Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/5d6885-39fd-465f-93b4-3170fd5c3e17/1/1z1DTRdSEy0B_-XqjZU4OgmQwuE.roa
File: 1z1DTRdSEy0B_-XqjZU4OgmQwuE.roa (raw, json)
Hash identifier: EauaSJjV7foi2jZrZQsT4vWiYLmU1dAHOUEWMx5mibY=
Subject key identifier: D7:3D:43:4D:17:52:13:2D:01:FF:E5:EA:8D:95:38:3A:09:90:C2:E1
Certificate issuer: /CN=e02abe2612d67a43d6828d5b34418f5f34b6a824
Certificate serial: 02139052
Authority key identifier: E0:2A:BE:26:12:D6:7A:43:D6:82:8D:5B:34:41:8F:5F:34:B6:A8:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Cq-JhLWekPWgo1bNEGPXzS2qCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/5d6885-39fd-465f-93b4-3170fd5c3e17/1/1z1DTRdSEy0B_-XqjZU4OgmQwuE.roa
Signing time: Sat 01 Jan 2022 14:59:55 +0000
ROA not before: Sat 01 Jan 2022 14:59:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207192
IP address blocks: 185.161.48.0/22 maxlen: 22
185.161.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34836562 (0x2139052)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e02abe2612d67a43d6828d5b34418f5f34b6a824
Validity
Not Before: Jan 1 14:59:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d73d434d1752132d01ffe5ea8d95383a0990c2e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:93:67:cc:96:7b:a6:13:0b:a8:17:d1:a7:2e:
aa:d2:ca:1a:78:5d:5c:cb:46:81:53:32:eb:5a:92:
8a:96:bf:f9:4d:57:ab:0a:ee:5a:c9:b6:cf:5f:c3:
37:3a:20:b4:e7:5e:04:a6:f4:ba:0c:09:45:85:cc:
85:d8:8b:4f:ec:d1:50:0e:0b:af:2f:f2:36:28:b7:
ea:59:b0:e1:6c:f1:a4:3f:25:2a:dd:a5:95:1b:3f:
bf:6d:2f:75:90:92:8e:25:ed:f4:55:47:83:eb:8e:
05:da:af:ce:68:28:c4:0e:bb:17:99:e3:1c:c1:04:
7a:3f:98:52:18:63:a7:ff:46:d6:05:dc:f7:38:49:
7d:cb:c5:f0:bc:58:e2:1b:56:23:45:8e:67:e4:a5:
92:9b:30:40:81:43:73:ec:9b:30:f3:8c:61:ce:b9:
f0:cc:f5:8b:ba:23:2f:61:0d:86:e8:0a:89:4f:e8:
c6:46:99:55:4d:06:d3:b3:ea:ca:a9:00:c7:f4:cb:
3c:2d:43:4c:a8:14:54:1b:53:cf:ec:b9:71:13:18:
7d:fa:61:5c:a8:7f:68:76:1c:92:a0:27:ca:3b:56:
1f:82:70:fe:44:c8:20:aa:d7:13:b1:63:42:8d:f1:
4a:09:cb:c1:b9:8c:62:d9:f2:ad:89:9e:81:3f:f6:
86:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:3D:43:4D:17:52:13:2D:01:FF:E5:EA:8D:95:38:3A:09:90:C2:E1
X509v3 Authority Key Identifier:
keyid:E0:2A:BE:26:12:D6:7A:43:D6:82:8D:5B:34:41:8F:5F:34:B6:A8:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Cq-JhLWekPWgo1bNEGPXzS2qCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/5d6885-39fd-465f-93b4-3170fd5c3e17/1/1z1DTRdSEy0B_-XqjZU4OgmQwuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/5d6885-39fd-465f-93b4-3170fd5c3e17/1/4Cq-JhLWekPWgo1bNEGPXzS2qCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.48.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:c8:ad:e1:d7:9b:d7:11:81:ce:96:bc:0b:dc:b2:51:d9:42:
c2:7a:b7:65:bd:5a:2e:c1:e5:52:6d:da:ed:c7:e1:40:fb:74:
18:1b:11:00:88:ae:51:11:d4:8c:e5:f7:3d:7e:f8:2e:48:a9:
ee:7a:04:9c:3c:04:64:6f:61:46:13:6d:97:c3:45:fd:1f:45:
3d:04:59:35:06:7d:f7:22:0f:6d:3c:38:9c:59:da:42:5d:36:
02:e2:bb:8e:9b:3f:ae:1f:82:2c:ca:48:2a:c9:a8:d0:23:c9:
d4:08:42:d4:14:2b:57:0f:80:a6:8a:3f:66:65:8d:14:a6:d5:
06:48:4d:9e:98:d8:28:b6:86:a2:a7:74:cd:bc:6f:0c:c8:13:
c5:2e:e0:1c:18:ce:f5:bb:64:76:93:35:30:a1:03:0b:20:d7:
da:81:d6:e3:4f:71:ff:19:74:60:4e:50:72:47:cb:4e:ea:a4:
72:82:83:ad:15:8e:f0:4f:cc:f8:1f:d3:bd:c6:11:90:de:0d:
1d:41:11:74:8a:9a:ad:7e:20:34:1c:b6:57:71:61:84:25:bb:
3b:4d:d7:1e:b7:fb:8c:d9:09:70:55:76:59:89:12:20:d6:d0:
5d:4e:12:45:e0:dd:d6:2a:bf:32:94:87:f9:2d:cd:b8:c4:ca:
d3:56:71:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:04 2023 by rpki-client on console-fra.rpki-client.org