Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/bd4e5c-4147-4131-8750-33a82ab5f513/1/pLhTrlihToYizO_8kSRTfiYL3o0.roa
File: pLhTrlihToYizO_8kSRTfiYL3o0.roa (raw, json)
Hash identifier: Z+GCjkH8ib1Rw3x10Uu4mnXc2o5I482Kbcqgv1FhW08=
Subject key identifier: A4:B8:53:AE:58:A1:4E:86:22:CC:EF:FC:91:24:53:7E:26:0B:DE:8D
Certificate issuer: /CN=d1c4913094a21268c73a67653a3738d73e5c59a7
Certificate serial: 05B77892
Authority key identifier: D1:C4:91:30:94:A2:12:68:C7:3A:67:65:3A:37:38:D7:3E:5C:59:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0cSRMJSiEmjHOmdlOjc41z5cWac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/bd4e5c-4147-4131-8750-33a82ab5f513/1/pLhTrlihToYizO_8kSRTfiYL3o0.roa
Signing time: Wed 02 Mar 2022 09:59:33 +0000
ROA not before: Wed 02 Mar 2022 09:59:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39120
IP address blocks: 185.112.60.0/24 maxlen: 24
185.112.62.0/24 maxlen: 24
185.112.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95910034 (0x5b77892)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1c4913094a21268c73a67653a3738d73e5c59a7
Validity
Not Before: Mar 2 09:59:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4b853ae58a14e8622cceffc9124537e260bde8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:70:9e:e3:0c:cf:0c:d0:c2:b8:93:25:66:35:
ea:76:a3:6d:25:23:2f:ca:42:ed:03:56:be:79:f0:
22:b6:d6:bb:3a:c2:6a:01:4a:80:1b:b0:7d:e2:57:
29:a1:cf:44:70:25:a2:49:12:ec:10:20:58:aa:43:
6d:f7:6e:42:db:77:1b:15:e1:59:be:73:b3:44:85:
a5:54:79:98:3f:66:48:92:f5:9e:80:6f:5c:92:4b:
50:d0:87:51:7d:d9:75:a5:a4:2e:50:c8:98:70:f8:
ae:20:65:cb:1e:fb:c5:6e:3b:a0:c1:49:22:51:15:
70:29:ba:da:c7:90:76:fc:45:fa:e3:da:fb:5e:ed:
f1:25:c9:85:63:9e:95:3d:28:05:59:08:bf:d0:12:
af:6e:f3:cb:2f:42:4a:a1:86:29:73:b2:e7:ab:87:
59:e8:43:f2:d9:ec:45:e9:93:80:72:e1:a7:e6:de:
2e:ba:73:ed:f4:93:fe:45:e8:63:de:2f:e4:11:4c:
33:cd:b9:1a:fd:03:fd:45:c2:17:14:3c:a5:f2:16:
85:18:8f:aa:d2:29:84:f6:d3:76:69:34:65:79:51:
7a:69:80:4f:c1:b4:45:76:95:a1:c1:ed:33:70:4b:
c5:31:79:6e:bf:c9:16:28:6d:11:c8:5f:1b:f8:bd:
46:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:B8:53:AE:58:A1:4E:86:22:CC:EF:FC:91:24:53:7E:26:0B:DE:8D
X509v3 Authority Key Identifier:
keyid:D1:C4:91:30:94:A2:12:68:C7:3A:67:65:3A:37:38:D7:3E:5C:59:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0cSRMJSiEmjHOmdlOjc41z5cWac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/bd4e5c-4147-4131-8750-33a82ab5f513/1/pLhTrlihToYizO_8kSRTfiYL3o0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/bd4e5c-4147-4131-8750-33a82ab5f513/1/0cSRMJSiEmjHOmdlOjc41z5cWac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.60.0-185.112.62.255
Signature Algorithm: sha256WithRSAEncryption
7e:34:28:39:0a:3c:57:3b:7d:23:25:5b:24:ad:f0:cb:e2:b3:
1d:90:bf:0f:18:54:11:05:a0:e1:2c:89:fd:ed:c2:e1:e2:4a:
cd:ef:52:1f:34:41:c0:c5:6a:cb:2e:5b:dc:26:54:21:ca:26:
59:fa:27:e1:1a:90:14:7f:15:8e:39:8a:de:e0:7b:99:61:f0:
50:c5:52:ec:c7:33:16:61:85:67:dc:a8:0b:1e:23:c0:82:a9:
9a:70:2e:c4:02:c6:05:20:50:34:b1:91:a0:f1:dc:51:47:34:
cc:95:24:44:be:93:ef:a2:81:29:a4:f8:8a:20:81:8a:dd:74:
b2:88:00:5a:a9:36:b6:a5:68:6e:75:fe:bd:78:93:69:13:b5:
37:50:5a:0a:0a:f4:84:82:04:e2:2d:ca:5b:e0:62:69:de:20:
79:7b:fd:3d:58:51:82:dd:e0:4e:7e:4f:52:f4:ac:25:9f:a0:
9a:03:cc:ad:9e:9e:6b:cc:67:32:de:fb:9c:05:f8:b1:36:c5:
65:ad:e5:40:9a:de:4a:c0:ab:7a:3c:a5:23:e3:1d:3e:c7:ef:
7b:90:41:09:ba:56:61:6d:c5:be:0e:c6:11:6e:8e:39:e5:ab:
41:8e:a5:bc:32:b3:7f:d5:37:78:39:48:9b:95:6d:4a:f9:18:
a3:b9:7e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:01 2023 by rpki-client on console-fra.rpki-client.org