Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/d96f69-ef14-4227-8898-3e57cc52c84e/1/U670fuLm_zSW7IdIMJizVmR1rUI.roa
File: U670fuLm_zSW7IdIMJizVmR1rUI.roa (raw, json)
Hash identifier: 74n79SFvqMmOyJ1wpUch81jdMVlE/rmxVaETx83Uu1M=
Subject key identifier: 53:AE:F4:7E:E2:E6:FF:34:96:EC:87:48:30:98:B3:56:64:75:AD:42
Certificate issuer: /CN=26638c2cb7b860cd369679c4d05d50f705e04629
Certificate serial: 268020
Authority key identifier: 26:63:8C:2C:B7:B8:60:CD:36:96:79:C4:D0:5D:50:F7:05:E0:46:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmOMLLe4YM02lnnE0F1Q9wXgRik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/d96f69-ef14-4227-8898-3e57cc52c84e/1/U670fuLm_zSW7IdIMJizVmR1rUI.roa
Signing time: Sat 01 Jan 2022 03:57:33 +0000
ROA not before: Sat 01 Jan 2022 03:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25281
IP address blocks: 185.103.13.0/24 maxlen: 24
185.103.14.0/24 maxlen: 24
185.103.15.0/24 maxlen: 24
185.103.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2523168 (0x268020)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26638c2cb7b860cd369679c4d05d50f705e04629
Validity
Not Before: Jan 1 03:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53aef47ee2e6ff3496ec87483098b3566475ad42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:26:72:04:89:9e:66:52:ee:ef:33:4d:61:ab:
08:e6:51:5c:22:b3:35:6c:59:c7:f2:7a:27:e6:e1:
a6:ad:78:80:87:ac:e1:9a:4e:20:3c:58:a7:09:e7:
ff:54:87:63:52:c6:24:44:39:08:e2:0c:87:68:f3:
45:75:be:0f:22:0f:65:3e:ef:4a:7b:a2:ce:30:00:
72:33:56:1c:ab:0b:ae:92:8e:b7:54:af:90:b5:68:
81:41:12:fb:a6:ae:f2:c1:d8:54:e9:1a:5e:f3:9a:
3f:9c:a7:8b:a6:cb:cd:3c:2e:57:82:53:ec:85:2d:
83:55:32:15:59:ab:b6:95:17:53:ab:fd:19:82:e9:
e9:5b:e7:15:05:18:7e:61:73:a4:7f:fa:f2:ef:15:
4e:ec:e9:55:bb:f0:bb:ac:5a:59:00:35:e4:50:c8:
95:28:c0:04:fe:b3:05:32:d9:a1:4f:30:51:b7:72:
e5:c7:e1:9e:e7:8b:2f:26:c1:09:43:0b:c6:cf:44:
8e:13:69:7d:a6:c1:a7:d5:ef:05:05:76:b2:f3:5e:
2d:7c:2e:bd:ef:16:13:f7:80:bb:c8:a3:6c:a0:ac:
1d:a1:f0:8a:7d:81:94:36:5e:43:49:fb:11:d8:24:
e9:a1:1f:f5:2b:e2:4f:9b:08:6a:cd:33:a7:08:66:
e5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:AE:F4:7E:E2:E6:FF:34:96:EC:87:48:30:98:B3:56:64:75:AD:42
X509v3 Authority Key Identifier:
keyid:26:63:8C:2C:B7:B8:60:CD:36:96:79:C4:D0:5D:50:F7:05:E0:46:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmOMLLe4YM02lnnE0F1Q9wXgRik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d96f69-ef14-4227-8898-3e57cc52c84e/1/U670fuLm_zSW7IdIMJizVmR1rUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d96f69-ef14-4227-8898-3e57cc52c84e/1/JmOMLLe4YM02lnnE0F1Q9wXgRik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.12.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:37:28:ca:fa:29:31:a4:66:f1:87:bd:da:3d:83:45:eb:f9:
9a:c3:a4:c4:4c:23:ae:8e:eb:9e:68:ca:87:83:41:81:54:c1:
f1:af:20:f3:4b:f7:3d:69:9e:c8:dc:d7:24:76:f0:92:f2:80:
37:67:0a:28:fa:de:35:d8:6d:5d:f8:35:58:b7:b5:55:42:5f:
9b:23:65:0b:b1:4c:39:7c:ef:9e:4d:ee:97:97:92:62:4d:57:
2a:a2:dc:81:4f:42:02:c1:2c:71:4f:e0:02:c4:cd:cc:bc:0c:
a3:99:b2:c0:87:06:a1:97:fd:99:10:a4:9a:aa:9c:f7:5f:ff:
44:1a:37:1a:cc:c4:ff:e8:fd:e6:22:5e:48:06:04:21:6b:85:
21:9d:28:75:63:cb:1b:88:9a:3c:5c:30:8e:1c:16:11:ac:90:
a3:27:7b:aa:e3:b1:13:24:13:af:f3:0d:0d:aa:a4:96:f4:f2:
70:6d:d5:86:f0:0e:0e:e6:0a:66:c9:a9:b9:35:ea:59:94:2d:
2b:8a:8f:9c:4b:2f:26:50:84:00:4d:ef:a1:f0:d4:e7:d8:90:
13:4c:00:6a:d1:5d:8e:d7:1f:4e:ec:73:73:cb:9d:89:11:52:
bb:ee:35:2d:af:34:34:43:e8:75:e4:ec:6d:d8:90:78:25:63:
66:d5:9a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:03 2023 by rpki-client on console-fra.rpki-client.org