Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/e8f4b3-2120-4ecb-9609-cb9c58f510cb/1/01M5Tnr02DArmfbxr-HHDS4YpUs.roa
File: 01M5Tnr02DArmfbxr-HHDS4YpUs.roa (raw, json)
Hash identifier: J7zUZuwt3t4/cpxkT3+lC2CXkkWQWv2Lf1uyWA8jbQs=
Subject key identifier: D3:53:39:4E:7A:F4:D8:30:2B:99:F6:F1:AF:E1:C7:0D:2E:18:A5:4B
Certificate issuer: /CN=af4ef4a8ed3711b6acd68c0f48f621831fd5aaae
Certificate serial: 01846FE2E33B2C5619E70359CE7DC5983DC9
Authority key identifier: AF:4E:F4:A8:ED:37:11:B6:AC:D6:8C:0F:48:F6:21:83:1F:D5:AA:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r070qO03Ebas1owPSPYhgx_Vqq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/e8f4b3-2120-4ecb-9609-cb9c58f510cb/1/01M5Tnr02DArmfbxr-HHDS4YpUs.roa
Signing time: Sun 13 Nov 2022 07:27:31 +0000
ROA not before: Sun 13 Nov 2022 07:27:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39650
IP address blocks: 185.164.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:6f:e2:e3:3b:2c:56:19:e7:03:59:ce:7d:c5:98:3d:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af4ef4a8ed3711b6acd68c0f48f621831fd5aaae
Validity
Not Before: Nov 13 07:27:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d353394e7af4d8302b99f6f1afe1c70d2e18a54b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bf:93:82:91:ae:87:ad:39:b1:3f:77:17:f3:
6b:7d:24:d7:52:a5:82:ea:90:04:7e:be:3d:13:cd:
05:b8:27:22:61:3d:7a:1a:70:bb:11:f6:6f:7e:09:
16:28:68:1b:ad:0e:a1:29:4d:f2:c2:5b:78:43:7e:
dc:bd:cd:ea:29:5d:c0:cb:b4:1b:0b:c3:00:42:c0:
e9:cd:c5:d6:ae:f0:b6:ef:67:52:69:99:3b:fe:69:
75:a8:7f:0c:23:ee:d5:a1:d2:f0:5e:33:f6:3c:4d:
73:e4:c3:d8:88:a1:0b:5a:df:4f:53:be:b6:b8:aa:
b0:7d:b3:4e:5d:a5:b3:aa:52:77:7d:19:2f:6f:88:
1f:2e:26:36:c1:2b:19:02:99:9f:7e:f0:12:ce:b1:
35:d1:06:c6:82:04:d9:c5:ec:61:10:e5:3d:c1:be:
ce:03:cd:bd:a6:30:31:e9:c0:b3:b6:3f:94:b9:a6:
25:54:82:28:f0:9b:33:a5:0d:ac:06:65:63:ff:b3:
0d:60:6e:83:e2:1a:93:fb:4d:60:dd:9b:43:23:61:
48:5e:29:8f:68:07:96:da:14:d5:f2:15:23:14:56:
2c:12:ee:7e:3b:92:be:f7:83:93:a6:78:0c:7f:55:
46:0c:16:e8:1e:00:94:8a:3d:2c:e7:d6:58:f0:b4:
0f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:53:39:4E:7A:F4:D8:30:2B:99:F6:F1:AF:E1:C7:0D:2E:18:A5:4B
X509v3 Authority Key Identifier:
keyid:AF:4E:F4:A8:ED:37:11:B6:AC:D6:8C:0F:48:F6:21:83:1F:D5:AA:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r070qO03Ebas1owPSPYhgx_Vqq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/e8f4b3-2120-4ecb-9609-cb9c58f510cb/1/01M5Tnr02DArmfbxr-HHDS4YpUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/e8f4b3-2120-4ecb-9609-cb9c58f510cb/1/r070qO03Ebas1owPSPYhgx_Vqq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.255.0/24
Signature Algorithm: sha256WithRSAEncryption
47:6a:5b:54:cd:3a:be:95:c4:01:ac:c8:ab:25:b6:72:ab:ff:
90:40:9a:ca:15:ee:32:64:e3:4b:9c:5a:44:5d:2a:c3:b1:75:
c4:10:42:3a:e8:b4:85:8e:8f:59:1b:4f:8a:bc:ee:24:96:51:
5f:c3:a3:07:01:59:3c:46:01:97:2b:49:b1:5d:65:f6:5f:24:
f0:93:f5:ff:9b:79:68:41:8d:1f:f2:87:5f:68:2c:34:4c:cb:
3e:a6:ca:ae:4b:ee:38:3c:70:f7:08:c4:46:5b:0c:b7:8e:82:
6d:74:93:47:01:35:8d:be:05:6d:01:53:3b:b3:ce:b1:c7:36:
2e:94:f3:b5:cc:e2:21:d3:7f:75:cb:a4:0c:a6:cb:5f:d3:0f:
07:a1:fc:6e:0c:15:f0:95:b1:bc:3a:c9:49:4e:95:c6:14:61:
e8:0d:1c:21:41:38:30:2e:21:36:28:3c:89:46:12:7e:b1:18:
b3:8d:e4:3e:86:51:55:75:e3:19:7c:8c:9d:92:4d:5f:2e:d8:
35:34:74:0d:d3:fa:7d:43:ee:d5:52:c8:be:7b:b7:97:be:fa:
d4:69:a7:9c:75:ff:7a:35:d5:93:ee:59:b4:ef:d7:54:71:0b:
59:d7:bc:c1:ff:25:d7:eb:0f:4a:60:48:c1:7c:ce:07:74:e0:
47:19:bf:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:15 2024 by rpki-client on console-ams.rpki-client.org