Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/RXsbTJrfKOAZrx15D2WM41ufv0s.roa
File: RXsbTJrfKOAZrx15D2WM41ufv0s.roa (raw, json)
Hash identifier: pZGWEgNZGF8/sDUGXI/k96WYN7jO13FcaKIPhbEmdTU=
Subject key identifier: 45:7B:1B:4C:9A:DF:28:E0:19:AF:1D:79:0F:65:8C:E3:5B:9F:BF:4B
Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f
Certificate serial: 0182EF34108F84636EDF38FEA595B56E3D79
Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/RXsbTJrfKOAZrx15D2WM41ufv0s.roa
Signing time: Tue 30 Aug 2022 14:42:22 +0000
ROA not before: Tue 30 Aug 2022 14:42:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204962
IP address blocks: 185.233.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ef:34:10:8f:84:63:6e:df:38:fe:a5:95:b5:6e:3d:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f
Validity
Not Before: Aug 30 14:42:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=457b1b4c9adf28e019af1d790f658ce35b9fbf4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:02:6c:bb:d7:2f:86:8a:72:99:ee:f5:70:0c:
ae:9e:06:05:d8:e4:57:8e:cb:30:ca:86:f7:d1:45:
5d:28:80:d5:2f:48:96:fc:9d:5d:6c:22:0b:ad:22:
68:c4:cc:a9:19:87:07:7c:72:0e:95:6d:3e:d1:c9:
6d:ab:bc:1c:7e:f7:b2:9b:0b:e9:b5:a6:38:6d:9b:
67:b1:8b:23:99:1f:1f:1c:2c:2d:bc:2d:47:5c:5f:
86:78:33:8c:76:3f:60:18:75:bd:e2:08:e5:92:96:
07:27:1b:6d:dd:d5:af:93:e2:20:e7:8a:73:e7:1f:
45:39:df:b9:f2:bf:db:e5:80:ed:80:e8:0c:0b:01:
11:30:eb:52:ee:76:2d:c9:a3:33:57:76:53:7e:71:
b2:a0:10:41:8a:b2:8f:2e:a4:75:71:c8:36:bd:f6:
72:f1:80:08:aa:94:97:b1:b8:51:c1:d4:98:3a:14:
f9:2b:82:92:07:ef:79:6f:48:b7:15:52:23:7b:aa:
2c:60:05:fd:58:db:7f:9f:9e:04:fb:c4:11:5b:3e:
07:29:2c:7e:62:12:fb:aa:00:77:86:1d:90:64:6d:
01:16:44:05:bb:d9:70:7d:8e:0e:e3:a6:6a:dd:79:
a5:cc:90:66:0f:d4:4c:37:0c:18:ca:38:c0:5a:b7:
49:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:7B:1B:4C:9A:DF:28:E0:19:AF:1D:79:0F:65:8C:E3:5B:9F:BF:4B
X509v3 Authority Key Identifier:
keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/RXsbTJrfKOAZrx15D2WM41ufv0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.156.0/22
Signature Algorithm: sha256WithRSAEncryption
63:ed:c1:90:39:ae:40:ba:1a:ab:cf:3b:1b:45:5f:64:52:db:
fb:fb:3f:12:e3:12:13:dd:88:32:39:19:a6:00:c5:3f:bd:18:
8d:a6:5d:c7:40:f7:e4:be:4d:04:22:bf:05:74:34:cd:bf:6c:
79:af:66:7f:fe:5b:e2:b6:99:78:4f:9f:81:d9:c1:42:41:45:
71:42:31:cd:f7:ec:67:ec:a2:9d:20:9d:ae:fd:93:1d:f4:c3:
b0:d2:54:da:a0:9f:76:24:0b:92:f5:ac:4f:3d:49:05:7b:cd:
71:25:6a:1e:15:79:b6:d1:f4:fb:6d:89:34:1f:61:da:3a:dc:
20:3e:f1:3f:a6:97:c9:78:23:63:a5:44:68:12:4c:31:29:e3:
78:4e:e6:b1:5c:3f:48:0d:b8:93:ed:6d:6f:10:8e:e5:4c:4b:
28:9b:23:9e:0b:6e:78:67:e1:e4:b1:2d:98:8f:7b:24:33:27:
f3:35:9d:d2:cf:f8:4f:43:e1:08:f9:df:96:75:8f:9e:c2:5d:
da:58:d2:fd:57:6a:bf:c9:35:fe:47:39:c4:20:92:d3:83:b2:
46:d8:20:24:eb:c7:e1:a5:49:a7:64:4c:17:92:5d:ab:6b:d6:
7a:7a:d2:0d:43:3e:61:40:a9:16:28:37:e8:b2:fe:87:fc:60:
dc:90:6f:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:50 2024 by rpki-client on console-ams.rpki-client.org