Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/JxFrg1zRKs0GIAIrdgCPHhqrZK8.roa
File: JxFrg1zRKs0GIAIrdgCPHhqrZK8.roa (raw, json)
Hash identifier: Vm1aDRSWV+GEMpbr/ZTLTICtxwNa1OLDgR7BiP2zzmA=
Subject key identifier: 27:11:6B:83:5C:D1:2A:CD:06:20:02:2B:76:00:8F:1E:1A:AB:64:AF
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 0184664A1AB79BCAAD3F30009D858A256CF8
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/JxFrg1zRKs0GIAIrdgCPHhqrZK8.roa
Signing time: Fri 11 Nov 2022 10:44:03 +0000
ROA not before: Fri 11 Nov 2022 10:44:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 185.155.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:66:4a:1a:b7:9b:ca:ad:3f:30:00:9d:85:8a:25:6c:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Nov 11 10:44:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27116b835cd12acd0620022b76008f1e1aab64af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f3:be:42:d1:94:c6:48:3f:6a:ff:9e:79:af:
13:66:ff:4f:41:21:7b:a7:2c:9d:aa:80:ba:82:6c:
ec:87:d6:9e:6f:5b:fc:b1:c7:5e:34:1b:b7:9d:1a:
33:fd:93:93:9c:1a:67:c9:27:ac:e0:72:8c:59:4a:
2b:1c:85:d2:de:27:c4:44:93:65:cf:a0:c2:16:fe:
60:70:f9:06:73:d7:6c:12:62:0f:34:97:9f:b0:26:
93:e7:fd:b6:6a:c6:e8:f1:00:83:fe:11:ac:89:33:
ee:f5:9b:bf:67:e4:ad:35:23:d8:6c:0a:10:35:8b:
24:ad:cb:9c:25:7b:aa:95:ef:81:46:27:32:9f:2b:
3e:12:a0:a8:50:63:be:25:3c:5b:a4:3a:49:a1:2a:
e6:a5:8f:58:6b:91:09:7f:6d:36:79:46:72:f1:f8:
86:0c:01:4b:0a:e8:1b:b1:4a:16:77:df:e9:4f:b6:
ff:ca:de:3a:ba:ff:4c:88:53:30:6c:dc:d2:de:c5:
38:55:e8:44:c2:ae:74:19:82:fb:c0:14:8a:fd:b0:
2a:0b:00:34:d9:74:98:af:50:76:cd:fe:43:21:90:
8d:d7:50:62:81:ff:3f:19:a3:78:4e:00:98:9a:98:
98:13:97:a7:f7:d1:37:58:d4:54:2e:e3:c7:70:a2:
4f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:11:6B:83:5C:D1:2A:CD:06:20:02:2B:76:00:8F:1E:1A:AB:64:AF
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/JxFrg1zRKs0GIAIrdgCPHhqrZK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.55.0/24
Signature Algorithm: sha256WithRSAEncryption
93:c2:b6:e1:a2:a8:81:76:e7:46:78:c3:a5:1f:b1:df:80:cb:
52:ef:6a:a0:87:71:9f:6f:65:19:fb:76:d7:c1:fc:1b:05:37:
60:08:2e:04:37:aa:1a:00:2b:40:9e:a3:15:73:87:bd:0a:43:
65:fa:5c:d4:1c:93:a6:d4:7f:de:99:60:31:44:ed:2d:d2:ba:
52:cd:cb:6d:a1:52:ef:81:e0:bb:72:28:99:86:45:03:0b:84:
84:4c:1f:bd:a0:35:1f:c9:2d:aa:e0:2d:d7:30:d9:f4:03:1c:
a8:d3:5c:43:96:a0:4a:69:64:23:06:c3:09:12:1a:c7:8b:23:
cb:dd:66:7c:a5:57:7e:0b:71:1c:bf:90:84:3a:de:3f:45:d5:
a7:1e:bb:a6:e4:6e:58:c4:ab:b0:79:a7:49:72:db:2c:e7:43:
5d:89:e3:27:23:60:37:78:60:6f:de:e1:17:69:26:62:25:d5:
3d:c0:b1:65:57:db:6a:61:db:60:69:da:ea:d0:75:cf:4d:5b:
ca:63:8b:a4:9e:26:e0:25:ba:dc:b7:d4:57:eb:52:4d:09:9d:
39:c5:52:ff:de:1a:2b:5c:b9:10:2e:52:31:5e:cb:73:66:66:
34:e5:1b:14:b3:0a:19:9f:8d:74:60:ba:a5:b8:6c:f8:5e:99:
6c:c4:e3:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:23 2023 by rpki-client on console-ams.rpki-client.org