Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/39d5f1-66f7-49d8-afba-14a1909b1237/1/1-KBVQhVdW5L9TLxY0-JLXn3Z9G0.roa
File: 1-KBVQhVdW5L9TLxY0-JLXn3Z9G0.roa (raw, json)
Hash identifier: fAMQUprAzUJIq2GbV2qRWtALBhOC4GrhjaFgIcGtOGk=
Subject key identifier: F8:A0:55:42:15:5D:5B:92:FD:4C:BC:58:D3:E2:4B:5E:7D:D9:F4:6D
Certificate issuer: /CN=ee1cce901e5fb7c92f09a915cf6e656f693ba100
Certificate serial: 05946C2B
Authority key identifier: EE:1C:CE:90:1E:5F:B7:C9:2F:09:A9:15:CF:6E:65:6F:69:3B:A1:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hzOkB5ft8kvCakVz25lb2k7oQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/39d5f1-66f7-49d8-afba-14a1909b1237/1/1-KBVQhVdW5L9TLxY0-JLXn3Z9G0.roa
Signing time: Mon 23 May 2022 03:53:29 +0000
ROA not before: Mon 23 May 2022 03:53:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10122
IP address blocks: 185.155.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93613099 (0x5946c2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1cce901e5fb7c92f09a915cf6e656f693ba100
Validity
Not Before: May 23 03:53:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8a05542155d5b92fd4cbc58d3e24b5e7dd9f46d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c0:56:95:47:ed:04:2a:c4:3e:82:30:7b:a6:
5c:ae:82:29:c8:b6:f1:ea:17:1c:ff:ab:b4:8f:cc:
6c:cc:1c:7f:bf:c8:fe:79:09:8a:de:96:82:e6:10:
20:3b:b5:64:9a:ed:6d:dc:f5:da:94:32:74:77:2b:
5b:25:33:76:e9:e5:01:17:5e:09:bb:20:fd:65:a8:
42:35:5f:3e:ba:f8:35:9a:2d:48:5d:12:6a:a3:e1:
a9:29:14:41:0c:99:d3:63:ae:78:2f:61:c3:9d:93:
a0:39:c3:ac:70:8c:47:2d:bf:70:d4:ea:6c:36:54:
5b:3d:21:e6:8a:e4:26:da:00:3b:86:21:8e:b2:67:
97:c7:85:d3:03:59:f1:de:ef:d4:b7:6c:0b:68:68:
a3:0f:83:50:49:2e:f0:6e:e2:e7:37:96:a2:af:a5:
c1:68:ae:fc:3d:8c:b9:d9:ac:67:88:e2:26:ec:17:
61:4d:01:37:ca:61:6a:99:ed:6a:34:44:06:b7:14:
1b:f8:fd:47:95:4e:e4:b9:a6:4d:f5:be:7f:1a:13:
9b:93:cb:03:0b:86:d2:1a:87:58:58:0d:ea:41:07:
75:0b:a0:bf:b3:d3:cc:7c:d6:b2:8a:b2:ce:61:44:
23:9d:b6:00:49:7b:47:53:2d:a7:d3:12:3f:b9:65:
d2:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A0:55:42:15:5D:5B:92:FD:4C:BC:58:D3:E2:4B:5E:7D:D9:F4:6D
X509v3 Authority Key Identifier:
keyid:EE:1C:CE:90:1E:5F:B7:C9:2F:09:A9:15:CF:6E:65:6F:69:3B:A1:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hzOkB5ft8kvCakVz25lb2k7oQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/39d5f1-66f7-49d8-afba-14a1909b1237/1/1-KBVQhVdW5L9TLxY0-JLXn3Z9G0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/39d5f1-66f7-49d8-afba-14a1909b1237/1/7hzOkB5ft8kvCakVz25lb2k7oQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.137.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:74:ad:d1:77:4e:7d:01:01:32:30:90:28:bd:94:07:57:63:
11:30:60:8d:61:7e:7e:9c:3e:fd:04:5a:be:f7:1a:a2:85:e1:
40:be:3b:d2:7a:9e:36:87:4e:2f:ea:35:58:52:0f:69:de:37:
d7:a7:4b:56:23:f0:33:b4:c5:1e:df:c3:03:a9:c9:0c:85:2e:
52:da:05:e6:60:75:7c:98:9b:fa:42:d6:72:ac:ec:db:29:5c:
6c:c6:d3:01:ea:ad:b6:c7:fe:d5:b3:79:e9:20:48:0d:0c:7b:
8a:86:ed:f6:b5:07:a2:48:f3:19:4c:9f:2d:1f:a5:53:e0:95:
9a:56:9e:e5:34:b9:c8:35:e5:20:e6:ea:f9:a9:24:06:17:94:
68:99:b8:e7:3b:b4:a5:57:af:30:02:68:58:e9:9c:46:ce:40:
fa:1f:02:1a:6d:11:e5:3d:60:ed:36:93:3a:81:e1:e5:f9:8e:
e4:2e:ec:75:10:90:4d:f3:2d:01:63:ee:1f:79:f2:16:56:5c:
35:f9:b8:c0:74:84:9c:2e:6e:6d:09:9e:7f:f1:a4:13:8d:f8:
10:fa:75:84:cf:ee:ed:eb:92:c8:fc:15:e3:74:f2:4a:5e:3f:
80:14:47:e1:8a:df:6e:d0:81:21:e0:ba:a0:17:17:24:8c:0b:
5d:25:e3:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:32 2023 by rpki-client on console-ams.rpki-client.org