Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/h05nY8BoGjANa2qsifSbC1bJj4M.roa
File: h05nY8BoGjANa2qsifSbC1bJj4M.roa (raw, json)
Hash identifier: KzlQBQUgP1jXUOHwUgEfvx6uzm6Ey4fLSVPt5KLWID0=
Subject key identifier: 87:4E:67:63:C0:68:1A:30:0D:6B:6A:AC:89:F4:9B:0B:56:C9:8F:83
Certificate issuer: /CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Certificate serial: 0920A377
Authority key identifier: 4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/h05nY8BoGjANa2qsifSbC1bJj4M.roa
Signing time: Sat 01 Jan 2022 06:06:32 +0000
ROA not before: Sat 01 Jan 2022 06:06:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52144
IP address blocks: 195.20.144.0/24 maxlen: 24
185.247.152.0/22 maxlen: 22
2a03:e100::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153133943 (0x920a377)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Validity
Not Before: Jan 1 06:06:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=874e6763c0681a300d6b6aac89f49b0b56c98f83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e9:62:c6:40:b3:eb:76:36:b7:10:2c:c3:9c:
68:c5:ce:da:92:9a:b5:18:95:92:32:67:3f:8b:46:
42:15:67:d4:0d:f3:65:7b:19:0e:49:98:60:02:df:
9b:c7:75:de:40:58:38:c3:b8:9b:35:a8:08:ea:9d:
99:05:f9:07:9c:77:0a:a2:b5:6d:8d:25:41:1a:aa:
f6:09:1f:e2:23:b5:b4:b1:0c:e1:95:49:66:29:2d:
53:b2:d8:67:36:2b:d6:04:cb:da:47:8a:91:29:d1:
59:8e:98:67:f6:4e:34:6f:a2:99:50:99:d2:6a:e0:
68:66:c5:bd:f7:07:f4:ec:d3:25:b6:57:c6:a2:a9:
b9:6d:c3:d0:1a:43:40:f0:7c:d2:96:49:d2:26:8c:
d2:bb:ca:66:df:31:fb:26:49:f6:86:ef:18:c5:ce:
f3:27:6a:24:c1:37:ac:cc:a6:e1:1a:9d:ff:62:cf:
5f:02:5a:6e:52:42:71:28:bd:6e:cd:3d:f0:05:9a:
9b:55:27:2a:6d:e2:ca:27:2b:7c:20:d9:01:db:27:
ce:ac:56:9d:7e:a2:fe:e0:fb:03:0d:77:6d:15:3f:
ee:02:99:1c:d0:7e:c8:ee:d3:d8:e3:65:7c:ae:9a:
a2:e4:31:7f:fe:4b:a9:6f:57:68:63:96:1f:42:6c:
e3:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:4E:67:63:C0:68:1A:30:0D:6B:6A:AC:89:F4:9B:0B:56:C9:8F:83
X509v3 Authority Key Identifier:
keyid:4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/h05nY8BoGjANa2qsifSbC1bJj4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.152.0/22
195.20.144.0/24
IPv6:
2a03:e100::/29
Signature Algorithm: sha256WithRSAEncryption
3c:75:57:1a:99:2d:de:7d:86:27:81:49:20:5f:51:7f:4b:ee:
80:84:61:19:0e:c5:f6:7b:89:d2:64:21:5f:6c:27:ac:e9:87:
80:d2:7c:60:1e:41:87:b1:5c:73:72:83:f3:65:6d:52:b1:29:
69:e7:16:fd:f3:83:17:76:65:14:6f:f0:4a:e1:e9:ec:d0:54:
ab:25:18:39:45:e7:29:56:10:32:4d:fe:50:01:d8:cb:61:26:
f3:e9:5e:aa:d5:ed:bc:15:82:cb:d9:d5:59:b4:5f:3a:78:9b:
02:86:b0:78:30:df:34:b8:d6:de:3b:96:4f:71:40:d3:c7:f0:
c8:1f:59:7c:e8:3a:51:37:a4:a1:cf:3c:17:3a:96:27:d1:93:
36:46:63:5b:eb:e6:71:1c:ea:2c:84:4f:c1:4f:0d:41:54:5c:
b5:8e:fe:33:b1:c5:30:8e:26:54:9a:26:74:24:4d:d4:c5:6c:
7e:2f:05:cf:72:9b:85:98:d1:b4:47:fc:7b:6a:06:71:00:5f:
f4:4c:ef:15:bc:a8:d3:c7:81:4f:e5:5a:2c:ee:15:e2:73:50:
8d:39:40:15:3f:20:81:53:91:cc:a3:c4:77:e1:cf:02:91:fc:
d0:ab:bd:9e:16:d4:ba:82:2d:2c:8b:b2:7c:17:78:b4:9f:45:
6a:2b:c2:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:40 2023 by rpki-client on console.sobornost.net