Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/1U0fuw8rs4KH2QOH5Je7sZ2yU_0.roa
File: 1U0fuw8rs4KH2QOH5Je7sZ2yU_0.roa (raw, json)
Hash identifier: YXLAwTpM1Hm3sXPNpbG2DwwVS8mJjpOJqNQLVOQ6pa8=
Subject key identifier: D5:4D:1F:BB:0F:2B:B3:82:87:D9:03:87:E4:97:BB:B1:9D:B2:53:FD
Certificate issuer: /CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Certificate serial: 018540D8648FCDA2028DFF5A79333D2956E2
Authority key identifier: EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/1U0fuw8rs4KH2QOH5Je7sZ2yU_0.roa
Signing time: Fri 23 Dec 2022 21:16:41 +0000
ROA not before: Fri 23 Dec 2022 21:16:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42237
IP address blocks: 185.255.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:40:d8:64:8f:cd:a2:02:8d:ff:5a:79:33:3d:29:56:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Validity
Not Before: Dec 23 21:16:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d54d1fbb0f2bb38287d90387e497bbb19db253fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:7e:ca:a1:c8:39:5c:1f:83:51:cd:49:7d:77:
7a:e3:6d:0b:b6:74:00:d6:6d:71:bf:97:1c:c5:af:
b8:01:ab:d6:73:f7:70:64:9c:a6:08:66:3e:47:c1:
6c:8c:41:d6:c1:6d:e2:e3:af:9c:ed:33:f3:cb:1b:
66:37:72:14:a8:06:85:d2:75:c5:cb:87:cc:d4:4c:
62:19:97:4c:34:5e:5f:9a:2b:39:12:7e:7d:7c:35:
25:b4:5b:6e:74:66:89:8e:97:78:57:2b:34:3e:b9:
da:84:22:6d:ed:ca:7f:4c:23:ae:4d:38:02:43:52:
c6:60:82:57:a0:bb:ef:f7:21:5c:04:8f:15:af:b9:
ce:6c:03:e7:08:f4:11:1f:62:9c:0c:03:f9:64:0b:
25:e0:7f:17:1b:91:67:9c:63:8a:3f:03:70:16:b3:
6b:ef:cf:cf:12:16:01:af:4c:03:4c:ae:0c:db:26:
3d:de:ba:77:5a:c4:58:5e:79:19:08:92:42:e8:23:
d5:bd:42:9f:69:d9:94:24:89:8b:72:8f:2d:a3:b6:
34:48:de:de:f1:1a:6e:62:c9:78:eb:63:60:32:b1:
be:95:15:78:dc:2b:34:e2:99:68:42:86:a9:7e:b5:
4f:bc:05:55:bd:fb:19:6f:a3:5e:11:39:4e:0c:5e:
22:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:4D:1F:BB:0F:2B:B3:82:87:D9:03:87:E4:97:BB:B1:9D:B2:53:FD
X509v3 Authority Key Identifier:
keyid:EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/1U0fuw8rs4KH2QOH5Je7sZ2yU_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/73OJCflNmWhDa7Tgmi1HzHkBczw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.122.0/24
Signature Algorithm: sha256WithRSAEncryption
61:2f:76:9c:6a:dc:4f:09:cb:fb:e4:c1:1a:85:49:03:bf:f6:
33:16:93:e1:b6:76:c9:90:39:11:52:63:8d:d1:e7:ca:29:3d:
2d:a0:62:88:39:11:10:38:cc:53:f2:05:4f:a0:4c:c5:2b:78:
83:be:0f:ce:18:11:9d:6b:0b:da:66:2b:f1:17:1d:a8:51:e4:
aa:76:fe:d6:7b:25:e2:44:66:02:d9:a3:3a:72:13:68:f8:c9:
25:5d:2f:fa:73:36:9b:48:82:37:f8:0d:a3:b2:74:d4:71:a9:
e5:4c:c9:99:de:59:f0:ef:6d:a1:39:20:90:5d:6e:13:a7:d2:
8f:01:83:20:2e:8e:17:3e:45:56:79:42:a8:94:ce:53:29:8e:
55:1e:a6:b1:e5:dd:9f:fa:ea:10:4a:95:af:1e:8d:4c:78:9e:
f5:bd:1d:82:b5:8d:c1:00:1c:43:eb:58:37:69:c7:0e:00:09:
3f:2b:41:a5:fc:66:11:3f:31:a6:7b:f1:78:73:71:57:c8:eb:
55:89:99:90:ed:6b:3c:ab:b2:03:39:63:94:73:e0:2e:4b:5c:
40:65:a4:5a:b7:c1:75:d0:19:b3:9f:1e:cc:c4:54:24:2e:2a:
ca:bb:f3:f7:e1:f0:0e:ab:b5:3d:b0:d2:66:c1:ae:13:3e:68:
04:c0:e3:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:30 2023 by rpki-client on console-fra.rpki-client.org