Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/xEYYmjhV5HNxCJybFyz7_dBIPCc.roa
File: xEYYmjhV5HNxCJybFyz7_dBIPCc.roa (raw, json)
Hash identifier: acM0jMnchpL1XhtKTLWXWAJ48DgWV/3EM8JZsAeonNc=
Subject key identifier: C4:46:18:9A:38:55:E4:73:71:08:9C:9B:17:2C:FB:FD:D0:48:3C:27
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 04287898
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/xEYYmjhV5HNxCJybFyz7_dBIPCc.roa
Signing time: Mon 04 Jul 2022 14:12:25 +0000
ROA not before: Mon 04 Jul 2022 14:12:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398343
IP address blocks: 164.215.100.0/24 maxlen: 24
85.158.148.0/22 maxlen: 22
85.158.146.0/24 maxlen: 24
185.81.216.0/22 maxlen: 22
88.151.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69761176 (0x4287898)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jul 4 14:12:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c446189a3855e47371089c9b172cfbfdd0483c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:54:f0:28:40:30:79:79:d2:bc:08:d6:c2:a9:
a6:8e:c6:db:ee:b5:30:e5:7e:a1:fe:0d:b7:83:48:
17:b4:28:1c:80:0d:6d:d9:0f:2a:5d:b5:ca:11:4e:
de:64:bd:38:f5:35:43:41:0a:1d:15:e0:ef:e2:c5:
d1:73:b3:da:3a:cf:e3:de:68:83:93:c8:85:d9:4d:
6d:66:32:68:70:c4:e7:4e:1d:7c:60:64:63:ad:b1:
48:09:7b:b5:d3:03:17:37:45:08:d8:0d:ab:c2:b4:
2d:5e:e6:69:7a:5f:28:2e:2d:be:ec:56:1a:a9:1c:
9d:7d:42:9d:24:e9:3a:89:09:34:9a:17:09:1e:06:
4e:2a:10:53:6b:6c:ad:ea:b6:88:c3:34:fb:bc:16:
15:46:b4:78:b7:24:0a:31:c1:06:ee:ea:3d:bb:e2:
5a:1d:61:4f:15:94:b9:7e:47:44:bc:b8:64:63:13:
cf:63:43:95:ab:12:85:f8:48:98:b3:e4:de:ab:e2:
8d:1b:89:12:b6:a6:72:db:e3:08:6a:4b:02:f3:08:
1c:6d:4a:26:1f:c0:3d:52:98:c4:32:dc:b4:74:fd:
74:12:74:d8:f7:ce:c4:2f:f3:ed:81:f6:a3:e3:da:
cc:46:c0:93:d5:12:3d:cb:18:45:bd:4f:36:e7:90:
95:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:46:18:9A:38:55:E4:73:71:08:9C:9B:17:2C:FB:FD:D0:48:3C:27
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/xEYYmjhV5HNxCJybFyz7_dBIPCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.146.0/24
85.158.148.0/22
88.151.195.0/24
164.215.100.0/24
185.81.216.0/22
Signature Algorithm: sha256WithRSAEncryption
cf:66:0c:11:fa:ed:ae:b6:0f:58:e0:92:bd:68:04:34:6d:bf:
05:e1:5a:65:0b:40:2c:08:5e:87:04:5d:47:16:4f:ef:f5:be:
8d:29:76:0b:b6:ba:fd:96:81:a7:88:79:ad:2e:c7:67:30:d9:
57:42:31:98:8b:72:83:a8:95:e6:1f:b6:68:d6:6a:5e:87:39:
67:52:6e:29:11:ce:85:aa:25:19:a6:a8:d9:77:d6:0c:96:72:
ff:10:7f:a9:bf:90:e2:f1:e8:42:74:97:c3:d5:bc:72:54:02:
03:16:9e:ff:d6:6e:43:f9:cb:89:8c:15:94:fb:10:6c:63:95:
1f:a6:45:22:e2:02:62:36:30:92:0a:17:1e:81:ae:5f:d8:5a:
c5:18:27:7c:ef:0a:af:c6:b2:08:ca:57:aa:71:98:e7:b4:72:
17:3f:da:fa:66:60:1a:a7:64:36:b9:a1:ed:a7:54:3f:be:b6:
f0:7f:6f:12:f2:d2:f5:ed:82:7b:ba:84:b0:18:3e:8d:2d:a5:
57:a1:fa:27:85:0d:70:d0:8c:c6:d0:ff:7f:54:cd:b7:bb:74:
84:2e:e6:53:d5:9c:ad:d3:09:9e:2e:c2:1a:33:5c:d4:65:7e:
9f:ad:d8:6c:1a:d2:78:46:c3:89:3b:11:c8:34:8a:82:bb:61:
2c:86:52:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:51 2023 by rpki-client on console-ams.rpki-client.org