Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/e3c854-2262-4895-b92a-f2c65a7013ef/1/Wn1Y06y8yq_oyn8RieiYM7LA6do.roa
File: Wn1Y06y8yq_oyn8RieiYM7LA6do.roa (raw, json)
Hash identifier: 5XhI1mNLaX7LAUFJp3L+UH637d7JcMHS5+4Pk+IGxcE=
Subject key identifier: 5A:7D:58:D3:AC:BC:CA:AF:E8:CA:7F:11:89:E8:98:33:B2:C0:E9:DA
Certificate issuer: /CN=111f4b0a73ac1b633d24ed5a094fde3a2ef51b94
Certificate serial: 06CEB1D4
Authority key identifier: 11:1F:4B:0A:73:AC:1B:63:3D:24:ED:5A:09:4F:DE:3A:2E:F5:1B:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER9LCnOsG2M9JO1aCU_eOi71G5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/e3c854-2262-4895-b92a-f2c65a7013ef/1/Wn1Y06y8yq_oyn8RieiYM7LA6do.roa
Signing time: Sat 01 Jan 2022 14:07:11 +0000
ROA not before: Sat 01 Jan 2022 14:07:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24679
IP address blocks: 185.148.168.0/22 maxlen: 24
2a07:60c0::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114209236 (0x6ceb1d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111f4b0a73ac1b633d24ed5a094fde3a2ef51b94
Validity
Not Before: Jan 1 14:07:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a7d58d3acbccaafe8ca7f1189e89833b2c0e9da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e9:72:a8:b1:40:bc:67:7d:72:9f:76:92:b3:
64:60:7a:e7:e0:18:ee:50:f7:f3:e4:f3:85:b3:e6:
b7:39:b7:ce:99:0d:b7:02:9e:b0:22:d6:d0:f0:a7:
8c:48:2c:d8:0d:c1:ec:97:16:58:39:87:e0:98:bf:
a1:7d:5c:a1:69:8b:0a:75:d6:c8:ee:5e:15:cb:e9:
2e:4a:d7:3c:9c:f1:38:9e:a5:57:c5:a1:d6:d2:a7:
dc:63:bd:22:56:e9:ec:4b:ad:63:42:b7:67:7c:c7:
12:c2:e1:db:e5:8a:04:c4:1a:31:8e:82:72:f5:42:
19:38:67:42:d0:cc:ba:f6:b0:45:5d:02:32:dc:c6:
0e:cb:59:6f:38:c6:88:cb:e0:8d:1f:03:a5:9f:bb:
5e:62:5c:b6:a2:14:d1:61:d2:80:a9:c5:f3:12:cf:
17:f4:21:a0:a1:2c:47:ee:76:25:7b:74:9b:43:dd:
5f:42:14:46:a8:9f:d8:a1:32:e8:73:4e:28:1b:6d:
87:bc:54:f9:10:f4:55:c2:e9:74:18:85:db:86:53:
37:a6:e8:fe:0e:77:dc:74:6e:0d:c6:6e:78:b0:28:
11:62:16:a5:8f:45:21:56:c4:60:26:68:55:5b:af:
64:40:fb:ec:d5:ef:c1:96:1a:e4:cb:43:d3:c6:30:
fb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7D:58:D3:AC:BC:CA:AF:E8:CA:7F:11:89:E8:98:33:B2:C0:E9:DA
X509v3 Authority Key Identifier:
keyid:11:1F:4B:0A:73:AC:1B:63:3D:24:ED:5A:09:4F:DE:3A:2E:F5:1B:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER9LCnOsG2M9JO1aCU_eOi71G5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e3c854-2262-4895-b92a-f2c65a7013ef/1/Wn1Y06y8yq_oyn8RieiYM7LA6do.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e3c854-2262-4895-b92a-f2c65a7013ef/1/ER9LCnOsG2M9JO1aCU_eOi71G5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.168.0/22
IPv6:
2a07:60c0::/29
Signature Algorithm: sha256WithRSAEncryption
05:33:3f:81:21:53:cd:a2:a3:5c:a7:09:05:18:06:04:52:53:
45:6e:e1:57:5b:d8:7f:90:d8:16:83:c1:fe:9e:a1:93:da:89:
3b:05:bf:b0:fb:78:69:49:c3:0c:b5:50:d7:67:3b:89:3a:39:
2f:8e:3e:dd:cc:c9:05:94:bc:68:0c:be:5d:26:09:55:59:e0:
20:5c:f3:9a:1b:55:0e:69:65:7a:20:e2:b3:7e:d7:b9:39:81:
b8:5f:d8:fe:7b:70:45:1e:2b:57:55:a7:53:45:14:13:0e:74:
ec:9e:df:d4:c6:b4:0f:44:a0:e7:2d:5e:43:bb:a7:ce:ea:84:
c3:07:20:9e:ad:29:22:27:00:e3:23:c8:00:e3:d6:6f:10:79:
6a:2e:a7:5f:d4:fd:04:d2:41:a8:eb:42:b1:52:1d:04:49:89:
3c:09:68:30:aa:be:62:f3:2d:3e:52:9c:65:1c:e0:eb:9e:b3:
22:b7:7a:2d:19:f0:34:dc:60:82:8d:01:48:f6:ff:b7:2a:9b:
73:fd:ed:13:0e:45:70:1c:fa:60:1b:ad:94:4a:f8:10:2c:04:
2e:12:a0:47:64:30:f4:4b:f8:38:b0:f6:37:e5:cd:0b:ef:cc:
5a:21:2e:f1:fb:73:80:54:aa:c6:56:af:f3:af:b9:32:c0:cf:
22:37:ee:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:21 2023 by rpki-client on console-ams.rpki-client.org