Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/o77VTWWJR-UTT2jWBm_nDAoMhls.roa
File: o77VTWWJR-UTT2jWBm_nDAoMhls.roa (raw, json)
Hash identifier: Tpy19R/ocfyWdpLKOTfnKVgaysJK3oopMf6zkpAlAXU=
Subject key identifier: A3:BE:D5:4D:65:89:47:E5:13:4F:68:D6:06:6F:E7:0C:0A:0C:86:5B
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 0C4B8971
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/o77VTWWJR-UTT2jWBm_nDAoMhls.roa
Signing time: Wed 22 Jun 2022 15:07:32 +0000
ROA not before: Wed 22 Jun 2022 15:07:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 185.148.242.0/24 maxlen: 24
185.148.241.0/24 maxlen: 24
185.148.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206276977 (0xc4b8971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Jun 22 15:07:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3bed54d658947e5134f68d6066fe70c0a0c865b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:65:a5:23:87:b2:cd:70:3f:74:42:f5:56:82:
94:36:9b:85:ce:0b:4e:c9:d6:c8:9f:8c:4b:3d:c6:
11:91:08:73:b9:5d:95:bf:37:d5:44:92:dc:9f:38:
1b:7c:34:f2:84:53:91:ba:6a:45:ec:e3:dc:78:50:
fd:15:86:5b:17:b6:5d:c9:f0:81:a3:fb:2d:7a:12:
43:b3:7e:15:da:12:ef:6f:e3:4a:75:ba:75:e7:51:
a9:07:e5:ea:be:82:91:2e:fa:60:be:24:75:e3:32:
9b:a1:10:e4:44:21:22:e2:2f:0c:b9:b8:42:2c:60:
7a:68:ef:5f:4f:e5:e3:ae:e1:5d:12:1b:33:96:9d:
ac:15:94:43:7c:9c:30:de:21:8f:f6:bf:3b:9f:a0:
a3:82:43:d2:14:8d:b5:1b:0f:6b:0b:4c:2d:17:f4:
5a:8b:5c:5a:7b:93:ae:78:f4:f9:08:56:40:5f:6c:
d6:d3:ce:3d:40:5b:ef:58:0f:dd:61:6a:66:db:f9:
ea:e7:1f:1c:55:65:8b:b7:88:1a:53:7e:b6:58:0e:
39:9c:4c:3f:6f:52:5a:49:dc:f6:44:0b:80:38:c3:
66:85:e4:13:e0:4f:90:e0:6b:89:31:3b:b3:3d:dd:
d0:dc:05:42:82:e3:01:80:b3:e6:d2:a9:6c:4e:70:
c4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:BE:D5:4D:65:89:47:E5:13:4F:68:D6:06:6F:E7:0C:0A:0C:86:5B
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/o77VTWWJR-UTT2jWBm_nDAoMhls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.241.0-185.148.243.255
Signature Algorithm: sha256WithRSAEncryption
76:c3:b4:e5:07:c2:78:01:29:74:9c:79:ab:5b:0e:12:fc:b6:
e3:4c:2d:9e:88:14:b9:05:8f:ab:4b:57:a3:99:c5:32:8f:4e:
c9:96:0e:6b:e6:4c:b0:af:86:2a:9e:cf:73:cb:93:b6:f8:9d:
81:3b:84:35:d7:c6:0b:79:74:e2:4e:f0:75:98:f5:d4:ce:ed:
22:a6:d4:be:c3:69:18:33:dc:6b:7a:66:c4:55:d2:2d:d8:f9:
2b:d3:0e:ce:9c:ec:1a:e6:0e:b1:46:79:92:75:6b:28:75:6d:
6b:f5:78:5e:7a:f0:d8:66:8a:23:c2:99:56:4e:9f:d8:de:79:
96:6a:5f:16:10:f3:96:a2:51:32:c5:9d:19:c8:1c:82:1c:6d:
a1:34:85:c4:87:74:8d:d5:b9:ca:b7:45:6c:50:d0:3b:44:2c:
d7:cd:68:a9:0a:1f:2f:24:d2:0d:f7:c4:8f:09:d1:95:c3:fb:
0b:f4:b1:27:e8:69:a6:f7:8c:e6:f1:37:0e:9c:22:38:c1:ac:
ef:3a:16:39:ac:26:55:cb:9d:f3:52:d9:8c:8e:5c:c1:cd:bf:
97:1d:07:53:96:92:51:c1:0f:c0:9e:90:18:2d:39:d2:70:b9:
6e:91:85:6d:c9:8f:b9:6b:72:e1:37:c5:80:c6:62:60:27:7c:
a8:bf:3a:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:44 2023 by rpki-client on console-fra.rpki-client.org