Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/7AY3Wi6yMw8k8p7G5WdJuZHo_lM.roa
File: 7AY3Wi6yMw8k8p7G5WdJuZHo_lM.roa (raw, json)
Hash identifier: CQtXBDbp2OMSNxaD4sYKfz57WtmDAYGha+o/JG5y0Og=
Subject key identifier: EC:06:37:5A:2E:B2:33:0F:24:F2:9E:C6:E5:67:49:B9:91:E8:FE:53
Certificate issuer: /CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Certificate serial: 01832DC3B1FAEF67A2090F9CE0B491324834
Authority key identifier: 4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/7AY3Wi6yMw8k8p7G5WdJuZHo_lM.roa
Signing time: Sun 11 Sep 2022 18:15:43 +0000
ROA not before: Sun 11 Sep 2022 18:15:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211327
IP address blocks: 185.174.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:2d:c3:b1:fa:ef:67:a2:09:0f:9c:e0:b4:91:32:48:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Validity
Not Before: Sep 11 18:15:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec06375a2eb2330f24f29ec6e56749b991e8fe53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:55:55:30:59:19:49:3f:8f:05:0f:28:9d:a0:
e3:8d:8f:f4:45:ee:b5:be:87:64:f3:0d:e7:24:40:
66:92:40:40:9f:b6:4e:bf:8f:5a:8c:a4:28:dd:64:
3e:f3:95:3f:9e:e5:8d:36:77:97:10:25:7a:ee:d6:
d1:b6:c3:8f:50:20:87:7b:6d:c2:7c:3f:0d:24:ec:
a3:67:9a:bc:1b:b1:77:3f:d0:d0:77:c8:19:f8:5f:
b7:a4:e4:2b:e9:b2:02:9d:e2:bc:5f:e9:77:22:d8:
82:75:96:8b:89:42:36:4d:39:c2:b1:1b:79:d9:52:
03:ea:8a:8f:28:44:2e:38:5d:f2:a8:30:74:b2:dc:
c1:1f:30:c3:12:fe:fd:9d:28:d4:f8:c6:70:90:13:
a8:6d:4f:f2:ee:a9:cb:24:f0:49:e3:4b:5d:d1:39:
bc:7b:bc:c2:5f:c1:d5:30:75:66:2e:4d:f2:4c:70:
e3:b9:6b:52:06:71:37:26:af:0e:77:8a:18:6f:5a:
cd:54:7b:20:de:31:2c:03:5b:c6:75:e9:5a:d3:28:
a7:82:4a:bc:69:ba:3b:3c:1b:ed:9e:a1:33:e5:9a:
ff:86:d5:ed:69:76:5a:f2:01:44:e4:9a:db:e3:7c:
7f:e2:8f:c5:f5:2c:16:6c:81:d1:d4:62:57:2c:71:
cb:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:06:37:5A:2E:B2:33:0F:24:F2:9E:C6:E5:67:49:B9:91:E8:FE:53
X509v3 Authority Key Identifier:
keyid:4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/7AY3Wi6yMw8k8p7G5WdJuZHo_lM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/TahNJHzjfNzPBuFXHSJqK4Vne80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.71.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:f1:70:f4:62:9d:fb:7f:65:84:56:bd:8f:38:be:ab:bd:51:
53:3b:44:ea:b4:18:7b:d3:76:67:36:b7:af:77:35:7c:68:9c:
d6:9c:2f:af:1c:91:74:36:ec:e3:a0:29:15:c1:90:27:d5:83:
bf:77:a9:6d:39:81:fe:e1:28:1a:1f:86:ec:03:3f:dd:ec:30:
db:98:55:b1:1b:f9:5e:7e:9d:fa:d3:4f:e9:60:f2:7d:59:16:
bf:0d:de:37:85:db:0b:2a:13:f9:be:07:3f:f1:73:a8:ce:f3:
7f:74:d3:d4:56:7b:e2:4a:96:fe:78:a1:ac:a7:92:fc:4a:2f:
1b:25:00:72:8b:14:3a:77:c6:3a:c4:f0:b9:83:ef:af:c8:99:
ab:41:90:57:a9:85:a6:66:c4:b8:79:af:51:5f:77:ef:0b:b6:
04:99:c5:26:d9:7c:24:74:51:91:fa:49:d7:db:18:0a:99:86:
3b:96:ef:56:6f:d9:ff:36:1a:21:4b:10:3e:92:0a:5a:db:40:
3e:2c:16:6d:47:d1:9c:78:ee:46:82:56:ab:eb:97:ce:bd:af:
50:93:ea:eb:09:1f:e7:14:2d:78:f6:7a:d8:a5:c1:ba:b6:3c:
1a:31:86:7d:7b:40:e9:f3:7f:09:2a:48:ee:78:08:3b:43:81:
07:40:37:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:44 2024 by rpki-client on console-ams.rpki-client.org