Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/95aa24-e84f-4245-9227-dec68083f8f6/1/977GKTNeOFtGSsj1GjQBfh4XqKA.roa
File: 977GKTNeOFtGSsj1GjQBfh4XqKA.roa (raw, json)
Hash identifier: sw+eHmaHhcMf1ytspxI1f71BqysKvDlt5wLfzE9AWTE=
Subject key identifier: F7:BE:C6:29:33:5E:38:5B:46:4A:C8:F5:1A:34:01:7E:1E:17:A8:A0
Certificate issuer: /CN=a817c7453f377e9cb6fae5c893c067a3e1d35145
Certificate serial: 0306B0
Authority key identifier: A8:17:C7:45:3F:37:7E:9C:B6:FA:E5:C8:93:C0:67:A3:E1:D3:51:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBfHRT83fpy2-uXIk8Bno-HTUUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/95aa24-e84f-4245-9227-dec68083f8f6/1/977GKTNeOFtGSsj1GjQBfh4XqKA.roa
Signing time: Mon 10 Jan 2022 14:14:03 +0000
ROA not before: Mon 10 Jan 2022 14:14:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15589
IP address blocks: 185.210.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198320 (0x306b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a817c7453f377e9cb6fae5c893c067a3e1d35145
Validity
Not Before: Jan 10 14:14:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7bec629335e385b464ac8f51a34017e1e17a8a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:9f:d6:2d:13:ee:2f:a4:aa:88:26:f7:25:3a:
19:d7:3b:d7:c9:c4:ab:8a:30:3b:68:b6:fb:56:4d:
f7:dc:1a:ae:86:00:3c:7b:05:c4:ab:cc:49:51:f7:
99:c4:e0:9f:b5:ac:a2:83:5a:ae:18:23:f3:bb:a4:
9a:11:94:b4:f8:bf:a7:e3:69:0c:00:ef:c9:31:4e:
9a:d0:05:92:83:4f:61:51:0e:b7:50:81:d1:09:22:
2e:78:8f:ca:d8:88:b6:b3:3f:ee:63:0d:cc:ad:a6:
64:be:8d:b0:7a:a3:71:62:af:93:a8:3b:08:21:bd:
c4:98:03:12:eb:45:8e:bc:c2:20:ec:65:cf:c0:38:
6b:3c:d1:bf:6d:18:cc:df:4d:d5:c6:1d:22:31:9c:
94:fd:4e:18:98:28:b1:89:f9:d1:9a:00:b0:23:04:
17:3b:41:42:25:d3:ef:51:18:39:e9:8c:ac:ce:af:
97:86:53:3e:7d:28:c7:b1:2e:4c:35:95:35:2c:19:
2d:cb:f9:66:8e:11:8f:9c:37:2c:d3:16:a5:c5:11:
09:29:59:a6:88:95:7c:f7:b3:a8:e6:41:f8:fa:67:
26:20:04:ad:e7:53:b4:96:05:31:6d:a5:aa:48:0a:
61:51:0b:a7:58:ae:ff:99:72:50:7b:39:fd:e0:33:
d4:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:BE:C6:29:33:5E:38:5B:46:4A:C8:F5:1A:34:01:7E:1E:17:A8:A0
X509v3 Authority Key Identifier:
keyid:A8:17:C7:45:3F:37:7E:9C:B6:FA:E5:C8:93:C0:67:A3:E1:D3:51:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBfHRT83fpy2-uXIk8Bno-HTUUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/95aa24-e84f-4245-9227-dec68083f8f6/1/977GKTNeOFtGSsj1GjQBfh4XqKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/95aa24-e84f-4245-9227-dec68083f8f6/1/qBfHRT83fpy2-uXIk8Bno-HTUUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.172.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:81:56:a9:7b:bf:54:ea:69:73:dd:d1:7c:da:6f:c3:ea:02:
80:04:54:83:66:b3:dd:6e:44:81:fa:35:72:7d:04:be:b7:49:
0d:1b:25:19:fb:f5:9e:ca:59:1f:b0:03:48:28:29:b4:eb:f4:
d2:f5:61:61:21:66:f6:37:88:22:94:8c:93:c2:6f:31:fc:b5:
45:46:bb:b9:11:57:76:50:d8:86:51:0e:35:59:17:02:a3:c4:
7d:cb:81:78:67:d2:a1:9d:5b:24:f5:4d:74:a8:fe:e2:8d:8f:
b9:bc:e0:1f:19:bb:b7:db:ef:76:bd:c6:ba:b4:02:17:68:13:
6e:08:c7:5b:ac:e5:8b:64:59:f6:4d:bb:b6:56:11:97:53:62:
88:dc:13:79:f5:b6:93:88:ab:1f:6d:7c:a9:e4:fd:d8:10:72:
86:9d:9a:51:75:e0:f9:69:4e:7b:35:a3:38:95:dc:ca:5d:c9:
09:2d:75:1a:f9:d8:28:63:37:e6:db:cb:56:5e:de:1e:7a:d1:
dc:52:fa:8f:53:c6:2f:d3:9b:1d:73:d5:f3:24:28:d7:c2:e4:
08:c5:1e:6b:73:1c:de:aa:68:4e:4e:5f:d0:78:44:ec:cd:22:
e8:68:9e:70:3d:49:c9:e6:b4:53:d6:47:d3:b4:27:6b:6f:b6:
1a:75:55:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:19 2024 by rpki-client on console-ams.rpki-client.org