Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/t2X1WuJYq-e-D956QPHOvKU-XKs.roa
File: t2X1WuJYq-e-D956QPHOvKU-XKs.roa (raw, json)
Hash identifier: 2t6YI+qcLmuYY6QFQv9Ww575FfMJ0VTUmniEgtoxZM0=
Subject key identifier: B7:65:F5:5A:E2:58:AB:E7:BE:0F:DE:7A:40:F1:CE:BC:A5:3E:5C:AB
Certificate issuer: /CN=b3dd35ccff6c2b86a1fad8f103bc20070d09e50d
Certificate serial: 3302076C
Authority key identifier: B3:DD:35:CC:FF:6C:2B:86:A1:FA:D8:F1:03:BC:20:07:0D:09:E5:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s901zP9sK4ah-tjxA7wgBw0J5Q0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/t2X1WuJYq-e-D956QPHOvKU-XKs.roa
Signing time: Mon 14 Feb 2022 09:31:12 +0000
ROA not before: Mon 14 Feb 2022 09:31:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48763
IP address blocks: 185.173.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 855770988 (0x3302076c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd35ccff6c2b86a1fad8f103bc20070d09e50d
Validity
Not Before: Feb 14 09:31:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b765f55ae258abe7be0fde7a40f1cebca53e5cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7b:2f:df:3e:6b:ab:0e:65:bc:6e:ab:28:74:
64:1b:30:d0:99:fa:62:3b:16:7a:61:24:5b:d2:44:
0f:74:2b:00:b4:44:e3:ed:2f:03:cd:6a:62:a8:9d:
29:9d:d9:3b:65:a1:a1:de:4f:fb:1c:88:38:6f:38:
51:2c:d9:48:ce:56:5e:a4:0d:3f:54:26:29:e1:cf:
9f:7d:29:9b:1d:05:fc:f4:9e:0d:dc:3f:e9:32:c1:
8d:a6:a8:7a:36:7f:b9:4f:e9:78:9d:b4:4e:f7:4a:
87:50:07:bf:67:24:b5:21:2b:5c:63:59:d7:18:2c:
90:2a:f2:24:3b:95:3a:b1:ba:22:a1:9b:40:1f:6c:
66:35:dd:d2:06:76:15:67:ae:c1:4e:db:76:5e:fa:
4a:a8:84:b3:44:ee:23:bb:ec:71:67:ac:c3:4d:f7:
83:39:32:20:dd:62:ff:79:19:f4:7d:ee:51:3c:7b:
6f:a7:3c:c1:48:43:d7:07:6d:62:ab:ed:12:f9:48:
55:99:77:e8:d8:2e:ae:30:0b:8b:c7:a9:b5:54:e0:
00:18:50:d5:1a:56:0d:ad:1b:d0:bc:7c:0f:eb:c1:
f0:cd:1c:75:c6:8a:24:3c:c2:f3:2f:18:c7:09:0d:
7f:47:3c:06:14:0e:a5:6b:b4:21:d3:4e:d0:0c:01:
ac:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:65:F5:5A:E2:58:AB:E7:BE:0F:DE:7A:40:F1:CE:BC:A5:3E:5C:AB
X509v3 Authority Key Identifier:
keyid:B3:DD:35:CC:FF:6C:2B:86:A1:FA:D8:F1:03:BC:20:07:0D:09:E5:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s901zP9sK4ah-tjxA7wgBw0J5Q0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/t2X1WuJYq-e-D956QPHOvKU-XKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/s901zP9sK4ah-tjxA7wgBw0J5Q0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.157.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:3e:0d:33:7b:f2:5c:56:73:80:bd:50:26:c5:1a:0c:1a:7e:
0c:71:f4:fe:7b:78:9f:ff:67:f6:89:86:b8:82:d9:fd:27:3b:
ee:3f:40:d1:26:2d:29:39:f8:95:6a:78:50:75:8f:c3:d4:c5:
ba:fc:af:3a:74:a2:b0:79:0a:00:b9:c1:58:30:85:7c:e8:f6:
1f:9b:61:19:78:74:8b:a2:c5:83:91:47:09:e1:0b:22:ae:d7:
b4:44:2c:c8:5d:c0:88:41:08:d4:33:08:da:cd:26:e6:6a:9e:
ad:a2:0a:fc:ad:f7:72:c5:c3:bd:74:99:d4:f1:0d:f4:30:c1:
c1:fb:fa:a3:ce:bb:88:66:0f:bd:ab:92:e7:1c:13:02:c1:97:
be:ad:97:3b:7f:85:64:b2:74:d5:6e:54:8a:5a:f7:7c:f6:be:
1f:8f:33:3f:08:f2:72:43:f5:ca:8c:a6:01:02:07:55:d9:50:
37:57:3b:74:a1:85:b5:88:ab:15:b2:02:b5:16:6b:61:b7:96:
d0:c5:00:91:e8:9e:bf:80:7b:74:4d:2e:78:3a:43:f2:6d:09:
3e:28:c7:9f:cb:bf:ce:0d:b5:ca:5a:3b:6e:15:28:eb:d2:fb:
8c:97:95:ef:2c:8b:2f:1e:ec:73:0f:6d:25:b0:ab:16:19:4e:
52:eb:92:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:18 2024 by rpki-client on console-ams.rpki-client.org