Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/1TxJC92s-WwIvkniU-5kaw7vzbw.roa
File: 1TxJC92s-WwIvkniU-5kaw7vzbw.roa (raw, json)
Hash identifier: u65tu0mL41HJOcVlYBzozCz0uw3q+p6H1t4prtRVBhQ=
Subject key identifier: D5:3C:49:0B:DD:AC:F9:6C:08:BE:49:E2:53:EE:64:6B:0E:EF:CD:BC
Certificate issuer: /CN=70fee176f51ce8fd81424ff73a5417341279c0f1
Certificate serial: 1664466C
Authority key identifier: 70:FE:E1:76:F5:1C:E8:FD:81:42:4F:F7:3A:54:17:34:12:79:C0:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/1TxJC92s-WwIvkniU-5kaw7vzbw.roa
Signing time: Sat 01 Jan 2022 01:01:00 +0000
ROA not before: Sat 01 Jan 2022 01:01:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208802
IP address blocks: 185.85.184.0/22 maxlen: 22
2a05:b100::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 375670380 (0x1664466c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70fee176f51ce8fd81424ff73a5417341279c0f1
Validity
Not Before: Jan 1 01:01:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d53c490bddacf96c08be49e253ee646b0eefcdbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6a:28:fd:32:72:8a:aa:99:67:55:31:be:9f:
3c:97:41:fc:71:4b:fb:0f:b0:58:96:e9:95:32:96:
12:2e:11:39:5d:bb:e3:39:28:c0:f5:ae:36:c3:36:
c1:aa:44:dc:3c:aa:b8:fd:46:77:95:33:93:a1:28:
b1:55:75:61:ab:f6:ac:0d:8b:a3:68:56:ea:f3:d0:
71:fe:03:bf:ef:eb:fe:cc:4d:fa:52:71:fc:b2:bf:
06:1f:2d:51:f9:1c:2c:48:6f:09:db:c9:99:33:61:
5b:82:a7:fa:f6:41:b8:45:c1:af:46:bb:97:51:4f:
33:9c:35:2c:a5:1c:ec:71:1e:4e:ce:67:e3:b3:25:
7d:82:cb:3f:0f:82:14:ae:84:65:59:44:88:f6:78:
33:fc:8d:45:75:9c:83:74:c6:39:2a:33:16:a5:8e:
c5:b2:33:8c:6c:d1:ca:2f:15:8f:82:68:ea:08:fd:
8b:29:87:b9:1a:21:7c:21:92:48:e2:ec:df:a1:fd:
2e:b6:c1:04:da:ff:4f:ed:62:86:81:47:42:66:de:
78:89:1d:10:e4:99:b3:2b:ab:db:e9:e4:96:0a:18:
2e:00:23:40:cf:65:b3:fd:9d:78:15:fe:93:3d:66:
3b:a1:cf:d1:25:ce:6a:9b:61:48:2b:bc:b4:6c:d5:
45:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:3C:49:0B:DD:AC:F9:6C:08:BE:49:E2:53:EE:64:6B:0E:EF:CD:BC
X509v3 Authority Key Identifier:
keyid:70:FE:E1:76:F5:1C:E8:FD:81:42:4F:F7:3A:54:17:34:12:79:C0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/1TxJC92s-WwIvkniU-5kaw7vzbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.184.0/22
IPv6:
2a05:b100::/29
Signature Algorithm: sha256WithRSAEncryption
04:98:71:69:79:4b:ee:c1:83:90:ec:05:ce:ef:7b:a8:de:ce:
ad:be:28:e2:da:8b:13:72:94:f8:ef:4d:0a:b9:67:d4:63:e3:
7a:19:2d:42:f5:e6:5c:df:e5:1a:53:5f:4a:fe:02:35:3f:f8:
13:f1:16:f0:6a:e6:14:9b:a2:e3:f0:1b:04:81:04:91:54:3d:
49:43:fc:f8:97:cb:7c:12:d1:b4:b4:d1:b5:da:76:f6:e2:41:
9c:7e:3e:2d:41:a2:8a:9d:c5:5e:a7:c0:0e:3d:44:c4:73:49:
67:ec:a5:b4:96:ce:4f:49:49:78:95:47:70:a9:25:50:f7:a0:
05:65:a6:e8:33:cc:08:07:ed:00:fc:47:d9:b0:fd:52:8a:3c:
54:29:dc:f1:b5:f1:e7:d6:e3:00:fd:ae:2e:d6:be:d0:59:78:
3c:a0:83:6a:42:8b:f8:1f:1e:fb:e2:36:49:71:1c:33:bb:ab:
47:26:97:54:6d:b2:07:a7:be:37:e7:c0:92:58:15:d5:fe:ea:
2d:23:6e:2d:a2:d8:46:f6:c0:83:13:ff:ad:7e:e4:61:67:11:
2b:d5:40:c9:0e:8f:b9:07:78:9f:18:03:e3:7f:e2:90:a8:42:
51:a2:68:a8:7e:a1:47:16:85:c2:23:fd:70:12:50:66:2e:21:
64:a5:7b:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:14 2024 by rpki-client on console-ams.rpki-client.org