Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/R1zd-fsLgxQaGIWD3BoOpGO5pW8.roa
File: R1zd-fsLgxQaGIWD3BoOpGO5pW8.roa (raw, json)
Hash identifier: uDVJLUthVe9kZFttQZAzQpvxqvxt+QJZI3l8JE7v3k8=
Subject key identifier: 47:5C:DD:F9:FB:0B:83:14:1A:18:85:83:DC:1A:0E:A4:63:B9:A5:6F
Certificate issuer: /CN=279669579b3ce61ee8ee7d6af7e314b0f726361f
Certificate serial: 08568020
Authority key identifier: 27:96:69:57:9B:3C:E6:1E:E8:EE:7D:6A:F7:E3:14:B0:F7:26:36:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5ZpV5s85h7o7n1q9-MUsPcmNh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/R1zd-fsLgxQaGIWD3BoOpGO5pW8.roa
Signing time: Sat 01 Jan 2022 08:54:37 +0000
ROA not before: Sat 01 Jan 2022 08:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 185.129.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139886624 (0x8568020)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279669579b3ce61ee8ee7d6af7e314b0f726361f
Validity
Not Before: Jan 1 08:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=475cddf9fb0b83141a188583dc1a0ea463b9a56f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ad:3a:f7:fd:14:2c:46:e4:14:f2:d8:06:3e:
18:1d:36:03:01:30:1a:54:d9:ae:15:0a:2f:3d:07:
3d:75:22:96:c2:21:85:9b:05:71:6b:6c:4e:be:11:
12:f7:b5:7f:e8:a6:a7:f1:80:c3:8b:b0:a5:17:a7:
02:60:9b:ed:81:60:36:e8:73:e3:c0:e6:4a:63:ab:
69:b7:9a:b3:f7:c6:b2:ba:93:83:10:a2:ce:64:70:
4b:1c:b4:1f:8e:46:c6:cc:47:7c:6b:a2:fa:c2:ad:
e3:21:d6:76:75:25:60:27:f4:39:5d:a8:1f:d5:e4:
e6:c7:3d:23:2d:ca:58:8c:b3:c2:c9:c6:0e:47:43:
bb:19:c0:a6:2f:9f:ac:35:96:37:24:a8:0d:04:26:
48:25:52:a5:59:53:0f:e1:ba:bd:46:b6:c8:8c:42:
ad:ab:d3:79:dd:b2:fc:1e:f6:6c:d9:53:c5:de:9c:
f7:8d:75:94:4e:1e:f8:79:c7:8b:5a:d9:e0:7b:3f:
79:55:24:d9:0f:29:b9:ba:58:30:aa:5f:65:3f:6b:
cc:64:72:1c:10:8e:d2:ff:ca:e9:f6:65:bb:16:7b:
85:f1:27:e8:f3:7a:82:f2:2c:1d:b1:b5:2b:dc:b5:
71:d0:ff:dd:77:1b:85:ac:e0:4e:98:7c:0b:bc:7e:
45:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5C:DD:F9:FB:0B:83:14:1A:18:85:83:DC:1A:0E:A4:63:B9:A5:6F
X509v3 Authority Key Identifier:
keyid:27:96:69:57:9B:3C:E6:1E:E8:EE:7D:6A:F7:E3:14:B0:F7:26:36:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5ZpV5s85h7o7n1q9-MUsPcmNh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/R1zd-fsLgxQaGIWD3BoOpGO5pW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/J5ZpV5s85h7o7n1q9-MUsPcmNh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.121.0/24
Signature Algorithm: sha256WithRSAEncryption
52:b7:28:16:8a:11:32:bd:9d:3b:78:27:75:8d:f1:0d:ca:1c:
83:4d:d1:e6:42:92:83:40:5f:00:a0:79:fb:79:71:3a:37:6a:
d6:01:b3:aa:37:4b:ae:06:32:a4:59:e1:98:9f:a5:59:d7:98:
0c:cf:83:22:25:29:9a:d8:68:d6:84:59:6f:c0:d7:2b:35:d7:
9e:68:c3:92:dd:9e:81:3a:2f:17:8e:aa:dd:09:c7:6a:8c:5c:
3b:02:b5:9f:0e:98:e6:dd:28:6e:8f:0d:59:b9:a8:55:3c:b6:
ba:51:97:88:77:b2:e1:0c:e8:dd:6b:a0:55:67:f5:13:f7:5a:
d9:17:46:44:d4:74:d6:2f:f5:be:5f:b8:e3:af:f6:38:f8:f2:
5f:b2:f9:b8:27:c1:9d:ff:97:16:9d:63:cb:f0:2e:cb:71:e8:
c1:cb:eb:18:ec:64:af:a3:b2:16:5c:ee:19:1f:79:3a:c6:65:
83:31:23:92:0a:5f:13:93:fe:95:4c:54:f6:bc:df:80:03:b2:
2f:46:d9:2d:4d:b1:7c:ef:c0:55:12:f6:30:eb:05:8d:d0:26:
62:83:3e:93:74:aa:0b:97:c2:b4:eb:40:e8:23:e2:92:13:93:
aa:e8:94:65:33:e0:8d:19:c2:67:57:05:40:b9:a1:b5:5d:9f:
ef:32:87:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:46 2023 by rpki-client on console-ams.rpki-client.org