Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/24875c-f159-464f-a8a7-1119b7fedfec/1/pPT_PVo0rIFnRDWZk9RXpoZ2HJ4.roa
File: pPT_PVo0rIFnRDWZk9RXpoZ2HJ4.roa (raw, json)
Hash identifier: 4bpRFZLlW/ixlRSNKdz/JUE6SDqPmjp2n/ps0zHER5Y=
Subject key identifier: A4:F4:FF:3D:5A:34:AC:81:67:44:35:99:93:D4:57:A6:86:76:1C:9E
Certificate issuer: /CN=f12b1b68ea1093bcee78d07192e6d8c3f70302cf
Certificate serial: 0535990F
Authority key identifier: F1:2B:1B:68:EA:10:93:BC:EE:78:D0:71:92:E6:D8:C3:F7:03:02:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8SsbaOoQk7zueNBxkubYw_cDAs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/24875c-f159-464f-a8a7-1119b7fedfec/1/pPT_PVo0rIFnRDWZk9RXpoZ2HJ4.roa
Signing time: Sat 01 Jan 2022 04:57:26 +0000
ROA not before: Sat 01 Jan 2022 04:57:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42913
IP address blocks: 185.193.148.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87398671 (0x535990f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f12b1b68ea1093bcee78d07192e6d8c3f70302cf
Validity
Not Before: Jan 1 04:57:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4f4ff3d5a34ac816744359993d457a686761c9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4a:6e:b0:31:5d:13:5d:44:e1:b8:63:b3:6d:
51:16:87:3c:89:46:bc:71:0a:96:15:61:15:f7:7c:
52:43:8c:42:e4:1e:70:ee:cb:bb:3b:1b:9a:67:79:
28:6a:80:cb:ce:5e:4e:d6:6a:a4:5d:16:06:f6:79:
56:25:1a:97:4f:e4:92:0c:42:8b:ea:a6:ef:cd:85:
d2:ad:32:36:96:f0:61:b1:ba:68:c2:5d:5e:fb:97:
2a:2c:a8:5e:c7:80:79:18:1f:6e:8b:9e:57:84:f9:
57:a8:6a:2c:4e:dd:12:47:35:f2:05:89:94:16:96:
e4:79:d7:9a:d7:6c:0a:00:9f:55:e3:6f:d0:7f:f7:
b2:2d:d6:71:c8:a5:55:59:51:3f:17:2a:a7:91:64:
8c:30:1b:82:a0:d5:43:45:92:5d:73:02:2e:3c:29:
94:b1:14:21:c7:ef:37:d1:d5:13:0c:ed:94:ad:e3:
48:18:aa:b1:52:55:ff:8c:58:d2:7e:5b:2b:85:14:
16:2c:3b:00:a5:e2:e4:51:c1:58:b8:67:79:76:e0:
a7:60:ff:79:c3:dc:f4:d0:51:6c:f6:ec:f0:30:0a:
f3:ef:44:75:25:a2:ac:5e:74:dd:3c:28:36:de:92:
2e:a0:b6:4c:20:56:5f:f2:97:54:0a:c0:e0:e7:f7:
fc:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F4:FF:3D:5A:34:AC:81:67:44:35:99:93:D4:57:A6:86:76:1C:9E
X509v3 Authority Key Identifier:
keyid:F1:2B:1B:68:EA:10:93:BC:EE:78:D0:71:92:E6:D8:C3:F7:03:02:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8SsbaOoQk7zueNBxkubYw_cDAs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/24875c-f159-464f-a8a7-1119b7fedfec/1/pPT_PVo0rIFnRDWZk9RXpoZ2HJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/24875c-f159-464f-a8a7-1119b7fedfec/1/8SsbaOoQk7zueNBxkubYw_cDAs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.148.0/22
Signature Algorithm: sha256WithRSAEncryption
44:a2:db:14:30:88:c8:c0:3c:d1:c1:79:4e:85:01:03:52:fe:
02:c0:b9:7e:45:95:92:ed:6d:21:c3:6e:f4:e0:06:30:89:49:
16:3f:46:44:f3:5b:3a:8c:a7:1d:67:be:ee:5a:6e:71:17:c2:
2b:77:77:44:d0:a1:86:c3:41:97:2b:ca:28:d5:02:43:40:ef:
6c:13:35:56:5c:8c:ac:98:ee:b3:20:c2:bc:99:58:e3:d3:85:
f7:20:be:3a:3f:4c:7e:2f:2b:66:4e:fc:f6:9f:b1:e4:77:68:
ca:b1:c8:b6:30:70:26:c7:d4:83:59:22:8b:85:fe:29:d3:ea:
03:bc:4c:44:2e:6e:14:47:cd:36:70:53:f5:11:af:37:0d:9c:
8f:99:a0:88:bd:3e:dc:aa:41:ff:e8:73:f0:10:73:4e:7e:87:
32:44:a7:de:04:dc:c2:c4:d6:83:ad:bd:6d:ab:54:de:02:65:
4a:89:74:ab:0a:f7:5b:80:26:9d:d5:7c:ba:d4:31:2b:e3:2b:
f6:25:11:0e:f6:3e:5d:a4:36:c3:4d:df:00:f7:1d:f5:db:7f:
04:f3:7f:29:88:3e:13:cd:13:7a:f2:86:ed:ff:64:07:80:25:
27:bf:5f:f1:7e:7c:3d:c6:a9:ad:e7:b0:5d:11:a0:30:69:c1:
49:73:bf:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org