Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/bShz3SrW-EN0mvuWsuYWR636Qu0.roa
File: bShz3SrW-EN0mvuWsuYWR636Qu0.roa (raw, json)
Hash identifier: r4UdYZo1L4LP3hjVerDdC/40MzLbLQIh+C9/TJo5I6A=
Subject key identifier: 6D:28:73:DD:2A:D6:F8:43:74:9A:FB:96:B2:E6:16:47:AD:FA:42:ED
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 014050E9
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/bShz3SrW-EN0mvuWsuYWR636Qu0.roa
Signing time: Thu 30 Jun 2022 08:19:54 +0000
ROA not before: Thu 30 Jun 2022 08:19:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 185.244.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20992233 (0x14050e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jun 30 08:19:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d2873dd2ad6f843749afb96b2e61647adfa42ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:cd:0f:9c:4a:83:18:02:ce:5f:81:bb:ce:99:
42:8d:e7:01:1d:ec:ca:6e:78:87:4c:57:35:9f:56:
ff:1e:2b:52:ce:c2:4f:2f:a7:9a:53:c3:e3:40:c7:
c0:a0:18:c1:b4:e7:15:f5:f3:52:c8:ef:46:a5:96:
db:e7:a2:bc:ef:8c:dc:5d:81:b0:20:87:6b:82:b7:
90:6a:f4:89:59:3d:92:99:88:55:e6:2c:12:75:c8:
88:a5:12:23:b0:1c:23:23:87:97:3a:43:93:e4:aa:
71:bf:46:fd:37:3f:05:4d:33:2d:88:d5:76:94:a8:
57:48:1a:7e:17:45:7b:b7:a1:df:e1:67:80:42:58:
3e:a4:13:13:ee:95:bb:cc:16:fe:57:3b:1f:06:ab:
6f:1f:82:ce:8a:5a:04:f9:1c:b4:cc:34:bb:fa:5f:
b1:72:7d:d9:a3:b6:22:c7:b2:62:1d:bf:f8:c1:b2:
17:1b:fd:a2:ea:60:0e:01:f8:ac:c2:10:6a:79:f7:
1a:9c:f4:cc:52:1c:b0:9e:d9:23:19:1c:bf:e4:e3:
aa:07:fc:9a:a1:50:f2:53:c0:31:e4:e9:72:5c:f9:
2f:aa:79:fa:ed:7c:ed:b2:8a:3e:8b:b1:26:08:24:
2a:99:a0:ac:7e:ab:56:c9:93:32:e0:1e:13:5d:e9:
7c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:28:73:DD:2A:D6:F8:43:74:9A:FB:96:B2:E6:16:47:AD:FA:42:ED
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/bShz3SrW-EN0mvuWsuYWR636Qu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.107.0/24
Signature Algorithm: sha256WithRSAEncryption
83:60:b1:8e:ed:ac:f2:1b:de:5c:2f:fd:0e:4b:e9:f0:89:4e:
44:ab:15:8e:bf:d5:0e:70:1c:02:b5:32:12:f0:31:52:b6:0d:
6d:26:52:18:2e:df:cc:aa:a6:01:0c:eb:4a:7f:16:60:61:b2:
ba:47:7f:48:fb:35:d1:06:fe:19:f0:ce:2e:c9:d4:c6:8e:8a:
c9:42:98:09:63:e6:d8:e8:94:08:cc:47:f1:db:ba:47:28:09:
99:84:78:d6:06:2c:cb:90:89:e5:49:2c:d6:1a:95:62:19:d2:
6a:0c:d5:75:56:9a:5a:0c:ed:c9:fb:c0:83:44:71:4d:f8:97:
d8:f7:cb:f4:92:0a:ca:b3:1d:93:92:6e:ac:ef:78:fd:51:4c:
3f:3e:25:a2:21:a4:03:58:e9:05:0d:15:5b:f3:f1:3a:8e:02:
9a:a3:0a:cb:58:48:11:7b:88:c6:58:7a:b5:45:53:8d:ae:49:
84:40:d1:22:8e:03:57:c4:0b:3a:41:6d:9a:65:f8:da:ac:4a:
25:67:1f:3e:6e:a5:68:f7:45:fc:13:89:e9:f4:5e:2e:83:9e:
2e:7a:5b:9c:49:0a:aa:74:b3:d5:4f:7f:db:fb:ff:c4:4c:f3:
ef:b2:70:df:a0:0a:e4:93:ea:69:41:4e:5c:b2:d0:3f:b7:c8:
83:fc:2f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-ams.rpki-client.org