Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/247ee2-2365-4768-977f-fefa1abaedcf/1/k-mSpGTD35XT7pYdRityYNcqAz4.roa
File: k-mSpGTD35XT7pYdRityYNcqAz4.roa (raw, json)
Hash identifier: MT/zkW/7tGh7oyrdJEdQurgZLydTKKRLnzNo6X6C+pU=
Subject key identifier: 93:E9:92:A4:64:C3:DF:95:D3:EE:96:1D:46:2B:72:60:D7:2A:03:3E
Certificate issuer: /CN=4dbd0b135a7dfd6b6aa1b1849eb163402de8e1b1
Certificate serial: 037675D3
Authority key identifier: 4D:BD:0B:13:5A:7D:FD:6B:6A:A1:B1:84:9E:B1:63:40:2D:E8:E1:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tb0LE1p9_WtqobGEnrFjQC3o4bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/247ee2-2365-4768-977f-fefa1abaedcf/1/k-mSpGTD35XT7pYdRityYNcqAz4.roa
Signing time: Sat 01 Jan 2022 15:02:20 +0000
ROA not before: Sat 01 Jan 2022 15:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44874
IP address blocks: 185.217.165.0/24 maxlen: 24
2a10:d700::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58095059 (0x37675d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dbd0b135a7dfd6b6aa1b1849eb163402de8e1b1
Validity
Not Before: Jan 1 15:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93e992a464c3df95d3ee961d462b7260d72a033e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:62:a3:44:42:ce:b5:31:d5:b4:e5:c1:3f:08:
e8:05:f6:50:64:cf:d9:af:99:4f:41:b3:8a:0e:a3:
d0:b2:35:8c:bb:71:3b:98:24:97:10:0c:ea:95:19:
a6:d2:cc:08:6c:e9:aa:43:78:c3:dc:41:85:c3:2d:
15:7d:7d:29:db:fa:49:d1:72:3e:bf:25:54:40:0e:
9f:41:e5:6b:56:32:46:99:47:fb:6c:dd:dd:1f:ed:
37:50:22:41:1e:f6:47:4e:e4:39:74:5d:e6:be:ad:
d4:c5:db:48:63:a1:f8:74:be:71:49:79:78:de:89:
53:3e:cf:46:93:ae:c6:e4:c2:fe:f3:67:24:d6:fa:
91:83:f8:b9:a8:2d:66:ec:31:9d:57:6e:1e:c4:78:
7c:39:11:31:35:3e:3b:cb:7c:89:fa:3c:1c:72:ca:
c6:a6:d5:c1:89:77:f1:12:d5:de:ef:4b:51:95:6b:
ed:6f:6a:de:c3:16:f3:0e:f6:72:e4:e3:7d:22:45:
ee:2f:25:fb:84:a1:97:10:2c:b6:01:a3:ee:3a:36:
3d:db:fc:e3:89:86:fd:ad:3b:f8:e5:56:c4:09:dd:
a8:be:32:db:bb:f2:29:66:72:68:c8:4e:f6:dc:83:
7c:1b:4d:f8:97:fa:1b:59:38:42:8e:8b:36:c0:95:
ab:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E9:92:A4:64:C3:DF:95:D3:EE:96:1D:46:2B:72:60:D7:2A:03:3E
X509v3 Authority Key Identifier:
keyid:4D:BD:0B:13:5A:7D:FD:6B:6A:A1:B1:84:9E:B1:63:40:2D:E8:E1:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tb0LE1p9_WtqobGEnrFjQC3o4bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/247ee2-2365-4768-977f-fefa1abaedcf/1/k-mSpGTD35XT7pYdRityYNcqAz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/247ee2-2365-4768-977f-fefa1abaedcf/1/Tb0LE1p9_WtqobGEnrFjQC3o4bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.165.0/24
IPv6:
2a10:d700::/29
Signature Algorithm: sha256WithRSAEncryption
52:49:ae:f0:e5:ab:84:02:a7:1b:c5:4b:1d:c9:e0:0f:a0:81:
26:52:2a:28:6b:43:56:76:e5:ab:3a:13:d8:6b:48:20:fc:b2:
d6:7f:22:f7:eb:e7:aa:12:7e:df:1e:6c:71:58:5e:bc:5a:fd:
dd:92:c2:00:f5:d7:32:e3:13:17:ff:d5:03:90:58:a6:76:16:
3c:b6:88:01:4d:9e:bf:7b:75:f1:f0:ca:ac:e0:63:73:ed:e1:
d5:21:2f:03:69:f6:30:06:58:13:39:72:c8:a2:91:2d:19:e3:
74:d8:92:6d:68:ed:ce:7d:d3:3d:b5:9e:14:3d:45:1d:4e:38:
71:b0:fb:a0:83:26:d8:16:bf:af:bb:68:e1:2c:4d:c3:3a:dd:
7c:39:23:34:8a:fc:98:5b:d9:e3:a1:bf:24:64:bc:be:43:a9:
39:35:4e:1f:ec:6b:03:ca:20:ff:5a:0b:56:70:5b:f0:16:c5:
3d:a4:ac:4d:53:b3:11:41:84:31:d1:13:d2:48:fe:c3:d4:8c:
f6:89:44:c8:c7:39:6a:2d:99:66:26:c7:ee:65:55:aa:ee:d5:
18:df:28:c5:6e:5b:a3:b7:45:d4:07:c0:fd:7c:1c:31:1d:45:
0f:6c:ea:b2:40:0c:5b:6b:4f:53:fa:33:6f:91:2e:5f:e8:56:
cd:a7:9a:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:17 2023 by rpki-client on console-ams.rpki-client.org