Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/c425fd-980a-4646-a162-9c2914ef8753/1/7ZLOycupj_Lda84QZQSIpBc63-s.roa
File: 7ZLOycupj_Lda84QZQSIpBc63-s.roa (raw, json)
Hash identifier: xEJbbC/33IfPxyNtHvI2uWplQ6M2yKmxNL3irlC1sOM=
Subject key identifier: ED:92:CE:C9:CB:A9:8F:F2:DD:6B:CE:10:65:04:88:A4:17:3A:DF:EB
Certificate issuer: /CN=454bef73c5a47687b2b5c5276b0dbc070bb9cb50
Certificate serial: 0183CD06C77B17151D46CAB42B0D217FAAC8
Authority key identifier: 45:4B:EF:73:C5:A4:76:87:B2:B5:C5:27:6B:0D:BC:07:0B:B9:CB:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RUvvc8WkdoeytcUnaw28Bwu5y1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/c425fd-980a-4646-a162-9c2914ef8753/1/7ZLOycupj_Lda84QZQSIpBc63-s.roa
Signing time: Wed 12 Oct 2022 16:28:36 +0000
ROA not before: Wed 12 Oct 2022 16:28:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3561
IP address blocks: 185.253.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cd:06:c7:7b:17:15:1d:46:ca:b4:2b:0d:21:7f:aa:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=454bef73c5a47687b2b5c5276b0dbc070bb9cb50
Validity
Not Before: Oct 12 16:28:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed92cec9cba98ff2dd6bce10650488a4173adfeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8a:62:f5:e7:42:1c:7f:c9:90:85:a7:5f:b1:
23:b4:29:d6:b9:52:7d:0b:19:ef:e0:de:f1:c5:e1:
72:60:cf:a1:6f:56:8c:c1:f4:dc:77:9d:47:0e:aa:
34:8e:ad:8e:01:cb:80:74:1a:58:60:7e:9d:ef:63:
5d:f5:33:0e:93:32:03:76:75:26:d1:34:26:56:6e:
82:e4:5c:f4:3f:34:d0:f7:25:e3:1d:06:56:c3:5b:
19:a8:64:32:82:63:75:2e:86:3c:28:87:a7:8d:14:
7f:00:a1:cd:67:d6:ba:fd:51:a9:84:e7:6d:8f:45:
38:a4:7d:66:1a:1b:54:69:4e:5d:cd:35:33:25:99:
de:0d:aa:68:e7:27:e5:c3:ab:0c:57:cb:8d:26:0e:
27:31:f6:b7:07:45:5b:bb:15:e8:9e:c9:19:fb:cc:
c1:29:b9:dc:48:be:23:0b:80:d0:0c:f0:18:d9:c2:
d9:4f:4e:41:77:46:9b:11:a0:35:fb:fa:79:7b:bc:
39:a8:2e:e2:1c:0e:ea:b9:7a:78:e4:4d:25:a6:fd:
a0:82:67:22:b3:da:5b:c9:97:79:a4:db:8f:29:9c:
67:a3:50:16:52:1c:aa:9a:54:d5:40:26:83:06:38:
3b:88:9f:30:ca:93:58:24:e9:2a:53:56:a1:d0:30:
8d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:92:CE:C9:CB:A9:8F:F2:DD:6B:CE:10:65:04:88:A4:17:3A:DF:EB
X509v3 Authority Key Identifier:
keyid:45:4B:EF:73:C5:A4:76:87:B2:B5:C5:27:6B:0D:BC:07:0B:B9:CB:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RUvvc8WkdoeytcUnaw28Bwu5y1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/c425fd-980a-4646-a162-9c2914ef8753/1/7ZLOycupj_Lda84QZQSIpBc63-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/c425fd-980a-4646-a162-9c2914ef8753/1/RUvvc8WkdoeytcUnaw28Bwu5y1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.3.0/24
Signature Algorithm: sha256WithRSAEncryption
51:16:a9:fb:12:18:5b:83:67:ec:04:c6:d0:60:bb:af:44:73:
00:81:a5:ea:c4:27:3e:09:77:ce:d3:8f:c1:3e:42:7e:b2:2c:
49:b9:22:32:40:fd:47:ee:02:57:bf:be:28:6c:13:0f:b2:22:
06:06:1c:e3:b1:b8:71:e8:d8:3e:da:12:6e:25:19:ed:5b:d5:
37:a9:00:72:6f:62:f0:bb:74:79:f9:75:c5:c7:8a:99:fc:57:
da:0a:53:32:d0:aa:d1:13:d2:7d:ac:a0:4e:75:10:16:3d:da:
62:38:cd:99:7d:c2:bb:e3:02:54:af:43:e0:01:3d:2f:09:c8:
da:8b:ff:97:4c:3e:35:eb:d6:19:35:17:9b:73:06:90:d5:38:
f7:b8:12:dc:35:93:d6:9b:e3:94:2a:ad:75:18:a7:35:35:91:
00:f5:2f:b5:9f:f3:b1:da:67:b8:93:37:de:d3:15:36:aa:3c:
42:73:95:06:7b:b8:f6:a8:8d:94:d3:0e:c4:b1:d4:1f:cc:c5:
4d:ce:a8:46:2f:f0:a5:14:4f:a4:37:cf:6b:21:e0:11:7d:db:
20:36:64:00:46:32:ab:3b:ff:e2:30:dc:b4:3e:b0:2d:fb:a4:
03:82:95:f3:da:e8:18:cd:e6:6d:c0:bf:65:1a:18:36:d0:77:
0c:dd:53:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:56 2023 by rpki-client on console-fra.rpki-client.org