Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/JmD53KZFjQpxkAhrsjSbFvU3r3Q.roa
File: JmD53KZFjQpxkAhrsjSbFvU3r3Q.roa (raw, json)
Hash identifier: Et9t4mWzZiU4h3+FVikqA9ZBikL5gyB1Cf5zB/wXuvo=
Subject key identifier: 26:60:F9:DC:A6:45:8D:0A:71:90:08:6B:B2:34:9B:16:F5:37:AF:74
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 04B25409
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/JmD53KZFjQpxkAhrsjSbFvU3r3Q.roa
Signing time: Fri 11 Feb 2022 08:15:07 +0000
ROA not before: Fri 11 Feb 2022 08:15:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 185.101.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78795785 (0x4b25409)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Feb 11 08:15:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2660f9dca6458d0a7190086bb2349b16f537af74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:36:bf:fc:37:33:21:2b:fd:3b:9b:66:c0:dc:
d8:89:31:02:f5:f2:00:b2:44:05:39:01:b9:46:28:
d4:c2:a4:45:1d:f3:61:9d:b6:4d:0f:ac:c2:9b:a6:
5e:0f:86:53:f2:c0:dd:5c:12:62:46:4e:35:ad:4e:
f7:39:98:68:0f:63:71:94:63:b7:00:21:b7:a8:af:
e6:93:10:03:0c:1d:64:61:45:21:d6:9d:87:5b:4f:
34:f0:7c:3a:82:4b:9a:e3:36:18:22:f1:9f:b0:94:
b4:9e:7b:00:bd:b5:87:5c:8d:25:58:51:68:04:55:
f4:a8:23:74:34:23:81:21:d7:63:f0:e8:d8:47:43:
d8:aa:47:12:25:2b:f0:a3:21:da:51:59:86:d9:3d:
b9:16:90:49:6a:e6:8b:4b:ab:db:45:56:3f:b4:04:
ee:6e:85:db:c9:bb:aa:3e:e8:50:b1:a1:3e:46:e7:
c5:a7:ec:44:f6:22:5e:c8:26:dd:10:47:c1:c8:9e:
19:9a:88:77:f7:8b:a8:1c:79:7a:6e:26:d8:46:1e:
d7:28:1d:77:b6:44:11:e2:8a:12:d0:fa:c0:d1:3c:
ae:a2:72:08:06:ac:45:ba:1e:25:93:9a:23:25:d8:
51:4f:42:0b:70:46:f5:b7:46:f0:0c:59:75:0e:4d:
af:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:60:F9:DC:A6:45:8D:0A:71:90:08:6B:B2:34:9B:16:F5:37:AF:74
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/JmD53KZFjQpxkAhrsjSbFvU3r3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.171.0/24
Signature Algorithm: sha256WithRSAEncryption
05:6a:12:1f:f1:e0:fb:01:02:9a:30:2c:8b:72:c4:3e:b3:d2:
e3:7e:67:ea:7d:cc:78:65:64:a6:a2:43:8b:7a:ad:58:76:1a:
c7:b3:d7:72:6f:9c:65:43:1b:bb:c0:52:10:31:f4:d9:08:a1:
a5:e0:62:7d:50:1a:cf:63:52:0b:d4:d2:e2:7d:c6:34:5c:11:
1e:d3:be:11:b1:cb:76:31:f1:ec:4c:2a:4f:2d:84:08:0f:24:
02:22:25:c4:e7:49:4b:ef:84:a5:7d:67:83:c7:3e:d4:5a:2d:
8f:54:38:6d:9d:90:d7:aa:3d:f0:fa:e3:3a:d5:cf:02:24:40:
c2:2d:95:26:33:25:5a:1b:34:68:e9:0c:bc:f8:4a:b2:9d:f4:
70:5a:c4:71:6f:10:04:1c:d5:f3:03:cd:24:42:74:2c:c7:54:
ca:22:25:58:dc:4b:a2:86:79:7e:e6:54:2f:19:f3:e2:05:1b:
7c:aa:ff:08:e9:19:e1:db:91:45:33:1b:fb:f3:5d:ea:7d:7b:
e3:59:0c:44:92:65:64:b8:83:94:ad:1f:fc:cd:ad:ac:5e:5f:
5d:ad:92:d2:44:5b:7c:5f:52:81:1e:d3:97:87:d6:df:24:5e:
4d:b7:3f:6c:9b:91:24:10:b8:dd:f4:08:fa:d6:a1:fe:f3:43:
16:b2:9d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:39 2023 by rpki-client on console-ams.rpki-client.org