Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/s811NwHny0kGQXgIaId-whJDl78.roa
File: s811NwHny0kGQXgIaId-whJDl78.roa (raw, json)
Hash identifier: Q6mxRKBzYlliYzdudEAXFjOh6UtxXc/+MDpbxEPVhi8=
Subject key identifier: B3:CD:75:37:01:E7:CB:49:06:41:78:08:68:87:7E:C2:12:43:97:BF
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 0183591DD4AC4BA229352B924B073350F997
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/s811NwHny0kGQXgIaId-whJDl78.roa
Signing time: Tue 20 Sep 2022 04:17:50 +0000
ROA not before: Tue 20 Sep 2022 04:17:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 185.101.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:59:1d:d4:ac:4b:a2:29:35:2b:92:4b:07:33:50:f9:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Sep 20 04:17:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3cd753701e7cb490641780868877ec2124397bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7d:a8:14:70:a1:d4:cd:30:48:18:86:e0:5e:
4b:58:6d:7a:b4:3c:b8:0e:d3:0a:49:b3:6d:e6:8a:
ba:15:44:e0:26:32:29:11:df:67:32:ad:2d:72:30:
e7:d6:20:3d:0f:f3:bf:f1:09:32:b5:72:d7:ad:1a:
a7:01:b3:76:31:81:5b:ec:70:12:f2:cd:f8:31:f2:
9e:a5:1b:7c:60:7a:dd:5c:09:06:d1:e0:5c:2a:79:
2f:3f:3b:96:6e:90:58:49:48:30:b9:41:e0:d3:d1:
d6:7e:49:e9:6c:44:59:75:d1:dd:cd:37:fb:dd:60:
64:5d:89:c2:08:52:f8:30:1a:68:56:94:0a:07:0d:
df:21:94:53:93:9c:d9:ec:43:63:58:74:d2:a5:23:
cf:e6:fe:9e:b6:d2:65:0d:78:8f:ef:c9:94:b3:5b:
c9:34:40:cb:40:35:63:2e:6a:6c:ce:7f:c3:86:27:
f3:a7:a7:c5:5d:f6:61:ea:b8:7d:eb:c2:00:57:90:
fd:ab:b0:89:3e:28:46:25:bd:c7:ac:36:0e:78:92:
4a:70:5a:85:fa:0c:51:14:3d:92:b1:4c:39:07:3a:
d1:c7:ae:bf:61:ea:b1:40:f2:c1:3e:7e:06:b0:31:
22:03:eb:76:c5:69:fd:8d:ad:64:8a:95:47:4c:31:
37:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:CD:75:37:01:E7:CB:49:06:41:78:08:68:87:7E:C2:12:43:97:BF
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/s811NwHny0kGQXgIaId-whJDl78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.168.0/24
Signature Algorithm: sha256WithRSAEncryption
22:6e:d7:5f:7a:ed:8f:01:c4:5c:e1:bb:c3:e4:96:2f:4c:e2:
76:c2:4f:40:2c:06:9e:72:1b:7c:31:f9:cb:42:0f:96:10:13:
37:17:d2:c1:66:2d:bb:60:29:13:b1:31:82:17:49:ea:e7:d6:
29:61:2e:f1:b8:7c:95:60:ce:b0:1c:ab:bf:98:45:48:5e:68:
76:cd:51:66:5a:07:9b:75:cb:fa:bc:67:ab:2c:57:4b:22:83:
99:b9:14:47:0d:ee:35:0a:d9:41:98:9f:0f:d8:e8:5a:c4:af:
f3:29:ed:b9:f0:aa:db:e9:d8:86:57:ea:ea:e2:85:83:d5:c7:
21:00:30:7d:5d:d6:1c:82:61:01:4f:04:33:36:4e:82:91:db:
e1:04:d7:f4:29:e2:eb:f6:1a:71:ef:3f:8f:53:4b:79:17:e6:
c0:71:f4:3b:3a:18:9f:b6:a6:99:9e:08:69:2e:3d:65:3c:42:
bb:1a:0f:36:c2:ba:5d:6f:a9:b5:09:29:b2:92:10:76:f8:fd:
db:5e:c5:27:93:e6:f7:ef:14:96:f9:29:9a:70:73:48:ca:80:
bc:a6:32:95:42:3f:ab:1d:45:dc:d7:50:46:c1:b8:0d:50:85:
58:f5:ad:bc:67:db:6f:f8:dd:29:5b:97:c7:2e:ae:28:35:d0:
56:39:74:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:57 2023 by rpki-client on console-fra.rpki-client.org