Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/bRczaGQTd1twpZDm11_J5lS4Yqk.roa
File: bRczaGQTd1twpZDm11_J5lS4Yqk.roa (raw, json)
Hash identifier: Duqs8pt2fOSvP2e2cehPlJtPBR/GP2fKLBMQqrLR34M=
Subject key identifier: 6D:17:33:68:64:13:77:5B:70:A5:90:E6:D7:5F:C9:E6:54:B8:62:A9
Certificate issuer: /CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Certificate serial: 058139AA
Authority key identifier: 25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/bRczaGQTd1twpZDm11_J5lS4Yqk.roa
Signing time: Sat 01 Jan 2022 03:58:49 +0000
ROA not before: Sat 01 Jan 2022 03:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 145.226.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92354986 (0x58139aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Validity
Not Before: Jan 1 03:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d1733686413775b70a590e6d75fc9e654b862a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:98:f4:2a:a1:d5:3d:4f:66:55:57:3a:c1:46:
57:7a:9f:a4:ed:10:be:35:e3:94:62:0c:3d:bb:ef:
bd:db:be:b6:6e:7e:c9:e8:c6:91:63:68:a0:51:ce:
08:c3:fd:fd:2f:fc:e0:71:21:82:d0:44:d2:a7:ae:
b7:0c:30:9a:64:d8:fb:d4:8a:37:80:4e:5b:db:10:
db:78:3a:cd:c6:ed:b7:d9:63:41:70:2b:6f:55:c0:
92:1f:b6:2f:b9:b0:71:47:19:9e:1b:a3:31:08:1a:
ca:58:bd:9f:25:14:02:e7:95:04:95:71:57:f4:cd:
46:b1:a8:74:a9:ee:5d:63:1a:bd:2e:0d:e0:e7:a2:
8f:05:01:d2:4b:18:9d:55:cc:bc:4c:dd:3e:68:eb:
7c:54:1e:95:79:da:f4:da:51:cf:81:13:fe:1e:d4:
8e:34:40:6f:19:2f:09:03:f4:73:7f:74:c9:f7:d6:
c3:e8:4b:59:cd:9b:1f:ec:4f:f4:e1:1a:46:44:8f:
dc:7f:19:83:17:5b:31:90:5d:1f:67:f0:0f:de:32:
9c:a7:68:1c:90:27:97:ea:e7:f9:9b:cf:70:b6:52:
ee:51:20:de:40:3f:e4:10:75:c8:1e:7d:de:a6:7e:
b9:71:82:86:32:1f:07:de:40:3c:46:27:7f:cf:4c:
dc:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:17:33:68:64:13:77:5B:70:A5:90:E6:D7:5F:C9:E6:54:B8:62:A9
X509v3 Authority Key Identifier:
keyid:25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/bRczaGQTd1twpZDm11_J5lS4Yqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.226.0.0/16
Signature Algorithm: sha256WithRSAEncryption
69:29:fa:43:29:84:89:ce:fc:33:43:00:1d:3a:e5:ff:38:2d:
0b:95:69:83:a4:c4:fe:6c:f5:cb:d5:65:0d:c3:69:63:62:af:
c3:e3:a2:23:bb:72:30:ae:b6:6c:e4:7f:5c:d5:14:d8:2b:d5:
3e:aa:e2:b3:2e:38:20:fe:37:3a:0f:a9:38:dc:9e:d9:d3:35:
02:a4:b2:99:fb:01:2e:96:1f:38:cc:a0:f5:d6:b7:dd:37:b3:
b8:16:6d:20:5f:4b:c5:eb:ae:c0:06:1b:e6:de:7c:65:6a:eb:
df:aa:20:02:4f:25:b7:62:af:1f:dd:7a:fc:d3:99:f7:cb:d8:
5a:0a:59:35:5c:d9:9c:50:f8:9d:07:fe:62:f5:84:cd:9c:55:
2c:5e:9c:59:59:8d:c7:db:13:eb:a2:a5:c5:b1:36:b8:24:24:
f8:84:c4:64:a7:a3:b8:96:6b:94:4f:f6:43:57:5e:84:4c:e4:
9f:a9:53:eb:92:8f:77:48:6e:e8:2b:7c:bc:97:df:b4:75:9a:
4d:d6:a8:a9:ca:b2:13:68:3b:46:38:81:16:42:ac:07:64:9d:
05:80:a5:d5:8f:2a:ac:cc:dc:a3:24:d3:30:72:59:89:a4:c3:
9f:fd:be:3b:c5:ca:88:f0:02:a3:98:e3:81:c2:c4:e1:8d:96:
4b:f5:48:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:07 2024 by rpki-client on console-fra.rpki-client.org