5f:dd:04:f7:07:f0:3e:03:b1:06:a0:4e:28:
47:99:94:74:3a:42:c4:8d:a7:9a:bf:bf:8c:e0:92:
72:30:52:db:15:b3:5f:4d:10:3e:3c:93:1c:69:16:
80:6c:3f:c2:5c:0c:1d:72:91:c5:bf:f3:6b:86:51:
22:c3:fe:4b:8a:00:3a:01:7c:b5:af:8e:5e:c0:9d:
51:d2:3d:eb:19:25:8a:1b:63:38:df:68:d3:2d:d2:
c6:24:19:7a:3e:1b:53:7c:7c:2f:7a:99:3c:3e:14:
49:1f:58:36:69:01:20:6f:3f:f0:d1:62:85:88:2b:
6a:3c:44:7d:29:3d:d7:62:3f:c6:9e:c3:d2:dd:1e:
48:38:74:9b:4f:02:89:d2:1d:9f:df:c0:72:51:74:
1b:76:09:21:f3:a9:41:8a:7c:ca:1e:95:3f:5d:dd:
ac:80:d1:78:ab:75:30:e2:58:2c:57:9c:3d:b2:4b:
a8:3f:f1:b6:c8:63:d3:22:c5:f4:4d:a3:44:b7:4e:
39:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:EB:46:8A:50:EE:C5:81:85:E8:34:79:1A:CB:23:87:9A:20:14:F4
X509v3 Authority Key Identifier:
keyid:A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/4utGilDuxYGF6DR5Gssjh5ogFPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/pcY3PqsZz0PdL0MRE5g4PuK60DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.1.0/24
Signature Algorithm: sha256WithRSAEncryption
82:85:1f:85:46:56:74:12:e4:06:ed:1b:d6:66:04:7e:c5:2d:
fc:cd:d1:7c:9d:55:25:3b:85:40:c6:d9:5b:f1:9b:26:81:b2:
ab:2d:1d:20:66:3e:ae:c5:e2:e8:70:90:e4:99:b2:8b:d5:3c:
a0:21:40:34:0b:e9:8e:92:bd:d7:73:66:34:4a:59:7a:ec:c5:
a0:e0:ad:38:26:5d:5f:8f:6d:91:e5:72:82:1a:94:a9:71:77:
e9:82:5f:5f:fd:4b:20:97:af:20:84:33:f3:e6:bf:1f:02:df:
2f:8b:a9:89:4e:2f:a9:00:0a:39:86:44:f1:f5:bc:b0:da:a5:
92:b8:ea:af:7f:d4:c8:fb:08:b4:f7:ba:f2:a9:b4:cd:70:2a:
37:dd:48:87:57:28:11:2a:0b:40:ce:e9:1c:ad:22:70:86:40:
bc:df:50:f0:61:ff:e7:85:68:f6:b4:b6:09:52:4a:ba:2c:bc:
38:ac:fa:cd:c2:93:f5:5f:3a:4a:d8:26:9b:b3:e8:1b:ca:10:
78:19:cb:7c:4a:9c:53:fb:27:52:83:e3:9d:61:50:0a:e7:92:
72:c6:39:5f:7f:a4:61:5c:81:67:f1:d3:d6:ea:58:a1:b5:15:
f6:ad:68:6d:7d:40:06:ae:9f:ac:a9:54:3b:4f:d0:93:cf:e8:
6c:2f:89:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:16 2023 by rpki-client on console-ams.rpki-client.org