Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/e4e531-6bee-4189-ba7c-203e45616306/1/6qgxIvlLrJ4a4dvqfQHmHVW_Z0E.roa
File: 6qgxIvlLrJ4a4dvqfQHmHVW_Z0E.roa (raw, json)
Hash identifier: L3rRLmlGylFz7ZIvZEVBzm/YR/pkhKCzjMcLXtcIReU=
Subject key identifier: EA:A8:31:22:F9:4B:AC:9E:1A:E1:DB:EA:7D:01:E6:1D:55:BF:67:41
Certificate issuer: /CN=13764a52c85e07e33749743d23a5a24d096df147
Certificate serial: 194D8349
Authority key identifier: 13:76:4A:52:C8:5E:07:E3:37:49:74:3D:23:A5:A2:4D:09:6D:F1:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E3ZKUsheB-M3SXQ9I6WiTQlt8Uc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/e4e531-6bee-4189-ba7c-203e45616306/1/6qgxIvlLrJ4a4dvqfQHmHVW_Z0E.roa
Signing time: Sat 01 Jan 2022 01:58:50 +0000
ROA not before: Sat 01 Jan 2022 01:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49083
IP address blocks: 185.147.148.0/22 maxlen: 22
95.131.240.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 424510281 (0x194d8349)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13764a52c85e07e33749743d23a5a24d096df147
Validity
Not Before: Jan 1 01:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eaa83122f94bac9e1ae1dbea7d01e61d55bf6741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3c:f0:bb:da:a8:02:a4:14:98:4e:d8:83:f9:
c3:02:11:b9:e5:d4:db:72:1a:78:db:1b:55:ba:7f:
39:2f:04:58:34:7d:37:c7:ec:e4:45:ab:51:7d:a0:
bc:c8:3e:91:55:79:87:90:75:55:1d:b5:6e:e5:83:
01:5e:45:b0:cb:c1:66:6a:76:f5:27:90:7c:84:06:
e9:d9:bf:78:5c:85:d9:3d:05:ac:77:e4:1d:bf:ec:
ae:0f:d2:01:54:7e:89:58:2c:52:d1:4b:fd:72:37:
53:49:1b:b4:28:76:ab:20:c0:f5:f7:19:80:96:d7:
8d:88:02:c1:36:ba:c5:f5:0d:e5:af:32:0a:16:c0:
f6:9a:fa:76:57:fc:8c:b0:91:eb:e3:1d:42:7b:40:
e0:13:e5:01:d2:bf:d5:7c:90:9c:c4:3d:91:ad:1c:
32:a3:9d:33:49:6b:45:33:f9:f7:84:25:41:a2:dc:
4c:86:de:5f:61:59:6f:cc:16:6f:ea:15:dc:b6:d2:
02:b8:d9:2d:ca:30:0b:b9:a0:68:5e:55:76:9a:9e:
87:bb:b0:f9:7e:57:e2:e2:65:5f:25:9a:c5:b0:8d:
f6:90:df:69:df:be:5e:39:c1:6c:a8:bf:d9:b7:23:
6f:98:31:6c:d9:5c:64:e3:51:3c:ff:95:7e:ef:1b:
33:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:A8:31:22:F9:4B:AC:9E:1A:E1:DB:EA:7D:01:E6:1D:55:BF:67:41
X509v3 Authority Key Identifier:
keyid:13:76:4A:52:C8:5E:07:E3:37:49:74:3D:23:A5:A2:4D:09:6D:F1:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E3ZKUsheB-M3SXQ9I6WiTQlt8Uc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/e4e531-6bee-4189-ba7c-203e45616306/1/6qgxIvlLrJ4a4dvqfQHmHVW_Z0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/e4e531-6bee-4189-ba7c-203e45616306/1/E3ZKUsheB-M3SXQ9I6WiTQlt8Uc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.131.240.0/21
185.147.148.0/22
Signature Algorithm: sha256WithRSAEncryption
14:ee:27:9d:ea:c7:f5:1b:07:0a:cd:c3:5f:98:cb:ef:ff:72:
fc:55:a7:6a:e7:a4:b5:87:42:5d:6c:47:88:2e:a3:d5:4c:3d:
75:85:39:7c:e7:e2:de:a7:17:f3:77:db:24:3a:c0:df:6a:7b:
c7:23:9c:48:44:6c:d0:7f:fe:e9:2a:5a:17:4e:22:fa:8e:dc:
71:67:c1:5c:3d:8a:21:0d:ce:71:3d:9d:70:37:a9:ed:dd:a7:
9a:08:a1:ae:d6:f4:c2:a5:30:df:76:35:da:18:11:6f:95:82:
4b:34:c0:0a:b3:f0:98:2c:a1:26:86:08:9e:a3:17:2e:b1:d2:
6b:20:60:29:9a:84:93:7a:62:8d:1a:96:3b:5e:f7:a6:8b:c7:
13:fc:fe:fc:78:ed:57:80:90:c9:12:a4:22:72:1b:1a:24:45:
94:5b:34:88:75:9b:e4:4e:68:72:36:83:d6:ba:b1:35:84:b7:
14:78:a3:f4:9e:61:6d:bc:63:12:6a:c9:2d:c2:aa:44:d5:fe:
56:da:d3:ca:60:b2:a6:02:a5:a1:41:00:83:ba:33:44:fa:ea:
28:cf:fe:a1:f5:71:76:3b:c2:19:b8:cd:1d:1b:e0:3e:b7:c9:
16:75:1c:3f:b1:6c:b5:33:ab:ac:a4:23:83:22:3e:ef:b1:56:
4e:cf:e2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:32 2023 by rpki-client on console-fra.rpki-client.org