Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/d9b450-729d-48de-ab8f-cec40e425264/1/gen7JnZw8ilkT1oG23FeHXVmMas.roa
File: gen7JnZw8ilkT1oG23FeHXVmMas.roa (raw, json)
Hash identifier: 54lZRhoNUclvM3qZXtPHblH7tSltHF7BtETiLcWCkm0=
Subject key identifier: 81:E9:FB:26:76:70:F2:29:64:4F:5A:06:DB:71:5E:1D:75:66:31:AB
Certificate issuer: /CN=3f947c4fd2396d9edb8bc454405e57558d8b9502
Certificate serial: 01847D31282ACB41B63E86597B4CA713ABC1
Authority key identifier: 3F:94:7C:4F:D2:39:6D:9E:DB:8B:C4:54:40:5E:57:55:8D:8B:95:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P5R8T9I5bZ7bi8RUQF5XVY2LlQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/d9b450-729d-48de-ab8f-cec40e425264/1/gen7JnZw8ilkT1oG23FeHXVmMas.roa
Signing time: Tue 15 Nov 2022 21:28:04 +0000
ROA not before: Tue 15 Nov 2022 21:28:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.1.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7d:31:28:2a:cb:41:b6:3e:86:59:7b:4c:a7:13:ab:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f947c4fd2396d9edb8bc454405e57558d8b9502
Validity
Not Before: Nov 15 21:28:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81e9fb267670f229644f5a06db715e1d756631ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2c:ce:75:7e:a2:33:82:ad:9f:79:23:78:ba:
ca:7c:f1:1e:a1:7e:58:4b:b8:0d:22:13:09:a1:38:
61:89:79:56:89:82:2a:4e:5e:e8:97:25:fe:cc:89:
5a:30:1b:6e:70:a7:fd:e3:ec:22:d9:79:19:ec:bd:
85:c1:7c:2e:9e:79:dd:98:06:22:be:7b:af:b5:01:
8d:1f:76:b7:fe:ab:d6:ea:1e:f7:b6:68:c1:07:4e:
b8:6a:a1:d8:b9:b8:85:40:9f:bb:df:8b:b7:2f:59:
be:83:00:04:e0:a1:65:94:3e:63:0f:43:2f:d3:4a:
ab:8d:3a:5d:ea:21:a5:4e:6c:e1:15:30:ae:3c:c6:
0a:82:4a:31:89:21:ef:a0:61:c5:0c:a6:be:76:d4:
c1:9a:db:d9:4f:b2:8b:1d:f2:79:db:f7:ca:50:b5:
ef:a3:5a:f3:dc:b9:d3:96:9e:19:85:c1:d2:12:f0:
a6:86:fa:ae:44:ee:e7:48:59:e1:ce:1f:44:7e:cc:
a0:4c:0f:27:01:9e:da:29:14:da:b2:86:45:99:ee:
b2:47:6f:05:4e:01:3f:55:1c:3d:e4:c2:62:9d:f7:
3a:68:18:c3:35:aa:5e:21:98:53:b3:00:b5:6e:36:
7e:11:a6:6f:e6:e9:54:26:de:a8:c0:47:7e:f7:e0:
ce:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E9:FB:26:76:70:F2:29:64:4F:5A:06:DB:71:5E:1D:75:66:31:AB
X509v3 Authority Key Identifier:
keyid:3F:94:7C:4F:D2:39:6D:9E:DB:8B:C4:54:40:5E:57:55:8D:8B:95:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P5R8T9I5bZ7bi8RUQF5XVY2LlQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/d9b450-729d-48de-ab8f-cec40e425264/1/gen7JnZw8ilkT1oG23FeHXVmMas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/d9b450-729d-48de-ab8f-cec40e425264/1/P5R8T9I5bZ7bi8RUQF5XVY2LlQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.35.0/24
Signature Algorithm: sha256WithRSAEncryption
23:dd:46:a5:4d:32:8c:e7:81:4a:c8:c9:93:36:5c:44:c9:f6:
85:ee:77:ee:38:4d:50:18:c4:20:a1:d8:38:91:45:7c:2a:9e:
31:ca:da:ca:d1:6c:39:64:db:c3:0d:d7:14:1c:c3:82:b5:3d:
e9:56:19:00:49:67:07:e1:e5:15:fc:4b:7c:13:25:29:05:f4:
97:c7:62:6e:90:da:bf:e9:f6:ae:5c:25:60:d0:b1:52:7c:82:
e5:2a:ad:e5:7e:2f:62:3a:03:20:d2:fe:53:a4:bc:35:c6:53:
05:10:e5:77:68:a0:f0:25:cb:19:75:d0:58:e3:e3:7d:0e:11:
bb:47:2c:52:11:fa:10:a5:de:d2:29:f8:05:a1:ae:65:44:15:
cd:b6:ec:95:46:e7:19:b0:9d:05:07:c3:2d:ab:d8:bb:66:55:
f1:1c:b4:51:d2:c6:70:a6:2a:1a:38:9a:d8:4f:8b:95:a7:21:
9a:c2:98:fa:5d:40:d6:87:3a:2f:d7:20:0f:42:f0:4c:6f:60:
46:88:a4:e6:6f:41:74:9b:e8:63:5f:ba:51:2f:6e:10:62:f1:
52:90:a4:57:ee:cf:23:91:30:af:34:92:07:e4:d6:68:18:b2:
f4:b8:4a:37:3e:f4:99:4a:01:1c:15:e9:c3:6a:51:31:e9:8b:
16:8e:ae:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:56 2023 by rpki-client on console-fra.rpki-client.org