Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/4tuSLtbzXaAoLaGi2kcHWWgAVmY.roa
File: 4tuSLtbzXaAoLaGi2kcHWWgAVmY.roa (raw, json)
Hash identifier: 58M0NIfS2wR3tBoetM6vLCD/iiWTkZ8Q/+oz8MDSWKc=
Subject key identifier: E2:DB:92:2E:D6:F3:5D:A0:28:2D:A1:A2:DA:47:07:59:68:00:56:66
Certificate issuer: /CN=345ae646ea34ad2688aca2fdd1a6f3340356495e
Certificate serial: 1521B3B8
Authority key identifier: 34:5A:E6:46:EA:34:AD:26:88:AC:A2:FD:D1:A6:F3:34:03:56:49:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NFrmRuo0rSaIrKL90abzNANWSV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/4tuSLtbzXaAoLaGi2kcHWWgAVmY.roa
Signing time: Tue 31 May 2022 09:31:13 +0000
ROA not before: Tue 31 May 2022 09:31:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.120.172.0/24 maxlen: 24
185.120.173.0/24 maxlen: 24
185.120.174.0/24 maxlen: 24
185.120.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354530232 (0x1521b3b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=345ae646ea34ad2688aca2fdd1a6f3340356495e
Validity
Not Before: May 31 09:31:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2db922ed6f35da0282da1a2da47075968005666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:8d:d7:38:b6:b5:6b:b5:ca:58:54:ef:3a:52:
c5:f3:99:1d:70:f7:2e:ef:70:1a:ad:6f:cf:ef:e0:
e2:37:e5:29:14:d7:9f:a3:ad:4f:da:6d:bb:4b:79:
7f:84:13:8f:62:8e:39:2f:fc:be:11:32:32:16:a2:
2f:17:36:45:8f:b0:f0:b5:39:52:4c:cb:8a:2f:d5:
2f:24:64:96:12:7b:11:b1:a8:ce:31:af:68:85:80:
b8:ea:68:de:4c:b9:7b:94:96:5e:64:06:44:52:d9:
3b:2a:d8:29:01:bb:f7:e2:82:4f:3e:8e:93:cb:22:
47:32:38:9e:2e:8e:c6:21:e2:bb:74:90:1d:1f:68:
b3:43:50:bf:8b:8a:09:73:49:59:d8:a9:78:e2:4d:
b7:bf:20:6e:91:f8:33:b1:5d:45:6f:41:76:23:ab:
e0:3c:fe:fa:1b:3a:a9:d8:a9:cd:2a:21:a1:32:c1:
78:28:3f:f9:5f:4f:ba:42:cc:67:58:e4:31:52:74:
6e:13:8e:67:5a:c8:d7:f8:ad:15:c0:a6:7a:a7:db:
3d:cd:6c:96:08:19:76:e2:6f:de:43:a9:e5:ec:19:
ec:2e:2e:92:13:e9:91:6f:9f:8b:9c:9f:fe:09:e8:
b9:ee:5f:af:67:e0:a6:eb:c0:3b:28:08:7a:20:17:
32:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:DB:92:2E:D6:F3:5D:A0:28:2D:A1:A2:DA:47:07:59:68:00:56:66
X509v3 Authority Key Identifier:
keyid:34:5A:E6:46:EA:34:AD:26:88:AC:A2:FD:D1:A6:F3:34:03:56:49:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NFrmRuo0rSaIrKL90abzNANWSV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/4tuSLtbzXaAoLaGi2kcHWWgAVmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/NFrmRuo0rSaIrKL90abzNANWSV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.172.0/22
Signature Algorithm: sha256WithRSAEncryption
59:4a:f8:f0:7d:54:4f:64:bf:3a:8c:43:48:45:59:aa:4a:85:
5d:bb:c0:61:9e:41:f2:bf:23:a1:d4:11:85:fd:4f:d2:b8:7a:
d7:84:88:54:16:99:c7:4e:d6:57:66:3d:7d:6b:3a:2b:e0:34:
49:bf:0f:eb:22:f0:30:9a:15:09:35:2b:f7:39:db:0d:58:23:
3a:3e:4d:f8:02:d0:8a:f4:2b:b8:1b:ec:72:b7:31:9d:f4:6a:
66:0f:5a:35:a2:aa:de:e7:a4:52:e0:b1:d6:07:d7:0e:c3:d8:
ed:6d:b6:87:84:5b:fc:78:e3:e3:ca:51:94:ae:c4:49:97:9b:
47:6b:2a:df:cd:b6:c5:2f:71:15:78:0b:3e:98:e0:4d:d2:49:
e4:6a:8b:84:9b:00:d1:00:e3:92:c4:77:35:ec:c4:52:6e:19:
2a:52:85:69:de:26:b8:ed:9f:b9:fd:45:05:bb:89:3b:0f:3d:
46:90:10:79:ef:91:5f:7c:57:a6:dd:28:6c:29:86:cb:ad:10:
7a:cb:96:be:7d:39:ea:d6:c2:07:ba:8f:3a:7d:b1:f7:1a:2d:
f2:da:d3:ea:4e:59:34:67:52:de:ef:bb:a0:30:f5:c7:e9:2c:
d3:99:9e:6d:a4:1e:cf:d9:c6:17:e1:ae:e5:ea:0e:5b:52:8e:
27:79:c3:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:11 2024 by rpki-client on console-fra.rpki-client.org