Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/26f44a-ae53-4727-9075-437a346b22f7/1/rSTwwz_mimEzwk98QC1515PsWaY.roa
File: rSTwwz_mimEzwk98QC1515PsWaY.roa (raw, json)
Hash identifier: JS6k0WSdAD6PWrys1+fuuPcNY+zT3fYZpAa8XO4h8CU=
Subject key identifier: AD:24:F0:C3:3F:E6:8A:61:33:C2:4F:7C:40:2D:79:D7:93:EC:59:A6
Certificate issuer: /CN=73ff4b1cbeaf9dd75d3b5ef3ee9a75d5799f7280
Certificate serial: 018507662635E71F08C4D71B9854F20F673C
Authority key identifier: 73:FF:4B:1C:BE:AF:9D:D7:5D:3B:5E:F3:EE:9A:75:D5:79:9F:72:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_9LHL6vndddO17z7pp11XmfcoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/26f44a-ae53-4727-9075-437a346b22f7/1/rSTwwz_mimEzwk98QC1515PsWaY.roa
Signing time: Mon 12 Dec 2022 17:33:32 +0000
ROA not before: Mon 12 Dec 2022 17:33:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12350
IP address blocks: 185.242.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:07:66:26:35:e7:1f:08:c4:d7:1b:98:54:f2:0f:67:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73ff4b1cbeaf9dd75d3b5ef3ee9a75d5799f7280
Validity
Not Before: Dec 12 17:33:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad24f0c33fe68a6133c24f7c402d79d793ec59a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:25:a3:98:e9:18:cd:45:62:4d:f3:b8:7a:35:
59:b2:ee:9e:5e:26:55:6b:e8:9b:de:0a:3c:7b:32:
89:2f:fd:1c:1f:72:bd:b7:c2:b8:47:cb:85:e4:01:
8f:41:50:c3:1d:b3:0d:7c:20:f9:fe:bd:95:08:34:
a2:52:86:ba:88:b0:dd:ff:42:1a:ee:c4:23:cc:e6:
95:43:76:28:b9:e2:85:1b:f1:40:ac:b8:0b:f5:35:
8b:a6:b5:e5:9c:5a:16:18:db:d3:56:5a:f6:da:93:
e1:97:7c:19:f8:fb:81:da:29:2f:e3:5f:77:b2:67:
84:2f:2f:77:7c:33:c8:0e:11:a6:ab:e8:56:20:42:
58:78:06:5a:84:66:40:c4:bb:ca:2c:ce:9e:af:cd:
61:99:e7:93:55:ca:35:9b:e2:f1:69:a0:66:f5:97:
07:df:2a:3f:ee:a6:36:bb:f6:79:40:bc:3a:44:d3:
bb:0c:20:82:31:ae:46:49:87:63:a5:28:b8:2c:c1:
95:7a:b0:d0:47:e1:c9:e9:6c:24:08:3a:7d:ed:43:
6b:4e:da:d0:9d:46:09:af:f8:26:87:aa:71:17:2b:
2d:0b:21:8c:ec:1a:60:d9:39:af:85:5d:a3:5f:59:
f0:18:ab:f5:e0:2d:36:48:bb:0b:5f:33:0b:f2:7f:
98:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:24:F0:C3:3F:E6:8A:61:33:C2:4F:7C:40:2D:79:D7:93:EC:59:A6
X509v3 Authority Key Identifier:
keyid:73:FF:4B:1C:BE:AF:9D:D7:5D:3B:5E:F3:EE:9A:75:D5:79:9F:72:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_9LHL6vndddO17z7pp11XmfcoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/26f44a-ae53-4727-9075-437a346b22f7/1/rSTwwz_mimEzwk98QC1515PsWaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/26f44a-ae53-4727-9075-437a346b22f7/1/c_9LHL6vndddO17z7pp11XmfcoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.60.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:32:b7:09:0d:01:c7:d3:1d:e6:a7:b4:0c:1c:90:1d:5c:cc:
db:06:ef:27:85:cd:00:3e:25:c4:24:92:cf:70:01:7c:5c:05:
40:a3:b3:84:d9:a4:0e:42:9d:83:64:c4:b8:5d:71:44:d6:2e:
39:d3:21:9a:94:e2:36:f0:b4:e5:85:7f:4f:a7:a3:e6:1d:21:
4c:b2:0e:d9:92:c5:d0:a0:99:b9:2d:05:09:14:40:46:34:14:
72:60:03:4c:a7:53:07:c2:a5:27:7b:c5:06:17:82:5a:74:e9:
4d:47:7a:dc:1a:b7:58:9f:1d:a9:55:2c:06:f3:f3:31:f0:46:
ba:5a:cb:70:79:10:88:d4:ed:13:11:4a:23:5b:c8:53:4d:75:
c1:b3:b0:f0:e3:fe:08:d1:89:8b:8b:25:b9:6f:40:c7:98:87:
31:e0:3d:b3:e5:1f:81:ce:00:c8:d3:b6:29:a8:74:d5:57:3e:
1b:59:ce:a9:0b:fc:50:13:bd:08:b6:31:3b:a9:7e:61:d5:57:
6c:82:92:c4:47:14:03:bb:99:15:f1:d9:48:c1:0b:4b:bf:67:
f0:8b:9b:74:cb:fc:d7:04:3c:03:de:e9:9c:58:fb:db:30:e5:
03:af:04:e6:e5:2d:b5:32:f5:2b:e4:53:c2:0d:ce:50:fb:57:
b8:32:9f:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:06 2023 by rpki-client on console-fra.rpki-client.org