Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/63b3de-8975-434c-96da-361786f17a05/1/1Edp1356oLJXADEmuSdp9pUREfA.roa
File: 1Edp1356oLJXADEmuSdp9pUREfA.roa (raw, json)
Hash identifier: ICW+x5O/4ycbcdxtLiBDRN8lPJVrZyZoCMNdlBoaqyQ=
Subject key identifier: D4:47:69:D7:7E:7A:A0:B2:57:00:31:26:B9:27:69:F6:95:11:11:F0
Certificate issuer: /CN=893a2a4019a28177cdf806599f1ab5d51d17b8dc
Certificate serial: 117C17ED
Authority key identifier: 89:3A:2A:40:19:A2:81:77:CD:F8:06:59:9F:1A:B5:D5:1D:17:B8:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iToqQBmigXfN-AZZnxq11R0XuNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/63b3de-8975-434c-96da-361786f17a05/1/1Edp1356oLJXADEmuSdp9pUREfA.roa
Signing time: Sat 01 Jan 2022 16:03:34 +0000
ROA not before: Sat 01 Jan 2022 16:03:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202625
IP address blocks: 185.158.196.0/22 maxlen: 22
2a07:af00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293345261 (0x117c17ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=893a2a4019a28177cdf806599f1ab5d51d17b8dc
Validity
Not Before: Jan 1 16:03:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d44769d77e7aa0b257003126b92769f6951111f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:67:50:b1:20:35:fc:3c:4c:11:2c:25:f0:ed:
ee:d6:6f:6f:87:0d:9a:8d:0c:19:8c:ee:d8:88:b5:
9c:b5:c3:5b:a5:f8:41:6c:ba:8e:f3:e9:50:20:45:
14:84:ee:57:52:6e:64:66:72:b6:69:ca:fe:ae:fc:
32:f6:1d:c6:e2:d5:d6:5c:0e:3f:02:88:c4:a1:99:
ce:5c:63:13:34:2c:ac:3d:01:a9:90:a8:7d:0f:84:
2e:aa:95:d4:33:00:7c:f2:25:77:b5:34:79:69:ba:
c2:89:0e:d5:b7:61:49:4f:73:ae:09:b4:8d:dd:06:
dd:b2:7d:23:b6:74:26:76:f1:93:d0:75:4b:7b:2d:
cf:e7:8a:92:f0:0b:8d:96:dc:9a:39:c5:3b:3c:7b:
2d:f0:ba:e5:65:37:6a:9f:95:9b:60:bc:1e:e3:f9:
93:59:70:95:44:3a:a3:57:7c:4e:84:2f:c7:b5:22:
55:dd:4a:e4:e9:d3:2a:58:1c:f9:59:ad:33:ec:8c:
a7:3d:2e:a5:a6:8e:50:6b:68:7e:e4:63:2e:44:e5:
9f:9c:00:69:9e:59:92:bd:73:ef:8f:d4:30:af:12:
53:c9:4b:70:d3:e8:4b:d4:7f:54:14:af:04:41:f5:
4f:c0:17:02:81:42:91:67:26:a9:55:42:9a:7f:48:
f2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:47:69:D7:7E:7A:A0:B2:57:00:31:26:B9:27:69:F6:95:11:11:F0
X509v3 Authority Key Identifier:
keyid:89:3A:2A:40:19:A2:81:77:CD:F8:06:59:9F:1A:B5:D5:1D:17:B8:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iToqQBmigXfN-AZZnxq11R0XuNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/63b3de-8975-434c-96da-361786f17a05/1/1Edp1356oLJXADEmuSdp9pUREfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/63b3de-8975-434c-96da-361786f17a05/1/iToqQBmigXfN-AZZnxq11R0XuNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.196.0/22
IPv6:
2a07:af00::/29
Signature Algorithm: sha256WithRSAEncryption
26:7f:dc:03:8a:67:f8:10:62:0f:a9:86:2a:f6:d5:12:27:ad:
0e:09:fa:e4:2b:e9:fb:37:fd:a7:74:80:50:ca:8c:65:57:30:
3d:0b:f2:a9:55:ea:6f:97:78:03:34:a0:d1:b7:55:8f:ca:13:
88:0e:bf:ca:7f:14:5d:c8:80:b0:c3:46:c9:f7:4e:e9:f9:2a:
d6:a1:4f:0e:04:fe:44:53:27:76:85:c5:18:94:47:21:30:be:
d4:f7:6e:ef:a0:b2:09:6f:07:ca:41:99:e3:56:c7:16:f4:ab:
a2:95:9c:86:b6:a4:a3:70:d1:05:19:1e:c7:4d:fd:af:eb:85:
b1:c3:fe:3b:74:38:5d:0c:f9:45:98:bf:e9:9f:ed:6f:eb:47:
c3:46:3c:73:63:0e:64:fa:7f:d7:42:dc:72:29:bb:2f:33:d3:
9b:23:bc:46:3d:77:21:3f:38:27:40:5e:b9:04:b4:fe:15:f3:
3d:a2:d9:14:ab:8e:17:22:a7:e6:9f:2e:4d:39:7d:b0:34:c5:
7a:f5:90:94:a2:7a:23:96:f0:14:ed:ef:90:28:ac:26:e0:be:
d5:e9:77:4a:d4:28:6d:32:2e:b8:34:21:c7:72:ae:23:cb:e7:
55:46:74:e1:81:5c:1a:eb:43:89:53:a5:f6:d6:97:26:4d:3e:
d3:d1:2d:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net