Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/pfb7SewmK9QL8oY6Os4YTs15p4E.roa
File: pfb7SewmK9QL8oY6Os4YTs15p4E.roa (raw, json)
Hash identifier: ewtt2njQ65BPyiZrLOA+iVeMiZS59WpJm4cxEDK+PKg=
Subject key identifier: A5:F6:FB:49:EC:26:2B:D4:0B:F2:86:3A:3A:CE:18:4E:CD:79:A7:81
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 0969F78D
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/pfb7SewmK9QL8oY6Os4YTs15p4E.roa
Signing time: Thu 05 May 2022 19:32:28 +0000
ROA not before: Thu 05 May 2022 19:32:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210826
IP address blocks: 185.65.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157939597 (0x969f78d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: May 5 19:32:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5f6fb49ec262bd40bf2863a3ace184ecd79a781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:40:df:f9:1c:66:01:3c:10:51:5e:25:11:10:
40:75:16:bd:43:17:c6:f1:2f:3a:1c:49:97:fb:76:
e3:7f:f6:38:1a:eb:44:02:47:ee:0a:18:a0:68:9c:
f6:eb:6f:59:0b:b5:39:49:47:d5:26:68:42:24:58:
fd:81:2c:5b:99:5d:1c:b5:20:94:3e:ee:aa:08:69:
f1:99:0c:dd:da:bc:b2:72:b4:7d:5a:5a:a1:c7:bb:
bf:e3:6c:89:cc:d2:66:99:56:e7:6a:2a:73:ef:61:
cf:65:37:97:ac:63:ea:66:71:43:6e:0b:6a:6a:2a:
ca:55:d6:48:3e:55:77:a1:54:d1:e8:58:67:96:be:
da:6c:04:60:b2:03:29:4e:a7:38:b0:1c:34:77:9a:
e3:a4:56:ef:41:81:10:73:e6:38:9d:31:8f:97:8b:
f8:ef:15:73:b9:42:9f:bb:b9:ed:65:15:24:1c:63:
eb:c3:b5:a1:6b:00:84:68:4f:77:ef:9a:e4:33:39:
a6:ac:a6:67:81:c5:66:69:3c:b6:b9:6f:4a:17:a8:
d6:91:2c:88:f5:76:dc:d8:25:83:0d:07:b0:65:38:
a8:fc:2d:30:12:7d:cc:35:c7:84:44:63:cc:e5:f3:
87:c5:2f:db:24:06:ce:1c:04:6e:68:7e:11:19:d8:
7a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:F6:FB:49:EC:26:2B:D4:0B:F2:86:3A:3A:CE:18:4E:CD:79:A7:81
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/pfb7SewmK9QL8oY6Os4YTs15p4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.201.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:56:69:f4:81:ef:21:fe:90:db:bb:99:51:f1:4a:a2:12:13:
46:72:f2:d9:ae:1b:67:96:9e:80:49:8d:44:ed:fc:52:5a:1a:
3a:ec:29:f3:e2:c6:0e:88:51:c3:b9:a5:80:26:a8:c0:47:5e:
75:e0:34:b4:5d:5e:c8:fe:40:7a:64:2f:ad:f4:1d:71:ea:a3:
54:b1:9b:46:44:fe:57:68:a7:e1:86:8f:cb:9c:33:c4:3b:7a:
86:1d:9b:b2:90:9d:eb:d1:d0:97:1e:a6:3d:14:c5:47:7c:78:
04:ac:65:18:46:bb:a6:6e:8b:02:a1:5b:de:8e:8e:0a:4e:47:
a0:eb:6b:e9:97:a4:b2:aa:a5:99:d5:e8:a0:d9:28:72:be:3b:
b6:03:58:8f:2d:20:4b:6b:8d:42:97:98:03:2b:cb:f9:5c:09:
b5:c9:8b:09:a6:ed:72:48:0f:ae:1f:58:51:5f:8b:da:1c:8f:
ef:e9:cb:25:6c:92:96:7b:0c:1e:b5:c3:5f:39:6e:fc:fc:29:
96:0f:9a:24:1e:49:39:82:f1:15:15:c5:01:dc:29:b8:d0:72:
06:96:3f:3d:3c:6a:9b:ea:a4:f7:2f:95:25:c9:a3:2e:78:b9:
de:84:c2:5e:78:6e:3c:63:03:1b:4d:81:6e:fd:a9:02:f3:95:
6e:7c:a4:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org