Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/tygoI6og4uc3ogP5Z_t4PGfNtJU.roa
File: tygoI6og4uc3ogP5Z_t4PGfNtJU.roa (raw, json)
Hash identifier: SztC1KijbxLO4DzDyZg5bZ1S7n/EUTh0gjfllLqmUtg=
Subject key identifier: B7:28:28:23:AA:20:E2:E7:37:A2:03:F9:67:FB:78:3C:67:CD:B4:95
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 0183C0A413C9BB740374CD2CD3E5F1326B46
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/tygoI6og4uc3ogP5Z_t4PGfNtJU.roa
Signing time: Mon 10 Oct 2022 06:45:21 +0000
ROA not before: Mon 10 Oct 2022 06:45:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 272470
IP address blocks: 185.155.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c0:a4:13:c9:bb:74:03:74:cd:2c:d3:e5:f1:32:6b:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Oct 10 06:45:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7282823aa20e2e737a203f967fb783c67cdb495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:50:5d:9f:a8:f7:8d:5c:d3:33:86:36:8c:9c:
30:8f:4a:e1:2d:b1:01:3d:d4:79:f0:63:17:b6:46:
85:db:81:0e:f3:2f:d8:ea:0f:e5:77:73:ce:e1:d6:
29:07:6c:49:dc:89:83:cd:34:32:53:e5:69:2a:12:
ed:a6:86:36:60:ab:39:81:18:b3:91:d3:ab:3d:2c:
e6:f7:5f:d1:25:f3:6a:88:7b:4c:fe:da:a0:dd:9d:
f2:d5:37:0c:de:5e:a0:54:57:cb:c0:69:07:43:b8:
36:3c:b3:40:57:78:3b:da:00:20:4a:31:a5:dc:1a:
13:cd:0e:91:51:33:62:47:4f:25:78:26:59:e1:5c:
a1:29:91:08:14:cf:f2:82:95:fb:31:76:d1:d4:13:
2c:34:e0:6c:c9:91:52:35:55:4f:e0:ef:11:e7:ac:
45:43:59:86:af:c1:f9:e3:97:8c:28:5c:f8:12:22:
43:f5:a6:30:12:0d:50:89:a0:a3:2d:ad:33:53:34:
90:d6:2e:be:a1:d8:ce:9f:24:c4:88:73:23:d2:f7:
b3:f5:52:39:c1:60:61:76:bb:4c:fb:37:00:76:a4:
a5:56:51:3c:41:3d:a6:aa:36:87:5d:e1:4b:8f:a5:
98:e5:d0:40:43:6e:f5:bc:f7:95:79:6e:b0:c6:ed:
95:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:28:28:23:AA:20:E2:E7:37:A2:03:F9:67:FB:78:3C:67:CD:B4:95
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/tygoI6og4uc3ogP5Z_t4PGfNtJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.53.0/24
Signature Algorithm: sha256WithRSAEncryption
09:89:e6:96:17:3c:2e:2a:d3:46:29:9a:76:a2:8c:91:fe:cd:
1e:60:e7:47:87:88:b6:fc:96:30:ed:cf:d9:28:ed:38:da:62:
70:33:49:18:e6:c5:34:76:3f:30:64:21:44:2e:e3:2d:68:73:
2b:1d:18:d4:3e:b8:24:53:db:63:87:b4:6d:a0:81:09:b3:69:
7a:07:92:a9:2d:7e:c0:95:e4:18:96:e6:e2:4a:f7:e5:23:44:
d3:72:08:cd:0c:a4:8a:cf:aa:53:49:ba:d7:4a:5d:71:7c:60:
ff:57:a4:a4:8a:20:c8:7d:8e:7d:05:e9:7d:95:a2:32:eb:98:
9f:2f:2a:60:39:b3:cf:16:6a:72:d9:ef:4e:de:6e:a6:85:9f:
b0:e8:b0:98:c5:aa:a2:83:bf:8d:06:50:60:80:6b:dc:df:21:
95:0a:d0:6e:0f:57:8d:90:45:dd:eb:14:d7:5a:ce:92:04:b0:
ab:14:7a:4d:45:47:12:d7:f7:69:fe:0b:5c:ba:1b:e1:d5:f5:
d2:39:98:6f:11:8f:b8:ad:56:9d:c1:87:69:f5:2b:2b:3b:f6:
ea:e1:9e:8b:5e:8e:7a:c6:a4:9f:0e:46:5a:74:a4:b8:36:6f:
33:e5:1a:87:3d:62:32:88:12:76:ba:15:71:48:16:3a:55:f0:
1f:ce:91:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:23 2023 by rpki-client on console-ams.rpki-client.org