Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1925e7-1694-43ed-8fbc-43685887436c/1/CERnC5oy2p22m65CHv61LNN6ri4.roa
File: CERnC5oy2p22m65CHv61LNN6ri4.roa (raw, json)
Hash identifier: 2erfUIOiUfaX3kGhgiAhMY+1PbLzWyoeiWbI8i36yh0=
Subject key identifier: 08:44:67:0B:9A:32:DA:9D:B6:9B:AE:42:1E:FE:B5:2C:D3:7A:AE:2E
Certificate issuer: /CN=794f551e97a132542e3b056e905de8f3dba24c9c
Certificate serial: 132D97D8
Authority key identifier: 79:4F:55:1E:97:A1:32:54:2E:3B:05:6E:90:5D:E8:F3:DB:A2:4C:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eU9VHpehMlQuOwVukF3o89uiTJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/1925e7-1694-43ed-8fbc-43685887436c/1/CERnC5oy2p22m65CHv61LNN6ri4.roa
Signing time: Thu 12 May 2022 18:44:02 +0000
ROA not before: Thu 12 May 2022 18:44:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3269
IP address blocks: 185.152.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321755096 (0x132d97d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=794f551e97a132542e3b056e905de8f3dba24c9c
Validity
Not Before: May 12 18:44:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0844670b9a32da9db69bae421efeb52cd37aae2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:62:29:ed:d2:ee:b8:b8:fc:a9:a7:b8:37:23:
34:bb:3c:83:13:f2:e2:33:53:c9:47:62:4d:ea:6f:
38:9b:2d:67:a4:b4:17:22:7a:5a:44:c2:70:e6:ca:
9b:e7:7b:9f:62:f7:a3:ee:13:64:1a:9d:33:8e:60:
63:9d:b7:22:f5:70:70:38:b6:e5:6f:eb:61:4e:99:
24:ac:12:a7:11:41:b7:bb:ee:43:0b:18:b8:1b:14:
a6:89:37:c8:24:f8:ad:11:2b:36:84:3d:f0:6a:98:
5a:72:8d:23:53:6a:e4:1b:f6:16:c7:a2:e6:7a:fe:
44:cb:af:fb:e4:51:c5:ff:73:98:c1:ad:5c:02:37:
43:61:75:78:29:ec:58:6b:a9:0d:65:8b:cf:92:c2:
a3:52:68:87:6b:5f:9c:30:1b:ad:6b:d6:72:d3:0d:
cc:ca:6a:84:6d:0a:86:ba:7a:29:56:6c:02:4e:ee:
f1:b6:7a:be:42:98:9f:d0:75:50:89:fa:b0:36:55:
ef:22:99:91:65:be:0c:ec:0e:c2:21:14:75:e5:4d:
93:6e:5e:a3:bb:4e:85:81:13:9f:c2:29:d2:c0:db:
d7:65:99:6c:26:d2:98:e7:10:70:6a:68:cd:f0:76:
40:ac:cc:3a:58:60:24:b9:65:09:af:d5:79:25:e4:
f5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:44:67:0B:9A:32:DA:9D:B6:9B:AE:42:1E:FE:B5:2C:D3:7A:AE:2E
X509v3 Authority Key Identifier:
keyid:79:4F:55:1E:97:A1:32:54:2E:3B:05:6E:90:5D:E8:F3:DB:A2:4C:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eU9VHpehMlQuOwVukF3o89uiTJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1925e7-1694-43ed-8fbc-43685887436c/1/CERnC5oy2p22m65CHv61LNN6ri4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1925e7-1694-43ed-8fbc-43685887436c/1/eU9VHpehMlQuOwVukF3o89uiTJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.140.0/22
Signature Algorithm: sha256WithRSAEncryption
95:81:ef:fe:ea:16:58:85:31:1d:56:8d:e9:cd:14:cc:d2:db:
c6:5d:7c:19:0a:a0:a2:10:fd:e3:e9:52:e6:e1:0b:11:a9:13:
7f:c8:3b:79:92:d4:9b:e6:05:29:7d:63:7b:f9:f3:5a:97:4d:
1b:8a:10:3e:5a:c1:b5:8f:2e:e1:09:85:50:a2:22:28:a5:95:
89:4c:39:12:7d:64:c7:bb:f7:16:fd:ac:3c:c0:dc:31:fc:e4:
4f:47:7f:c1:10:8a:fc:ae:c4:6e:67:a7:4e:ff:6b:3d:5b:9d:
d6:ca:53:4f:8c:37:19:89:30:9f:d5:8c:ab:c4:2f:93:8d:37:
2d:ef:3a:d3:a7:60:c3:5c:f7:8b:5a:b6:fe:44:23:55:93:c8:
fb:84:b5:ba:22:7b:fa:d9:af:c0:75:78:ec:8c:f2:9c:89:41:
3c:d4:54:46:7f:8f:16:54:17:bd:a9:10:3f:40:97:f2:cb:8f:
07:bb:c7:51:ee:a2:fc:9b:c1:c5:db:86:f7:20:f3:60:04:d1:
b5:5c:4c:d7:d6:35:0a:f8:a8:81:73:f5:2d:76:97:07:8c:2f:
e0:64:7f:10:74:37:7b:fa:33:04:e3:62:4c:a1:6b:32:75:b7:
11:ed:be:a2:29:bd:44:ea:47:13:68:f7:62:ba:5a:72:9e:19:
74:a5:d4:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:22 2023 by rpki-client on console-ams.rpki-client.org