Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/amcADjaFJvh2JY07987N9FhhlvM.roa
File: amcADjaFJvh2JY07987N9FhhlvM.roa (raw, json)
Hash identifier: xyg6D2o/v6vm4gtg0ycR4hQ2rr+jym3Pz1KIpG4FndU=
Subject key identifier: 6A:67:00:0E:36:85:26:F8:76:25:8D:3B:F7:CE:CD:F4:58:61:96:F3
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 0AD839C3
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/amcADjaFJvh2JY07987N9FhhlvM.roa
Signing time: Wed 12 Jan 2022 15:11:47 +0000
ROA not before: Wed 12 Jan 2022 15:11:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210658
IP address blocks: 185.169.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181942723 (0xad839c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Jan 12 15:11:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a67000e368526f876258d3bf7cecdf4586196f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5f:15:e9:7e:2f:fd:13:e6:bd:f7:84:66:5d:
fd:90:1f:f4:a8:b9:89:99:26:6f:02:f6:81:b3:4f:
af:23:2e:0f:e6:b4:53:71:dd:12:59:9f:3e:9a:42:
97:2f:52:f9:72:b9:07:f7:b6:c9:c1:87:98:af:5f:
33:6a:da:18:78:c0:2b:b3:80:91:11:81:5b:00:26:
ee:46:d5:2b:6f:73:69:79:be:57:31:32:ef:c4:8f:
bc:ac:38:be:1b:41:24:98:42:ff:f5:9c:06:eb:e0:
a9:1d:da:c6:77:09:01:2c:2d:96:0b:6f:f5:c3:e2:
df:41:8f:04:29:8f:e8:9b:16:86:db:ab:08:5b:86:
34:0e:09:5d:3c:ea:82:25:e1:ba:ba:eb:43:99:e1:
3c:02:8b:26:9a:b7:c8:d5:f6:30:a5:3e:69:9f:5f:
22:c5:04:2a:9d:7c:15:7e:ec:d5:9c:0d:d3:c9:62:
77:ad:ee:bc:c9:e0:69:58:34:3c:9e:bd:ed:b9:47:
d8:15:ad:42:b0:32:3e:f2:a0:18:c2:03:be:af:88:
2f:97:b9:db:b9:3c:0e:80:5b:a0:bb:3c:0b:60:6b:
35:f0:5e:ee:48:9e:77:f8:09:a0:69:5b:d7:fb:ab:
c3:90:c7:c4:cc:87:7e:50:68:2f:73:55:f9:8d:49:
16:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:67:00:0E:36:85:26:F8:76:25:8D:3B:F7:CE:CD:F4:58:61:96:F3
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/amcADjaFJvh2JY07987N9FhhlvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.183.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:ca:18:1e:79:e1:7f:f9:fb:36:b3:11:58:bb:ca:92:a1:42:
19:53:4f:d5:36:3f:c5:f4:3a:fa:8b:95:f3:df:73:b8:18:95:
96:80:a1:02:0b:2e:83:3a:6a:b0:2f:8f:66:d8:48:db:24:44:
0c:4f:fc:bc:1e:f1:0d:ca:e3:19:38:fe:a5:20:7c:75:34:b5:
08:a2:06:c1:6a:22:05:06:a3:0c:67:10:ab:67:dc:83:db:33:
4e:83:aa:5a:73:d8:6d:30:7d:99:72:b9:86:8b:fc:93:b7:15:
70:86:36:c0:e6:ad:75:bc:8c:33:43:29:55:ab:0f:93:9a:9a:
91:87:1d:0d:c9:19:37:1b:9a:48:9e:35:51:a8:7b:b2:30:11:
58:9b:e2:25:15:c4:8f:b2:9a:d7:42:22:f1:d1:ee:aa:9e:3c:
eb:b3:e9:d8:23:17:8a:da:f4:22:d8:44:f5:b7:80:fe:f3:f6:
22:d6:85:33:d7:39:79:97:6e:27:45:8d:cd:73:af:2f:e1:e4:
31:c4:4f:ac:7b:ab:f4:b9:c4:5b:cb:78:f7:ee:1b:4f:08:84:
7a:88:56:88:d9:47:43:eb:c1:c9:03:82:f8:85:be:a0:ac:03:
e6:5e:c4:18:ef:b2:6c:40:6e:4c:fb:61:a0:df:1f:d9:f8:96:
13:a0:8d:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:49 2024 by rpki-client on console-fra.rpki-client.org