Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/1-Fcz0qlGDHGOzUBanOAGP-f9fgQ.roa
File: 1-Fcz0qlGDHGOzUBanOAGP-f9fgQ.roa (raw, json)
Hash identifier: gZSKMU7NZSEslDcC4pulJLAdeqoOARrpyITgRi24W+M=
Subject key identifier: F8:57:33:D2:A9:46:0C:71:8E:CD:40:5A:9C:E0:06:3F:E7:FD:7E:04
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 495F64DF
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/1-Fcz0qlGDHGOzUBanOAGP-f9fgQ.roa
Signing time: Wed 30 Mar 2022 08:20:44 +0000
ROA not before: Wed 30 Mar 2022 08:20:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50673
IP address blocks: 146.185.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1230988511 (0x495f64df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Mar 30 08:20:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f85733d2a9460c718ecd405a9ce0063fe7fd7e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:35:1b:12:e3:42:ce:14:c4:20:0b:a3:d6:d3:
d9:46:05:83:68:23:39:b3:27:3a:f7:ab:0a:23:38:
0f:c7:13:57:f5:52:27:cd:ab:6a:4d:e2:92:5f:52:
e3:df:70:80:ba:c1:f6:ca:62:7e:93:d9:19:be:f6:
32:07:29:74:82:fb:af:ea:4b:ab:44:02:80:d7:e8:
51:90:b4:3b:70:cc:62:65:58:2f:34:fa:54:3d:ea:
09:9a:ff:63:85:0a:1c:c3:09:fe:de:eb:92:66:13:
9e:d2:fb:0d:40:d1:c1:45:d6:d1:d4:d3:0c:d8:69:
a5:e2:a5:d3:ff:f4:dd:e1:22:9b:58:79:9a:c7:03:
46:97:56:f0:a9:60:a1:b1:b5:02:cd:40:04:8c:be:
bf:9d:5c:35:f7:f8:c4:26:db:45:cd:44:6c:2a:a4:
cb:c4:3a:16:d1:2e:30:95:6f:6d:99:5b:7b:59:94:
71:58:f4:28:91:60:ad:80:0f:1f:53:8b:a4:cd:5c:
24:6c:77:92:f4:fc:7c:a5:e7:db:25:c1:1c:53:f6:
e0:8f:d9:26:42:33:5e:b6:39:1e:08:da:d1:03:21:
c1:81:c1:5e:a5:68:8a:7e:e5:00:b5:ed:96:ff:50:
1e:c6:07:82:3d:21:cd:5c:ee:fc:9d:79:0b:d0:e9:
de:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:57:33:D2:A9:46:0C:71:8E:CD:40:5A:9C:E0:06:3F:E7:FD:7E:04
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/1-Fcz0qlGDHGOzUBanOAGP-f9fgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.185.253.0/24
Signature Algorithm: sha256WithRSAEncryption
14:aa:b0:37:f3:65:72:78:b0:90:6f:ea:a8:f1:b5:2c:a8:24:
89:db:5a:11:96:b3:12:d7:d8:c7:86:e8:b9:1b:8a:f8:e9:f9:
1e:6d:ad:c3:cc:a6:6a:f2:8c:db:20:00:15:81:15:b1:0c:be:
65:c5:b7:1f:3d:55:9f:04:b6:d5:24:9f:b0:13:6d:21:d8:49:
a8:96:98:68:4a:e5:c9:29:af:0e:8c:33:99:b1:ae:ab:11:4f:
ad:dc:5a:87:c1:0b:8a:5b:f8:0c:1b:4e:2c:f2:d8:8a:46:a2:
36:69:cd:1b:71:06:89:96:2a:0d:60:84:5b:a0:0d:1a:7c:ba:
b6:26:b1:7a:fc:26:17:42:1d:d9:10:c8:9e:e8:15:18:30:86:
f7:e0:e1:69:5c:33:e2:13:2f:d0:63:21:d2:e9:a3:a0:b1:53:
d3:27:e7:2b:67:7a:c1:48:e9:89:3c:b8:19:6b:4e:9d:56:1b:
99:7f:71:67:55:72:d9:e9:a2:17:02:49:9d:7b:9e:20:14:05:
19:b2:4a:08:38:6b:e4:23:7d:b6:26:56:e2:97:fc:ee:73:34:
81:be:7c:35:25:94:c8:89:f9:37:a3:6f:f8:ea:73:d5:52:6a:
0a:61:fb:bd:b4:aa:68:33:3c:d0:9a:9a:50:c4:28:14:a5:f2:
db:c9:cd:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-ams.rpki-client.org