Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/SpdTgvHiHTqztTpO9wSv9pVidLs.roa
File: SpdTgvHiHTqztTpO9wSv9pVidLs.roa (raw, json)
Hash identifier: ex1cETXwWFyetOlXZW4qgMnXdfNAUqP2uYWz7gY0Oro=
Subject key identifier: 4A:97:53:82:F1:E2:1D:3A:B3:B5:3A:4E:F7:04:AF:F6:95:62:74:BB
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 018247F82E4AE89E194392FF0C11D37A330B
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/SpdTgvHiHTqztTpO9wSv9pVidLs.roa
Signing time: Fri 29 Jul 2022 03:20:23 +0000
ROA not before: Fri 29 Jul 2022 03:20:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49901
IP address blocks: 185.11.140.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:47:f8:2e:4a:e8:9e:19:43:92:ff:0c:11:d3:7a:33:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jul 29 03:20:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a975382f1e21d3ab3b53a4ef704aff6956274bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c6:92:16:61:45:ab:61:5f:b3:a8:fc:e2:ec:
00:7f:9f:f3:fc:04:df:43:52:bd:87:36:ca:4a:9b:
30:0d:f9:ae:de:e9:72:1e:7a:9e:81:52:77:20:81:
a7:67:eb:58:67:d8:9e:e0:d4:36:40:a8:99:25:93:
01:d1:96:1b:2e:7c:ee:6a:b9:bc:de:6b:5b:b4:5a:
c3:65:e4:00:19:2a:a7:26:e4:4f:e3:7a:a0:2e:11:
75:88:2c:72:27:b3:b8:f8:7f:5a:85:62:a7:52:0c:
b7:71:91:ed:be:4e:0d:ea:57:e7:9e:fd:df:1e:a9:
75:31:fe:28:a1:a5:9d:44:a8:0b:3d:b7:e2:a8:25:
4b:28:ee:c6:3b:26:11:b3:45:40:cb:44:17:b1:72:
af:a6:89:b6:31:13:8f:9f:99:d4:61:2f:04:8d:06:
c9:8f:85:64:a1:16:e9:aa:d5:fb:41:62:88:d7:65:
f1:5c:b1:da:13:f1:6e:de:93:d0:43:92:39:df:9b:
03:8b:a4:24:be:8a:4c:7e:75:d0:c0:05:81:10:03:
1a:2b:dd:3b:19:f0:6f:45:1e:d7:12:92:98:48:3c:
d6:07:fb:7a:7e:c1:2d:5a:f1:02:9f:97:c8:ba:4b:
a4:e3:91:5d:1c:0e:f5:df:7a:f1:f9:27:6e:63:2c:
67:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:97:53:82:F1:E2:1D:3A:B3:B5:3A:4E:F7:04:AF:F6:95:62:74:BB
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/SpdTgvHiHTqztTpO9wSv9pVidLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.140.0/23
Signature Algorithm: sha256WithRSAEncryption
78:c8:b0:cc:e4:08:36:f0:50:b0:a7:73:ac:32:44:21:28:6f:
df:55:d9:87:f8:0c:f3:0b:c3:59:e3:15:14:87:93:54:19:a9:
c7:4c:cb:de:dd:4e:69:ba:73:98:41:f8:26:95:c4:15:f7:9d:
f9:2b:3b:cc:e0:df:cb:8f:6f:d9:65:4d:74:f0:bc:e7:a1:dd:
d5:46:c2:01:f5:b3:26:b9:6c:d9:e0:94:3f:26:64:41:b6:9a:
f4:87:a8:95:4a:f8:c2:85:b7:09:13:30:b7:91:cd:6d:4c:36:
12:5f:8d:3e:74:30:69:68:90:a4:e2:34:ff:df:05:fd:43:e0:
ae:90:80:37:c1:34:e3:7b:64:45:2e:28:f4:b5:e9:09:47:8e:
ad:c1:12:27:a6:11:71:0c:d4:48:eb:f7:39:2a:10:a8:9f:8d:
b8:11:65:44:81:17:ac:5c:6d:c5:27:56:b8:d6:2e:70:ce:44:
be:e1:80:a7:eb:08:9b:6e:03:a0:16:c7:7e:80:18:37:c3:47:
ac:57:b4:a1:9a:78:78:a3:f2:ba:4c:73:4f:5c:08:03:b5:0b:
99:e2:51:fa:95:e7:d9:98:00:92:42:f8:60:fb:3f:66:68:f9:
12:f5:1a:2c:76:3d:56:b4:87:37:41:69:8d:03:31:67:d2:a5:
51:6b:48:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:08 2024 by rpki-client on console-fra.rpki-client.org