Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/5a5b74-cab9-4220-b45e-87e8cbd80b4e/1/kTTjqVvDbf9DV9aoUuDSxESJ6gc.roa
File: kTTjqVvDbf9DV9aoUuDSxESJ6gc.roa (raw, json)
Hash identifier: XgsiLq6u9+5GJakb4SCGmv+1YKTWYzTiScssN3bBEwM=
Subject key identifier: 91:34:E3:A9:5B:C3:6D:FF:43:57:D6:A8:52:E0:D2:C4:44:89:EA:07
Certificate issuer: /CN=ffdd76d973a2836e201526879f40ae3b65f564f4
Certificate serial: 03C8854A
Authority key identifier: FF:DD:76:D9:73:A2:83:6E:20:15:26:87:9F:40:AE:3B:65:F5:64:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_9122XOig24gFSaHn0CuO2X1ZPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/5a5b74-cab9-4220-b45e-87e8cbd80b4e/1/kTTjqVvDbf9DV9aoUuDSxESJ6gc.roa
Signing time: Sat 01 Jan 2022 05:59:26 +0000
ROA not before: Sat 01 Jan 2022 05:59:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62117
IP address blocks: 185.46.236.0/24 maxlen: 24
185.46.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63472970 (0x3c8854a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffdd76d973a2836e201526879f40ae3b65f564f4
Validity
Not Before: Jan 1 05:59:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9134e3a95bc36dff4357d6a852e0d2c44489ea07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:72:37:f2:e8:06:cf:a4:88:f9:ad:81:20:8f:
7c:a0:9a:00:4b:62:a8:e3:30:06:da:22:f3:2f:44:
7d:8d:cd:d2:41:dd:33:c8:b1:96:39:cd:8b:a2:a6:
31:e7:c1:d4:b7:83:df:1d:9c:f1:16:fa:25:0a:b7:
d5:f7:70:cd:af:93:de:b3:20:a7:47:0a:60:01:f5:
a6:dd:26:0f:10:96:a0:eb:2a:c6:56:23:27:1e:3d:
a1:be:48:b6:1f:82:d3:e9:cf:02:5f:d2:7c:6f:cc:
1c:67:31:20:da:39:e8:7e:96:7f:b0:35:38:10:28:
62:58:70:57:2f:13:89:f7:ce:5e:3c:57:1a:89:8b:
a3:a4:a3:26:c5:f0:01:43:14:10:9d:46:71:5b:eb:
68:c1:49:30:42:62:4a:52:d7:ef:da:19:2d:d1:11:
9f:60:20:01:80:d8:a1:93:c2:72:3c:41:e5:e7:3f:
4d:0d:ad:d2:99:46:f3:dd:24:b2:8f:3e:b2:99:32:
36:fa:6f:bc:32:b7:23:4c:96:fb:ff:43:39:bc:36:
48:06:f6:f5:07:a7:da:d7:13:3c:20:25:d1:68:16:
88:8d:17:2e:a5:78:be:f2:82:d7:bb:75:82:a9:28:
de:97:32:eb:06:7a:7f:f3:ba:b3:00:05:ff:be:60:
67:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:34:E3:A9:5B:C3:6D:FF:43:57:D6:A8:52:E0:D2:C4:44:89:EA:07
X509v3 Authority Key Identifier:
keyid:FF:DD:76:D9:73:A2:83:6E:20:15:26:87:9F:40:AE:3B:65:F5:64:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_9122XOig24gFSaHn0CuO2X1ZPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5a5b74-cab9-4220-b45e-87e8cbd80b4e/1/kTTjqVvDbf9DV9aoUuDSxESJ6gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5a5b74-cab9-4220-b45e-87e8cbd80b4e/1/_9122XOig24gFSaHn0CuO2X1ZPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.236.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:dd:a7:78:a8:44:5a:5d:d9:47:16:9f:72:84:19:c3:0c:0e:
b5:b9:c0:b5:0e:45:9d:10:69:0c:84:68:0c:27:8d:fc:1b:c7:
0f:98:59:6f:74:ff:34:d9:f4:19:89:1a:d2:1c:42:57:3c:54:
72:e6:d8:f9:ee:54:f1:f8:f9:58:36:fa:71:3f:a6:87:a7:46:
8c:27:e9:93:d3:29:82:40:46:b6:d9:bf:f2:d1:14:36:65:cd:
e7:e8:a2:6f:f8:4a:ee:74:cf:3b:09:23:12:32:bf:6e:0c:e4:
4f:d6:29:c4:8b:f4:88:a7:6e:9d:89:aa:3f:b4:8d:94:9a:69:
5a:eb:4e:65:5e:cc:84:40:91:3c:e6:a3:30:1d:1e:e0:d7:44:
54:e7:fc:a9:8e:12:0c:e2:d6:1c:20:22:fb:5a:b8:04:de:38:
40:cd:3e:9b:4a:5c:16:d4:a5:56:56:bb:1a:50:c3:b8:2d:33:
bd:b2:14:51:7d:e0:50:58:bf:0e:1d:70:97:1f:1c:7e:15:89:
16:47:68:42:a6:85:f6:62:4d:6a:91:74:f3:dc:d9:af:93:cd:
d2:38:08:21:ee:61:af:22:59:99:3a:81:d6:70:92:85:31:be:
67:7e:8e:41:c7:e8:ee:41:0b:bc:9a:40:41:55:3e:54:90:74:
e5:f2:c7:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:52 2023 by rpki-client on console-fra.rpki-client.org