Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/p0f6KV2I7QNhwn1W4xkbE_XVz48.roa
File: p0f6KV2I7QNhwn1W4xkbE_XVz48.roa (raw, json)
Hash identifier: JYvKZcW6P6P3rjPkYzgF/W0FKn5YZFOlflPC/6yKNfc=
Subject key identifier: A7:47:FA:29:5D:88:ED:03:61:C2:7D:56:E3:19:1B:13:F5:D5:CF:8F
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 01836A7F4471B5E9D7405EE7C8A106B9BB85
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/p0f6KV2I7QNhwn1W4xkbE_XVz48.roa
Signing time: Fri 23 Sep 2022 13:17:48 +0000
ROA not before: Fri 23 Sep 2022 13:17:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149014
IP address blocks: 185.235.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:6a:7f:44:71:b5:e9:d7:40:5e:e7:c8:a1:06:b9:bb:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Sep 23 13:17:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a747fa295d88ed0361c27d56e3191b13f5d5cf8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f9:6b:19:a4:93:c4:c0:f9:47:4a:27:60:c2:
aa:dc:11:87:b0:f9:cb:a7:5b:50:d2:da:0f:a3:65:
be:e6:b0:e0:d4:d0:74:97:83:f3:90:83:9c:a3:f9:
f5:52:a4:43:a6:63:2d:26:e5:3b:5d:c5:46:2f:e6:
b0:d0:d9:93:0e:aa:e1:33:ca:28:90:16:29:07:42:
69:26:75:6b:9c:e0:d0:7c:3e:b0:77:60:3c:97:3b:
e5:47:c0:30:76:20:9c:31:35:1b:12:be:58:35:99:
2f:37:96:fd:a6:e6:bf:ec:78:7f:e9:7e:a0:8b:8b:
4e:27:a9:c0:30:5a:dd:b7:d3:04:7e:ad:b3:d1:b5:
00:4d:75:c4:2b:17:23:cb:4f:4a:08:b4:d8:33:7a:
77:3b:ab:c9:5d:ea:c3:94:3d:51:fa:c7:be:d6:7a:
d1:04:25:0f:95:b7:d3:7a:74:91:75:3c:e3:52:b5:
95:16:d2:41:84:42:1e:f0:32:2e:c4:25:87:02:b8:
9c:01:bc:b5:b6:ec:45:ee:80:56:99:75:ed:4f:1f:
e5:76:34:56:8f:0d:24:aa:4e:ce:36:e1:21:7d:08:
a2:59:54:ae:32:54:59:7b:bb:e8:d4:bb:0d:f3:63:
bb:99:17:ca:65:c0:e8:2d:28:15:da:5b:46:9a:ff:
77:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:47:FA:29:5D:88:ED:03:61:C2:7D:56:E3:19:1B:13:F5:D5:CF:8F
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/p0f6KV2I7QNhwn1W4xkbE_XVz48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.164.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:65:d1:f8:8e:1a:74:b9:7e:eb:e6:f9:26:74:cc:91:3f:61:
e9:21:17:9f:e0:7b:b8:59:29:ab:22:1b:85:72:b7:b3:01:88:
d9:48:43:82:53:50:64:e2:95:a4:f4:bd:b0:85:4a:44:cc:29:
bd:65:19:4e:aa:36:d9:7e:10:8d:99:77:bf:80:d1:fd:b8:42:
a6:c4:47:9c:24:6a:f2:34:df:8c:7c:34:14:0b:03:f7:6d:76:
5c:6d:9a:67:e9:2d:41:74:e1:9c:b2:ae:31:9b:56:0c:d5:8f:
aa:8a:f1:ad:c5:d4:9a:75:53:37:68:89:30:8c:f5:82:10:5b:
de:02:94:d8:fc:3f:bd:95:e7:a0:5d:07:17:1c:de:e0:d3:34:
47:01:10:d6:38:87:ca:6b:25:9f:d2:61:1e:3d:ba:34:c7:3a:
8a:63:d6:80:37:de:d8:d1:2f:18:52:b3:1e:bd:38:b0:b5:1b:
76:67:62:22:ff:95:54:7e:a5:83:fb:1f:01:f6:f1:ef:d4:d4:
86:4d:bd:34:42:71:32:a9:24:8f:b9:38:d8:cd:35:7f:c2:4b:
af:97:15:ed:d0:40:77:a0:98:ba:9b:33:db:ba:12:f3:38:fc:
8e:2e:24:a0:b8:46:a9:dd:7f:af:ca:fc:cf:61:01:86:df:3c:
df:ab:66:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org