Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/tP-Smnlg_O7yEVgq0jmfzmgxJJY.roa
File: tP-Smnlg_O7yEVgq0jmfzmgxJJY.roa (raw, json)
Hash identifier: ZeqZ4GzSgs67JeAOQrOV5bWrUqvPvAKSCymvrlktuf8=
Subject key identifier: B4:FF:92:9A:79:60:FC:EE:F2:11:58:2A:D2:39:9F:CE:68:31:24:96
Certificate issuer: /CN=21c73a5d8ec63bed658a38f5c26f191fdd74df92
Certificate serial: 10743B29
Authority key identifier: 21:C7:3A:5D:8E:C6:3B:ED:65:8A:38:F5:C2:6F:19:1F:DD:74:DF:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/tP-Smnlg_O7yEVgq0jmfzmgxJJY.roa
Signing time: Sat 01 Jan 2022 07:58:59 +0000
ROA not before: Sat 01 Jan 2022 07:58:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40551
IP address blocks: 185.22.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276052777 (0x10743b29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21c73a5d8ec63bed658a38f5c26f191fdd74df92
Validity
Not Before: Jan 1 07:58:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4ff929a7960fceef211582ad2399fce68312496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d7:a0:ce:11:da:78:14:09:8e:51:3d:e2:a9:
1f:5f:ea:73:71:de:8f:bc:9f:f9:58:04:e2:0e:50:
fe:fc:ad:23:10:9f:99:c4:7d:fb:10:ef:aa:c1:cc:
01:f1:95:46:ea:fd:2f:0c:a7:14:4f:79:8c:4d:7c:
3c:d8:b3:0c:fd:ec:14:06:f0:93:51:0e:50:8d:fa:
81:0f:c7:b9:48:06:aa:bb:7c:a0:70:f1:d8:1e:12:
dd:b9:38:97:65:ea:1d:e7:68:37:df:e8:ed:c2:14:
2c:50:8b:00:81:4f:07:8d:f8:47:f4:85:8e:b4:e8:
d6:93:a9:6f:ee:4f:29:76:f8:df:eb:99:aa:67:8c:
a8:fd:18:c7:7f:29:c4:7e:c3:97:b4:6d:68:52:82:
dd:10:09:f7:7c:78:b1:47:e4:40:72:86:b8:6e:43:
41:16:03:b8:0b:54:97:9d:92:28:34:f3:7a:d5:4f:
62:1d:99:0b:d3:74:a5:67:b2:2c:3d:87:8f:4f:bd:
b5:8c:79:c6:77:32:66:19:d1:13:1c:20:f4:5c:45:
cb:59:e2:e4:bf:d4:da:63:47:92:89:e9:b5:83:83:
31:0e:97:a3:7e:0a:81:69:ed:b3:c2:49:4e:f8:e3:
1a:dc:d4:21:1e:f4:ce:f1:a0:f9:98:bb:30:c0:2b:
e4:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:FF:92:9A:79:60:FC:EE:F2:11:58:2A:D2:39:9F:CE:68:31:24:96
X509v3 Authority Key Identifier:
keyid:21:C7:3A:5D:8E:C6:3B:ED:65:8A:38:F5:C2:6F:19:1F:DD:74:DF:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/tP-Smnlg_O7yEVgq0jmfzmgxJJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.83.0/24
Signature Algorithm: sha256WithRSAEncryption
01:b4:c2:0a:d1:85:7a:c0:62:69:82:01:e4:26:71:7c:2f:86:
88:e0:52:ea:d6:4c:ec:83:69:64:57:61:63:d2:ab:25:17:e5:
14:25:79:6d:1f:38:27:61:6c:6e:5c:cb:8f:2f:a0:17:66:31:
67:7a:23:23:25:8a:a6:ab:0f:2f:05:81:e5:76:1b:50:e4:98:
c0:80:02:54:81:a8:e2:fa:ad:12:df:4d:39:ba:07:65:fa:06:
f3:58:b0:1a:15:f5:84:d0:a6:75:ed:58:d0:eb:4e:dc:ca:a2:
1a:61:84:09:1e:a7:0e:bd:43:7a:4b:dc:50:89:db:9d:5e:70:
0c:32:63:00:ae:2e:53:a4:be:af:42:69:4b:39:a6:86:65:6c:
41:53:e4:14:4c:9b:c1:03:a8:0c:06:e0:11:08:03:0c:6e:33:
38:03:73:82:64:9c:c6:ef:54:9e:f2:36:b3:ff:04:99:6a:5c:
b8:f9:47:c4:22:06:45:6c:3b:06:50:13:88:34:14:b9:3a:55:
6a:b5:22:77:92:15:0e:79:6e:ed:4d:44:6c:c4:f4:14:a6:36:
41:94:c3:da:38:86:0a:fb:eb:ff:18:fd:7d:5e:2b:79:17:7f:
8d:eb:73:17:46:e7:24:d9:e7:c7:aa:fa:e7:cb:71:8b:70:f7:
97:e2:a1:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:35 2023 by rpki-client on console-fra.rpki-client.org