Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/c70928-cede-4b62-89a7-60f6fa9110e2/1/dOTMyyvfaZevmb_UbcwsmsIaROY.roa
File: dOTMyyvfaZevmb_UbcwsmsIaROY.roa (raw, json)
Hash identifier: fqaEu2P7ZlOj8SXP+evA2GJAa1OQNuSjl8JW4oK0NeA=
Subject key identifier: 74:E4:CC:CB:2B:DF:69:97:AF:99:BF:D4:6D:CC:2C:9A:C2:1A:44:E6
Certificate issuer: /CN=4f9d5fbaaf76a80a65e0e92c02061e895b2b8117
Certificate serial: 0D9F4B6E
Authority key identifier: 4F:9D:5F:BA:AF:76:A8:0A:65:E0:E9:2C:02:06:1E:89:5B:2B:81:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T51fuq92qApl4OksAgYeiVsrgRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/c70928-cede-4b62-89a7-60f6fa9110e2/1/dOTMyyvfaZevmb_UbcwsmsIaROY.roa
Signing time: Sat 01 Jan 2022 14:57:57 +0000
ROA not before: Sat 01 Jan 2022 14:57:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21183
IP address blocks: 185.204.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 228543342 (0xd9f4b6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9d5fbaaf76a80a65e0e92c02061e895b2b8117
Validity
Not Before: Jan 1 14:57:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74e4cccb2bdf6997af99bfd46dcc2c9ac21a44e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:db:d2:5f:bc:15:30:b2:bc:02:7b:0c:d0:37:
00:7d:05:4e:8c:ce:20:aa:22:b8:a6:34:d3:19:90:
06:69:0d:fc:2b:8e:0f:9d:1c:97:7a:61:13:c0:0d:
08:84:bb:af:f9:a8:f0:76:8b:29:73:e1:4e:56:bf:
76:d2:28:17:40:bf:b3:16:2d:11:8d:f8:c0:74:72:
08:86:63:b8:68:37:c3:4c:37:b8:d1:f3:d3:38:c0:
36:00:f3:14:c5:65:45:05:84:cd:72:b3:1e:d4:af:
9f:26:8a:e4:c9:42:3f:4c:0f:06:ae:5a:de:a1:d0:
8c:c6:32:3e:05:8a:50:cc:86:bd:f1:50:b7:5b:d6:
ad:ac:37:ab:6b:03:4a:64:3f:b3:e6:a4:a7:7a:ea:
2e:1e:d2:c0:fe:64:e0:6b:8b:d3:b8:45:c5:5e:57:
a9:23:52:8b:35:d0:4d:11:13:2b:82:2e:de:72:67:
f6:a0:6f:e4:2b:63:25:0b:2a:91:4c:b7:80:c8:13:
fe:ed:54:8b:ef:0d:47:07:87:5b:7a:1f:d7:6c:31:
7d:ea:5a:6a:95:dd:1e:ba:8a:f3:a9:ce:a0:f8:98:
16:a9:6e:bd:1f:56:a7:6c:c4:80:51:67:b1:91:02:
35:8b:0b:65:35:6f:a1:4b:54:eb:2f:55:20:b0:85:
c7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E4:CC:CB:2B:DF:69:97:AF:99:BF:D4:6D:CC:2C:9A:C2:1A:44:E6
X509v3 Authority Key Identifier:
keyid:4F:9D:5F:BA:AF:76:A8:0A:65:E0:E9:2C:02:06:1E:89:5B:2B:81:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T51fuq92qApl4OksAgYeiVsrgRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/c70928-cede-4b62-89a7-60f6fa9110e2/1/dOTMyyvfaZevmb_UbcwsmsIaROY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/c70928-cede-4b62-89a7-60f6fa9110e2/1/T51fuq92qApl4OksAgYeiVsrgRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.32.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:5d:7d:0c:55:34:4d:d8:9c:91:1f:01:38:13:70:40:3d:bc:
63:dc:2b:4d:79:ab:8a:04:f1:63:67:8a:7d:dd:e1:84:fa:04:
f7:58:14:a1:8d:f0:62:24:7f:b0:e0:a3:0a:7a:c9:f2:32:1c:
82:ec:0e:37:0e:a5:66:6f:bf:34:80:b1:ca:30:6c:f0:1a:cf:
85:f8:69:1f:47:80:c0:af:5d:92:25:4d:36:48:ea:ab:b4:a9:
65:27:3c:e4:e5:7d:8c:e6:e5:46:ad:7e:2c:d0:f0:22:9d:66:
d1:1b:6a:05:3a:e5:9d:c3:ce:20:aa:d9:0b:fe:89:dc:92:92:
1b:94:9e:c9:d1:0d:a4:1e:5b:66:e7:57:2a:da:bd:47:23:58:
4e:64:a6:5d:b7:3d:36:6e:0f:5b:11:24:8a:eb:af:1c:75:59:
d1:8e:ef:cd:0e:e4:ff:3a:9c:6f:a3:95:6e:97:62:7f:fe:00:
52:aa:be:6d:56:2a:8f:be:fe:bd:8c:4f:6c:1a:6c:bf:b1:be:
6d:90:ef:82:fb:a0:12:a5:20:16:dd:91:19:5d:7c:7b:ca:de:
30:a6:74:77:fa:76:30:96:4d:56:e9:1f:bd:89:88:11:98:03:
eb:3e:91:ca:12:77:0a:52:76:98:84:c5:31:2c:15:7e:90:9c:
14:d9:fe:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:37 2023 by rpki-client on console-ams.rpki-client.org