Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/tblMJlqO1jlcYzaZ-JJgIsQtU8A.roa
File: tblMJlqO1jlcYzaZ-JJgIsQtU8A.roa (raw, json)
Hash identifier: rbD9UdSQGAfQ91qzNRnK++vsaSOxRv8LaugJnZb3iU4=
Subject key identifier: B5:B9:4C:26:5A:8E:D6:39:5C:63:36:99:F8:92:60:22:C4:2D:53:C0
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: DB2111
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/tblMJlqO1jlcYzaZ-JJgIsQtU8A.roa
Signing time: Fri 01 Jul 2022 08:59:25 +0000
ROA not before: Fri 01 Jul 2022 08:59:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.173.144.0/24 maxlen: 24
185.173.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14360849 (0xdb2111)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jul 1 08:59:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5b94c265a8ed6395c633699f8926022c42d53c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:37:ff:f8:ab:de:1e:87:07:7f:76:38:e5:f3:
5c:f1:74:3d:48:5f:33:91:cd:e9:05:7d:a3:e0:a8:
fc:4f:b9:29:c1:4c:e8:97:25:e3:7c:9a:5c:4b:d9:
4d:fa:e7:99:c7:08:84:ba:94:1a:9b:bd:f3:01:22:
10:db:ac:51:52:d9:07:07:ff:95:73:bb:fe:a1:c2:
ff:86:1b:82:3a:2d:0e:17:bf:c6:fd:90:08:d1:fd:
98:7f:44:b8:b8:e2:5d:67:6f:e0:03:42:16:b7:8f:
2a:c9:8b:a0:4b:a2:52:fd:26:17:94:e1:9c:81:1f:
f5:e3:e9:59:d8:b5:7f:2f:98:46:16:b1:da:c9:32:
53:ce:a0:33:f1:d1:ea:17:1f:0c:1a:2a:f1:80:14:
a6:b4:d6:69:ca:32:49:3e:bd:80:28:13:44:c0:7a:
0f:5b:f3:0c:7e:cc:a1:ec:bc:da:44:2e:77:7a:a3:
95:33:9d:da:b8:24:e0:71:57:ef:69:22:cc:74:7e:
3b:74:35:ee:b7:c2:75:ae:48:c0:10:47:bc:8d:45:
b4:b6:bc:84:28:8e:ee:4c:56:ab:a8:12:94:82:c2:
10:22:20:69:36:19:6c:3f:ee:6b:c9:28:79:44:cf:
7e:f9:0e:2b:8a:26:c3:0a:f3:ef:83:95:f1:18:5d:
bb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:B9:4C:26:5A:8E:D6:39:5C:63:36:99:F8:92:60:22:C4:2D:53:C0
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/tblMJlqO1jlcYzaZ-JJgIsQtU8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.144.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:99:5c:16:cc:bf:11:76:ff:d9:25:f9:a3:89:57:39:7c:f9:
96:e4:9f:d6:34:ec:0c:93:57:ae:3f:ad:63:3c:b7:9c:53:a8:
8a:58:9c:6b:2d:6a:1f:c2:3b:36:aa:07:2c:2a:51:5d:78:f3:
49:20:ee:86:11:1e:6b:82:9f:ac:4d:4d:54:8d:1c:98:74:f2:
bf:f7:05:5b:96:4a:51:68:85:cf:55:5c:0d:ac:16:c3:b6:21:
27:4a:14:66:b7:c1:67:0e:5a:65:b4:1f:bd:c5:29:64:7c:3d:
02:61:f5:8d:8f:f9:a7:88:2a:52:af:17:45:51:2a:ba:06:58:
35:d3:61:bb:3a:32:9d:45:20:50:79:d3:8d:4f:39:4f:14:38:
c4:14:3a:5d:1f:79:60:41:f0:91:54:0a:09:59:44:7f:c8:93:
62:d1:e0:ac:e3:0a:9f:4a:4e:0e:ca:07:0b:71:1d:64:ab:c7:
c8:b1:00:be:3e:bd:87:72:72:8d:23:e7:0d:07:8f:cb:76:5a:
7a:ed:18:26:79:ce:47:f1:b9:33:57:a6:bd:f6:3e:49:b4:ac:
93:b3:6d:c0:17:e9:8c:4b:37:c6:b3:89:ae:e9:54:49:af:af:
84:21:44:89:34:5d:f4:d2:95:cd:08:16:48:60:ed:b2:04:aa:
d1:6c:10:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:34 2023 by rpki-client on console-ams.rpki-client.org