Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/6082dd-4978-4376-8187-45a4cea86a48/1/P-kX5TMau8wqayMMVbRsEm9aC2Y.roa
File: P-kX5TMau8wqayMMVbRsEm9aC2Y.roa (raw, json)
Hash identifier: zjnm9PnZzrUlS6jLWPhFLXy3UZ/WgN6OZOyl/rygENw=
Subject key identifier: 3F:E9:17:E5:33:1A:BB:CC:2A:6B:23:0C:55:B4:6C:12:6F:5A:0B:66
Certificate issuer: /CN=af08fbd7e1268e859d207b113c122032b91526e7
Certificate serial: 079577FA
Authority key identifier: AF:08:FB:D7:E1:26:8E:85:9D:20:7B:11:3C:12:20:32:B9:15:26:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwj71-EmjoWdIHsRPBIgMrkVJuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/6082dd-4978-4376-8187-45a4cea86a48/1/P-kX5TMau8wqayMMVbRsEm9aC2Y.roa
Signing time: Sat 01 Jan 2022 14:04:01 +0000
ROA not before: Sat 01 Jan 2022 14:04:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29024
IP address blocks: 185.187.252.0/22 maxlen: 24
185.187.252.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127236090 (0x79577fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af08fbd7e1268e859d207b113c122032b91526e7
Validity
Not Before: Jan 1 14:04:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fe917e5331abbcc2a6b230c55b46c126f5a0b66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:28:6e:fd:e8:34:23:c9:2d:e5:b0:68:11:63:
b8:bb:93:e7:0a:75:bc:ca:60:52:7f:63:8b:a4:d7:
bd:5d:99:7f:82:53:87:91:3e:34:15:cb:40:ca:3e:
88:7a:ec:2e:69:de:6d:05:98:96:92:57:7a:00:7b:
dc:a1:44:98:bf:0e:a3:4a:6a:0e:a4:e4:99:07:f8:
f1:cd:5f:c3:c3:bf:22:bf:fb:e8:3b:36:8a:83:a3:
10:5e:da:37:71:1d:41:d4:92:32:e0:a1:d7:3d:72:
24:e2:7d:0b:92:99:e5:ec:ea:7f:ba:d4:8a:97:d5:
35:76:03:2c:0c:5f:42:61:3d:e1:ea:ce:10:af:75:
37:5a:9d:4f:7c:bf:09:ff:df:93:f9:68:ca:82:a9:
68:87:3e:b5:58:be:5b:8b:e5:67:01:0b:05:8a:2a:
e3:ce:b8:8e:84:f7:8d:34:64:bb:2f:fe:13:a1:d0:
82:8a:ec:75:40:3e:8f:84:26:99:d8:25:31:2c:96:
b0:e1:5d:04:87:81:cd:da:b2:d1:46:b1:8f:d1:1a:
f1:69:76:6a:44:3f:14:5a:66:f8:77:91:27:38:01:
72:7d:87:ba:86:e8:79:48:14:ee:5f:37:08:be:b0:
1d:14:c1:ea:96:16:82:2d:c6:6c:ff:99:a5:85:b7:
fd:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:E9:17:E5:33:1A:BB:CC:2A:6B:23:0C:55:B4:6C:12:6F:5A:0B:66
X509v3 Authority Key Identifier:
keyid:AF:08:FB:D7:E1:26:8E:85:9D:20:7B:11:3C:12:20:32:B9:15:26:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwj71-EmjoWdIHsRPBIgMrkVJuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/6082dd-4978-4376-8187-45a4cea86a48/1/P-kX5TMau8wqayMMVbRsEm9aC2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/6082dd-4978-4376-8187-45a4cea86a48/1/rwj71-EmjoWdIHsRPBIgMrkVJuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.252.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:86:86:c3:27:a2:a3:66:62:91:96:b0:f8:9d:d0:97:13:ff:
4e:56:cb:26:7e:16:e0:95:85:4c:b5:ea:b0:60:35:7f:17:07:
ca:fb:20:8f:96:56:38:8f:52:4a:fc:e1:ff:69:66:f6:17:e3:
e3:e8:8c:7f:46:2e:e4:ac:42:0d:17:45:94:d8:cc:26:f1:7f:
ed:96:4d:34:b3:e6:83:3c:e3:e5:ee:32:be:5b:66:64:66:64:
57:66:86:f1:25:e2:00:e2:f5:0a:a0:2e:37:66:f9:82:2d:26:
09:d3:49:51:ba:0f:04:1b:a7:a1:42:d7:d1:6a:33:32:24:69:
c9:ca:b1:13:ad:f2:27:98:0e:ac:c3:c2:5a:66:8d:d3:f1:ab:
70:ec:66:1e:dc:6a:40:54:0a:a9:b9:11:9b:5a:28:a1:88:5d:
b0:80:c2:4f:a3:5d:8c:f0:fe:57:29:b3:bc:f0:65:e0:30:12:
10:f3:89:f0:ec:17:3d:72:f9:7f:25:d8:b1:7b:c9:31:65:7a:
3d:68:dd:ca:6d:f8:c4:d7:05:0d:3d:cc:3b:ef:ca:85:9a:66:
0b:7f:5a:bc:a5:be:c3:f9:f9:84:f9:7f:22:e8:ac:45:eb:05:
59:5f:e2:11:a0:c1:99:e7:27:1e:67:a6:e9:ee:b8:f3:06:eb:
cc:fb:2a:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:04 2023 by rpki-client on console-ams.rpki-client.org