Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/kTvmb3_Rv5QiXNcx2ppW6xEslP8.roa
File: kTvmb3_Rv5QiXNcx2ppW6xEslP8.roa (raw, json)
Hash identifier: LdSrk+k1g7rzYIvYqhkvNwKen0xx6fTwIGuYR2TAEjc=
Subject key identifier: 91:3B:E6:6F:7F:D1:BF:94:22:5C:D7:31:DA:9A:56:EB:11:2C:94:FF
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 082B260B
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/kTvmb3_Rv5QiXNcx2ppW6xEslP8.roa
Signing time: Sat 01 Jan 2022 07:56:06 +0000
ROA not before: Sat 01 Jan 2022 07:56:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16125
IP address blocks: 185.65.200.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137045515 (0x82b260b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=913be66f7fd1bf94225cd731da9a56eb112c94ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:fb:06:80:0b:a6:e3:b1:ae:30:54:60:c1:3a:
ab:3a:15:8e:3f:49:aa:e4:34:c1:09:3a:9b:00:fe:
58:02:5d:23:d2:de:d6:01:6b:57:15:0d:a0:4b:11:
b2:29:d5:05:eb:5d:d6:f0:65:df:6a:69:2a:18:dd:
26:00:5c:4d:91:00:0d:a2:8b:b5:89:9d:13:b7:7d:
3d:ea:99:45:84:5d:39:9f:7b:99:1e:d5:9b:9e:e9:
81:83:d3:d0:a6:ca:34:fd:4f:66:84:ff:18:92:4e:
d3:13:34:6c:9e:74:0c:cc:73:78:69:8d:40:1e:e9:
34:19:40:bb:7e:1e:e4:4b:a3:54:b3:48:79:34:60:
30:fc:c4:6e:8f:f1:9f:56:df:d2:88:4d:5f:44:6d:
34:bb:52:e7:c6:c6:5d:64:03:cb:23:0f:dd:13:5b:
2b:92:75:ee:01:26:aa:37:d0:8f:81:d7:96:22:31:
a8:76:70:d6:3e:02:36:91:c3:d7:26:84:01:d4:d6:
08:de:59:5b:41:2a:dd:a1:c0:a3:13:37:8f:76:5f:
43:59:e2:84:f7:4e:41:0d:4d:c5:2a:11:36:79:41:
51:b1:5d:5f:6d:54:24:db:42:15:11:56:cf:91:05:
d1:b0:7f:2f:5f:e3:4b:85:ab:04:c6:c9:10:8a:6a:
65:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:3B:E6:6F:7F:D1:BF:94:22:5C:D7:31:DA:9A:56:EB:11:2C:94:FF
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/kTvmb3_Rv5QiXNcx2ppW6xEslP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.200.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:52:49:13:14:e8:55:63:f8:a7:2f:02:83:a1:a7:a2:34:b2:
ee:57:5d:30:e0:a8:0d:2b:29:a8:42:41:0e:14:99:f9:3d:c1:
c8:60:df:7c:01:39:da:61:6e:8a:64:b8:ab:97:97:e5:5e:ea:
c5:50:fe:a2:85:1d:fe:31:60:f5:e5:2f:c8:17:a7:71:d5:3c:
4a:4c:ca:fd:50:48:9d:b7:d8:b2:66:1a:e2:98:29:48:6b:0e:
c8:22:6b:32:0e:36:00:c2:d1:b6:9d:21:8d:39:32:aa:b2:b3:
b6:e1:c6:cf:4b:2e:39:ea:ce:8d:de:98:7b:1c:ce:cb:da:60:
64:1c:c6:44:04:b9:7c:d3:7a:9b:c3:81:88:9b:24:10:d1:2b:
77:a1:fa:f3:31:60:61:dc:97:ff:0e:c0:04:b8:0c:ae:c6:9e:
2c:f3:e3:67:3b:20:c1:ec:9f:40:29:56:b6:37:72:2a:d1:29:
8e:67:9a:84:a7:48:af:e9:a6:74:33:98:86:6c:d9:2c:40:10:
92:7a:47:c2:0c:7b:ab:7a:c6:1a:8b:e6:e0:88:aa:ef:21:f4:
7d:ea:f0:cb:43:a1:32:1f:63:93:1b:9a:79:7d:ac:cc:2e:d4:
f1:ce:50:d9:bc:af:a2:1a:34:c6:13:8b:4d:21:cc:19:b2:13:
3a:a2:7a:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org