Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/4PTHKKjmQY1Cd9WeMckUoIjR9A8.roa
File: 4PTHKKjmQY1Cd9WeMckUoIjR9A8.roa (raw, json)
Hash identifier: XVIEmb3Jjm0Bln0VugkeHN93DI5Wa0PIX/x99y/Wgtw=
Subject key identifier: E0:F4:C7:28:A8:E6:41:8D:42:77:D5:9E:31:C9:14:A0:88:D1:F4:0F
Certificate issuer: /CN=856f0c90073afb8ecde7e83409ceabdb93b41a4e
Certificate serial: 06830498
Authority key identifier: 85:6F:0C:90:07:3A:FB:8E:CD:E7:E8:34:09:CE:AB:DB:93:B4:1A:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hW8MkAc6-47N5-g0Cc6r25O0Gk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/4PTHKKjmQY1Cd9WeMckUoIjR9A8.roa
Signing time: Sat 01 Jan 2022 08:56:23 +0000
ROA not before: Sat 01 Jan 2022 08:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24940
IP address blocks: 185.110.95.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109249688 (0x6830498)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856f0c90073afb8ecde7e83409ceabdb93b41a4e
Validity
Not Before: Jan 1 08:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0f4c728a8e6418d4277d59e31c914a088d1f40f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2d:a6:1d:29:cd:e2:84:15:c3:11:24:4b:79:
d0:08:0a:e1:49:2f:95:9f:3a:f7:12:91:3b:7e:5b:
11:ad:99:45:32:e6:1d:59:50:50:45:25:2a:75:54:
86:6e:ea:be:11:95:89:13:82:72:ff:67:98:d8:ac:
a8:b2:ad:37:f6:1e:e7:24:de:68:82:0b:8e:42:3c:
fa:54:11:bf:75:1a:c1:7c:7f:0f:cc:77:90:ac:cc:
0d:d7:6e:d7:4e:9b:6a:31:f0:d6:cd:e2:b1:f7:ea:
53:8f:ff:88:8a:09:ef:92:a5:76:05:a1:4b:7c:8b:
02:8e:0e:d1:69:d1:c8:53:aa:fd:b0:63:db:b9:cd:
12:3a:ae:67:15:79:b5:c5:20:10:4d:47:49:b0:6f:
9e:08:f1:e6:cd:e6:bf:15:af:f3:04:06:40:57:5d:
ec:5e:48:24:e8:75:18:92:81:00:fe:68:87:ab:5b:
47:c1:b9:b5:f9:7b:d6:4f:34:cc:b3:48:0a:f9:ea:
75:6f:ab:82:ca:b2:23:dd:fe:e1:3b:ec:ca:a4:13:
07:99:20:77:6a:7e:b2:43:f1:97:73:54:cc:da:fa:
ff:2e:4e:93:ce:3e:14:90:ae:5b:4b:b0:48:ad:98:
94:b3:08:e3:f5:a0:55:b0:30:51:f0:68:c5:86:52:
ff:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:F4:C7:28:A8:E6:41:8D:42:77:D5:9E:31:C9:14:A0:88:D1:F4:0F
X509v3 Authority Key Identifier:
keyid:85:6F:0C:90:07:3A:FB:8E:CD:E7:E8:34:09:CE:AB:DB:93:B4:1A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hW8MkAc6-47N5-g0Cc6r25O0Gk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/4PTHKKjmQY1Cd9WeMckUoIjR9A8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/hW8MkAc6-47N5-g0Cc6r25O0Gk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.95.0/24
Signature Algorithm: sha256WithRSAEncryption
74:83:d8:67:85:ee:49:d5:ec:36:4b:ca:e8:ff:6d:fe:08:46:
34:1e:e9:79:24:88:fe:33:3e:41:e4:b7:c8:72:2c:b5:06:d8:
79:4b:cd:fb:eb:a3:1c:13:a1:33:95:d8:b2:44:82:27:63:bd:
5c:f1:99:e3:b0:de:00:b1:70:93:04:a9:45:e4:1c:9c:81:4c:
43:b4:ad:26:49:4e:86:8f:af:0b:65:82:1b:59:21:1c:49:d5:
03:97:50:b7:7c:7f:3a:36:ed:13:b7:a0:2d:4a:92:d1:c2:1a:
92:1d:b0:71:d0:39:bb:2a:9f:ac:57:34:c2:68:b5:9f:68:d1:
64:00:b9:d5:34:72:6a:f8:8b:e5:c1:0c:20:b4:e1:46:66:ee:
5f:da:6f:9b:ec:60:f1:20:c7:53:52:4b:b1:9c:93:9b:7d:18:
6e:0e:ca:72:32:c2:eb:de:d7:4a:ca:b6:ab:92:4d:a3:d7:1a:
d4:45:e3:6d:be:66:1b:2e:7f:bb:c1:e2:19:4c:b9:22:7e:db:
e7:e1:fa:e9:23:76:0b:b3:25:af:6f:67:14:9a:66:93:21:86:
2b:aa:fc:b5:a4:a4:82:68:30:bb:79:9d:60:8e:95:75:5c:6e:
64:d0:13:82:bc:42:b7:75:d3:d0:d5:b5:62:af:f6:ce:ed:a8:
3d:ae:78:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:56 2023 by rpki-client on console-ams.rpki-client.org