Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/SjrS4qRPbrGfw2KzIanOwtyTMz8.roa
File: SjrS4qRPbrGfw2KzIanOwtyTMz8.roa (raw, json)
Hash identifier: pb++osfyY8cHh+/gKDZxmmywo5GOA7UpWYnQKfywPmg=
Subject key identifier: 4A:3A:D2:E2:A4:4F:6E:B1:9F:C3:62:B3:21:A9:CE:C2:DC:93:33:3F
Certificate issuer: /CN=b252dda27226a275e3e79b374c8f263cd2d8ecd1
Certificate serial: 13128DC4
Authority key identifier: B2:52:DD:A2:72:26:A2:75:E3:E7:9B:37:4C:8F:26:3C:D2:D8:EC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/slLdonImonXj55s3TI8mPNLY7NE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/SjrS4qRPbrGfw2KzIanOwtyTMz8.roa
Signing time: Mon 30 May 2022 07:21:14 +0000
ROA not before: Mon 30 May 2022 07:21:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34196
IP address blocks: 185.156.170.0/23 maxlen: 24
185.156.168.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 319983044 (0x13128dc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b252dda27226a275e3e79b374c8f263cd2d8ecd1
Validity
Not Before: May 30 07:21:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a3ad2e2a44f6eb19fc362b321a9cec2dc93333f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:be:58:ec:ce:40:96:2b:3e:b5:96:a9:0d:f0:
67:30:b3:2a:fa:81:bb:ad:56:77:69:30:8b:fd:cd:
29:1f:87:f7:19:d7:c4:ec:ba:f8:f8:8f:41:52:f7:
ac:a2:66:08:7c:d4:bd:59:17:7b:e0:5a:9b:d3:09:
63:21:6d:7e:45:d2:4b:18:55:93:cf:fa:46:c1:28:
66:d3:5d:b3:bc:1a:b4:bd:d7:d5:81:5e:05:65:9a:
9a:cd:67:76:ed:42:82:f2:a7:d1:24:6e:e1:81:37:
5c:a0:2d:18:c4:cd:ae:a5:b4:89:94:78:90:c1:d7:
20:6d:8b:4f:91:e5:27:78:2b:73:a3:d0:11:4f:40:
0f:18:64:50:83:65:7b:76:a8:58:aa:b0:72:7f:8b:
54:a5:72:6e:18:e3:dc:bc:fb:71:0e:e4:d5:6f:e8:
c7:a1:7d:58:39:78:08:bc:3e:66:6a:61:c5:52:a0:
09:27:0b:b0:21:bb:02:de:d4:35:e1:e9:7e:07:38:
6b:14:d3:2a:94:1c:27:ec:e6:6a:37:1b:34:c8:57:
28:9b:3a:a1:90:19:31:4c:20:92:85:be:61:0e:1d:
5b:69:15:d9:81:6f:71:78:c5:31:f3:d8:22:26:f5:
14:bc:64:c8:74:40:57:de:a1:47:c9:9a:ef:20:8a:
6b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:3A:D2:E2:A4:4F:6E:B1:9F:C3:62:B3:21:A9:CE:C2:DC:93:33:3F
X509v3 Authority Key Identifier:
keyid:B2:52:DD:A2:72:26:A2:75:E3:E7:9B:37:4C:8F:26:3C:D2:D8:EC:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/slLdonImonXj55s3TI8mPNLY7NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/SjrS4qRPbrGfw2KzIanOwtyTMz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/slLdonImonXj55s3TI8mPNLY7NE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.168.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:0b:58:b2:0d:c5:12:60:4b:87:0d:28:56:c9:db:bf:c6:27:
13:b6:2d:d8:c5:02:17:2d:d8:c2:69:5a:40:55:ae:69:8f:4b:
a1:7c:9b:f4:45:35:8d:e6:c5:34:6e:90:97:ec:53:8c:da:1d:
ba:9c:e1:bf:aa:5f:f5:56:be:20:13:e8:48:fa:38:a2:46:a6:
c9:11:e9:f7:8e:d6:14:ff:a8:d0:4f:95:94:69:0b:5a:7a:21:
51:c8:a5:87:08:f7:61:c9:be:48:ae:f2:1f:e3:02:a9:36:aa:
8a:67:b7:50:ea:89:23:41:e7:77:92:11:30:c3:4a:1d:e2:1b:
65:44:0c:29:1e:d7:77:24:79:b9:be:5e:52:3f:dc:96:74:39:
db:58:99:27:3b:dc:b6:c7:c7:0f:2d:0e:8e:ab:1b:94:ca:76:
55:5e:9d:44:70:ad:b6:ad:f5:25:64:7f:29:e4:2e:f1:0f:d7:
6e:d5:c2:ed:91:b2:3b:97:9a:e8:e6:f4:fe:8e:46:a2:e7:f5:
39:a1:64:36:fe:d5:bd:5d:d8:27:e5:73:db:e4:58:46:ea:56:
45:0c:63:4e:97:ab:38:de:21:55:db:62:78:f9:20:5e:63:b8:
ac:73:b5:30:5b:7f:8a:22:4a:98:d5:51:07:26:ef:75:b6:97:
8d:eb:61:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:57 2024 by rpki-client on console-ams.rpki-client.org