Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/0NItUS3x79ExmFT7D1UcUQk_WoU.roa
File: 0NItUS3x79ExmFT7D1UcUQk_WoU.roa (raw, json)
Hash identifier: 0TiDW+8qs+fGsUEJwIhqJa8rxNHNaIsAxs4UNnHJ2uQ=
Subject key identifier: D0:D2:2D:51:2D:F1:EF:D1:31:98:54:FB:0F:55:1C:51:09:3F:5A:85
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 14F3C3F5
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/0NItUS3x79ExmFT7D1UcUQk_WoU.roa
Signing time: Sat 14 May 2022 10:23:34 +0000
ROA not before: Sat 14 May 2022 10:23:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 185.151.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351519733 (0x14f3c3f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: May 14 10:23:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0d22d512df1efd1319854fb0f551c51093f5a85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e0:c3:8f:23:d8:b6:34:bb:66:d5:9e:eb:fc:
b8:a0:61:3f:ec:29:28:d9:f8:b8:21:f5:e2:02:c7:
73:63:42:fd:1c:09:3a:67:58:fa:de:51:f3:e6:28:
e6:e3:0c:ea:d4:f2:c5:69:9d:f8:77:30:8e:e4:66:
02:5c:48:de:36:6c:44:ee:4e:28:58:51:fc:7c:ba:
5a:95:6a:db:55:b9:9f:d0:f5:9a:6b:5d:44:da:7c:
27:90:35:0a:99:08:8b:a6:d4:f3:53:68:99:4e:29:
cb:68:18:29:e4:0f:db:43:c8:b9:42:86:59:b9:78:
be:03:dd:6d:c3:e6:85:92:2a:c2:f2:aa:46:16:5b:
b9:92:48:ed:a7:82:17:31:f9:1b:e2:41:9a:b0:bd:
4c:9e:53:82:00:47:6c:94:44:5e:e4:e5:a0:6e:75:
b4:d6:47:fa:ba:5f:8d:da:72:6d:4d:bf:dc:85:2f:
7d:e2:5c:91:fc:af:b4:6c:bb:40:ee:b6:3e:2a:6d:
7d:26:cd:46:e0:71:95:92:b9:72:da:b4:d3:62:3f:
ee:54:47:94:97:b8:27:dd:0c:c9:83:00:ac:56:56:
2e:c4:24:a6:84:88:4f:69:29:a4:6c:64:da:d4:65:
66:7c:53:13:d1:db:91:25:c2:77:1c:17:6e:d4:d9:
c8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D2:2D:51:2D:F1:EF:D1:31:98:54:FB:0F:55:1C:51:09:3F:5A:85
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/0NItUS3x79ExmFT7D1UcUQk_WoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.236.0/22
Signature Algorithm: sha256WithRSAEncryption
35:a0:67:2f:f2:2b:77:d9:95:b5:eb:2e:f9:0d:82:68:7a:7c:
dd:04:d6:0a:59:e3:6f:08:79:61:b7:1c:64:24:71:8b:b5:79:
ad:f0:27:b2:57:40:6e:56:82:c0:02:ab:62:30:99:f4:7b:93:
61:35:c4:3f:ca:88:aa:96:fd:81:32:90:e4:3e:d8:cf:f4:08:
f5:3f:61:65:8b:09:8e:25:90:f5:21:bd:1c:ee:cf:48:58:f8:
8b:b1:73:42:bb:2e:22:a4:43:47:55:26:75:dc:6c:64:2e:c0:
3c:63:c1:b0:37:7e:34:3a:a2:9c:94:9c:6e:0f:a0:f3:a0:85:
10:d7:98:35:b0:99:eb:e9:bf:b8:c8:9b:c4:84:d3:a9:87:79:
69:b3:ae:1f:d0:fa:1b:a1:5d:6c:d9:2f:3a:68:63:7c:64:2a:
83:3f:d1:2a:46:50:76:73:f0:71:5e:64:02:53:fa:28:7f:76:
a8:53:e0:02:3a:9c:9b:42:c6:af:db:0d:97:75:4a:cc:4d:28:
0e:26:ee:62:f5:cd:46:fc:43:c7:67:85:11:a1:f2:92:ae:91:
4e:e4:d5:52:95:eb:eb:db:36:ec:a2:5b:d4:8b:83:8c:22:2e:
86:a1:f5:b0:7f:dc:22:49:2e:f4:ae:bf:53:d6:9b:8c:d6:fc:
6a:a5:32:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org