Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/pNFeNquG1EiE4s_fRL7h9GVyL_s.roa
File: pNFeNquG1EiE4s_fRL7h9GVyL_s.roa (raw, json)
Hash identifier: xHI84WWX+/v80BLfn3rAhPiTr6sGmvlZ3yHwIPuEmEI=
Subject key identifier: A4:D1:5E:36:AB:86:D4:48:84:E2:CF:DF:44:BE:E1:F4:65:72:2F:FB
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 094EAAB3
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/pNFeNquG1EiE4s_fRL7h9GVyL_s.roa
Signing time: Sat 01 Jan 2022 06:00:39 +0000
ROA not before: Sat 01 Jan 2022 06:00:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213021
IP address blocks: 185.132.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156150451 (0x94eaab3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 06:00:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4d15e36ab86d44884e2cfdf44bee1f465722ffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:b9:3c:cc:63:50:e5:7d:2d:d3:06:ef:82:80:
22:13:50:23:94:06:e4:19:82:a4:e8:b4:d7:47:c4:
c5:14:27:c4:ea:11:e4:fe:0d:55:6d:6f:01:d2:40:
0f:25:41:d1:11:92:bc:38:9b:8a:7a:37:36:99:cc:
80:bd:2e:a9:47:f6:69:e1:1d:3c:a3:fb:fa:9f:8f:
cb:1c:c4:33:7c:75:66:59:6d:63:44:33:d0:57:ff:
d1:a0:ac:54:af:80:64:4d:68:29:33:4c:79:36:bd:
c4:4c:80:9e:b5:43:40:4c:df:b5:54:52:d2:d7:69:
40:b1:3c:2d:d2:04:96:ce:0b:b5:52:24:83:5a:5a:
2f:2a:48:96:7d:35:e2:bb:33:1b:85:1a:38:be:5f:
59:1e:41:f3:a4:73:24:29:c5:96:9a:bd:0a:27:a1:
b4:27:fb:62:2e:ce:15:f2:97:06:2a:42:0f:36:8b:
dd:a8:c9:30:b6:f2:83:05:a2:ba:e3:0b:a0:da:f7:
d0:2c:aa:62:f6:e8:a2:31:5a:32:68:06:16:33:fc:
ee:35:c7:2b:bc:a6:eb:45:89:c6:ae:12:51:84:8c:
19:94:d2:a3:97:4a:bd:80:d3:1b:d3:59:9c:65:01:
59:40:d6:79:e8:93:e5:cf:48:2a:7d:b4:77:a0:82:
3f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D1:5E:36:AB:86:D4:48:84:E2:CF:DF:44:BE:E1:F4:65:72:2F:FB
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/pNFeNquG1EiE4s_fRL7h9GVyL_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.53.0/24
Signature Algorithm: sha256WithRSAEncryption
72:9e:1b:cd:46:fa:85:e8:f9:b8:33:8f:e0:0b:37:a6:88:97:
45:96:f7:12:87:39:1e:d9:da:4c:96:60:d9:0d:6d:86:20:f2:
15:8b:15:57:98:0c:54:bd:c8:be:7e:56:43:f2:12:6a:fc:f9:
75:04:29:05:87:07:83:e3:7c:98:0a:9b:0f:11:31:0d:a8:75:
8d:20:46:c0:5a:88:3b:5a:8e:40:b0:bb:ba:8b:0e:2f:02:a2:
53:6c:c9:26:34:2c:ba:16:13:f4:6b:94:8b:91:68:55:0f:30:
e1:dc:7a:a7:03:13:63:56:c4:ba:e4:b6:c7:3a:80:02:cc:f2:
e3:5c:cc:10:eb:60:83:36:fa:0b:ff:f5:41:d3:8b:15:5d:1b:
0f:66:16:48:57:16:ad:20:8c:38:a1:30:e9:80:27:e3:01:e5:
b9:2a:b5:5f:03:21:9c:c9:4e:fb:27:5e:c4:90:67:4f:42:34:
a6:8d:74:bc:55:4d:3e:e3:01:96:80:fa:b1:d9:8c:9b:41:d7:
55:01:96:cd:c9:61:09:8d:fd:4d:83:f2:ff:2e:9d:79:47:ad:
85:47:f4:40:51:ba:3f:0b:4a:a7:5e:26:6e:5d:e2:df:6d:da:
55:ed:9a:73:e7:10:49:61:9f:41:4e:ee:6b:cf:9a:34:1e:29:
8a:6b:87:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-ams.rpki-client.org