Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/915nQ1MT8FmO_Nzv4stE0urvH90.roa
File: 915nQ1MT8FmO_Nzv4stE0urvH90.roa (raw, json)
Hash identifier: MahNalF1tZQdqF2pzaaXfMRS38eaOh1H0rnZeO/Wujk=
Subject key identifier: F7:5E:67:43:53:13:F0:59:8E:FC:DC:EF:E2:CB:44:D2:EA:EF:1F:DD
Certificate issuer: /CN=e2f68414fcaca07c813555e53691dba84e3988c8
Certificate serial: 0C30ABF1
Authority key identifier: E2:F6:84:14:FC:AC:A0:7C:81:35:55:E5:36:91:DB:A8:4E:39:88:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4vaEFPysoHyBNVXlNpHbqE45iMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/915nQ1MT8FmO_Nzv4stE0urvH90.roa
Signing time: Sat 12 Mar 2022 17:00:16 +0000
ROA not before: Sat 12 Mar 2022 17:00:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206476
IP address blocks: 185.255.184.0/22 maxlen: 24
185.137.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 204516337 (0xc30abf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2f68414fcaca07c813555e53691dba84e3988c8
Validity
Not Before: Mar 12 17:00:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f75e67435313f0598efcdcefe2cb44d2eaef1fdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ca:df:ff:7e:00:4b:03:bf:1f:82:cc:59:36:
0d:0c:8f:78:ea:2f:2d:b5:3c:35:18:0c:2f:f7:df:
db:33:41:d3:2a:34:30:14:a2:98:41:3b:02:8f:5e:
cc:ec:97:2c:5b:78:02:3d:de:35:fb:fc:d3:b4:23:
b9:83:98:81:af:4a:12:02:b5:9a:ff:6e:b0:62:1f:
bb:e7:36:77:62:c4:48:c8:44:5b:f3:72:da:b9:ad:
57:e8:d0:d1:22:f6:a4:a5:ac:2f:13:97:cc:be:d0:
7d:ea:09:c9:2f:07:22:ac:6c:cf:8c:81:61:6e:e9:
4a:de:da:83:21:f0:a0:31:4a:c0:60:54:2d:7b:db:
cb:15:a0:84:bb:34:bf:f6:84:82:c4:cb:f9:a8:5a:
e5:7e:63:c5:76:dd:ac:4f:ef:bd:ec:e0:f9:1c:dc:
dd:bb:59:aa:98:d7:38:d1:71:b2:82:b6:20:0f:de:
a5:4a:83:2e:55:09:60:be:fa:0b:f0:1d:18:bc:f9:
4a:02:01:ee:d9:d4:4b:64:11:bc:a8:25:8a:a8:66:
a7:4f:09:1f:d6:f0:6f:a4:ff:3e:57:74:7b:f1:df:
26:f4:d3:c7:4d:97:13:2c:fe:fd:65:ae:eb:bf:07:
d1:90:26:ba:e8:ea:33:a9:52:db:cd:ec:39:62:a2:
40:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:5E:67:43:53:13:F0:59:8E:FC:DC:EF:E2:CB:44:D2:EA:EF:1F:DD
X509v3 Authority Key Identifier:
keyid:E2:F6:84:14:FC:AC:A0:7C:81:35:55:E5:36:91:DB:A8:4E:39:88:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4vaEFPysoHyBNVXlNpHbqE45iMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/915nQ1MT8FmO_Nzv4stE0urvH90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/4vaEFPysoHyBNVXlNpHbqE45iMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.225.0/24
185.255.184.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:2a:31:55:46:f9:ec:c2:a2:99:17:69:69:4d:6b:93:03:17:
d6:79:74:92:f1:25:59:d0:6a:3d:4a:03:a4:d5:53:b9:99:93:
91:e6:16:0c:f4:a0:97:6d:98:10:36:c6:8f:98:cf:a1:9d:6b:
5c:9f:2b:57:a4:d8:f0:bb:22:c7:85:0d:db:2c:3a:a9:2d:bc:
75:9a:47:75:29:da:20:0e:68:b9:43:f3:1d:70:97:9a:62:05:
d9:ee:00:91:4e:31:f7:63:e6:bf:ed:3c:b7:4e:ff:7d:2f:7f:
d0:9a:82:ca:14:72:30:ba:04:41:87:7c:95:42:89:2f:b7:3a:
19:cf:e8:87:81:d6:0b:47:b1:7d:e3:01:04:97:be:53:9a:eb:
26:a5:f2:90:b5:4c:86:6d:86:2b:18:2c:da:bb:34:ef:ce:32:
fe:82:a1:45:43:a3:77:22:b7:90:03:3d:3e:1c:a1:47:0e:83:
02:6a:dd:3b:4b:8c:9f:62:47:c3:e2:83:9c:10:c3:94:26:67:
d2:1b:0a:fb:6b:ee:aa:48:c6:09:e5:12:cb:3d:af:c9:e2:a7:
e2:b3:94:14:1f:d5:3c:9d:ab:9f:d0:a3:10:e7:a1:c9:b7:7f:
b6:c4:02:f9:89:04:62:df:7d:34:06:24:8a:bd:68:e5:bd:0e:
ea:1c:fc:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:42 2023 by rpki-client on console-ams.rpki-client.org