Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/3c6876-96ae-48af-ae7a-ff05d446e7fd/1/oG53qsMc_7C3W_2SI1gXv81ov4U.roa
File: oG53qsMc_7C3W_2SI1gXv81ov4U.roa (raw, json)
Hash identifier: 3DA507uGexNwzDW7BbL5fdBjDmUTlme9+ioiefcU1BA=
Subject key identifier: A0:6E:77:AA:C3:1C:FF:B0:B7:5B:FD:92:23:58:17:BF:CD:68:BF:85
Certificate issuer: /CN=b9114dff36b948b56c211d25f398751d35b93cc2
Certificate serial: 3B4072
Authority key identifier: B9:11:4D:FF:36:B9:48:B5:6C:21:1D:25:F3:98:75:1D:35:B9:3C:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRFN_za5SLVsIR0l85h1HTW5PMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/3c6876-96ae-48af-ae7a-ff05d446e7fd/1/oG53qsMc_7C3W_2SI1gXv81ov4U.roa
Signing time: Fri 11 Feb 2022 14:44:59 +0000
ROA not before: Fri 11 Feb 2022 14:44:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61180
IP address blocks: 185.46.173.0/27 maxlen: 29
185.46.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3883122 (0x3b4072)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9114dff36b948b56c211d25f398751d35b93cc2
Validity
Not Before: Feb 11 14:44:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a06e77aac31cffb0b75bfd92235817bfcd68bf85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8f:ab:73:62:0e:3f:f3:80:29:9f:62:58:74:
f8:df:89:08:37:8f:81:0e:47:0c:0e:b0:6a:b2:fd:
87:d4:c2:59:0e:6f:2f:14:94:21:44:32:0e:fc:41:
ed:aa:d0:2b:cc:da:06:59:9e:28:5a:fe:5f:c3:48:
7e:ef:d7:36:1f:08:33:24:56:e4:62:c3:c1:0a:06:
87:d1:4a:7e:aa:1e:fd:41:8e:02:75:44:e3:6e:82:
8a:7b:9b:18:eb:59:a4:ad:2e:9a:b8:fb:99:ed:e0:
d2:c5:99:48:38:85:b6:6a:de:32:7c:e8:0a:f3:fd:
ae:88:a7:cc:c5:06:0f:fc:71:4f:d7:de:d0:00:b6:
96:33:2a:ed:e1:45:f0:d3:9c:28:b3:a4:86:4b:87:
79:cb:4e:ae:5f:17:d0:50:85:4b:18:fd:f3:e6:96:
f4:6e:93:d7:6d:21:52:96:a2:0e:fb:2a:a6:9c:69:
ee:d9:33:76:1d:f7:b9:a8:45:07:aa:ca:9b:91:da:
19:97:bb:83:bf:97:86:60:6b:1b:a3:12:3a:34:9c:
30:c6:a3:16:65:b2:25:2b:a8:01:df:2b:23:43:4d:
b3:12:ee:51:41:32:9d:3a:0b:c3:40:24:50:ee:91:
8f:e3:4c:11:d3:3d:81:1f:6e:14:f8:bc:e4:f0:09:
31:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:6E:77:AA:C3:1C:FF:B0:B7:5B:FD:92:23:58:17:BF:CD:68:BF:85
X509v3 Authority Key Identifier:
keyid:B9:11:4D:FF:36:B9:48:B5:6C:21:1D:25:F3:98:75:1D:35:B9:3C:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRFN_za5SLVsIR0l85h1HTW5PMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/3c6876-96ae-48af-ae7a-ff05d446e7fd/1/oG53qsMc_7C3W_2SI1gXv81ov4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/3c6876-96ae-48af-ae7a-ff05d446e7fd/1/uRFN_za5SLVsIR0l85h1HTW5PMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.173.0/24
Signature Algorithm: sha256WithRSAEncryption
43:95:f2:19:21:44:7a:2a:07:b2:d2:46:63:83:ee:c2:ed:26:
67:be:28:30:c4:33:13:32:4d:98:32:50:1b:3e:03:59:d6:ee:
54:bf:78:1d:df:cd:4c:2c:73:b6:ae:9a:b4:ef:54:91:fa:dc:
cb:27:91:d3:6b:b2:59:04:21:2a:46:6f:3b:89:10:76:f3:86:
6f:71:6d:8d:05:7a:ef:9e:d4:80:7c:dd:95:b6:e6:8f:fa:ba:
07:d1:31:8d:2b:81:de:12:bf:15:15:44:89:53:14:24:17:81:
d2:70:df:58:85:ba:c8:2f:a0:d6:01:df:d1:14:35:a9:58:f3:
82:26:17:f7:e4:95:35:2e:13:0e:38:8e:57:f9:8c:13:a7:ca:
ed:5e:03:51:e2:2b:26:8d:25:96:0e:61:67:a8:0c:2e:6b:9c:
49:b4:0e:69:b3:4f:07:d3:19:78:fe:68:99:d5:58:84:b9:32:
c9:07:4e:c4:e4:e7:fe:e6:93:5e:c6:71:d8:0f:6e:6a:f0:a0:
bd:6a:7a:8a:48:ad:72:0f:25:7a:fe:08:22:62:56:78:25:3c:
18:44:cf:b2:33:97:dc:6b:bb:c0:fb:56:e6:f5:e3:1c:b1:0b:
0f:22:f2:74:48:50:d3:1b:03:c0:8d:50:a5:e8:8d:10:3e:26:
ba:60:86:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:44 2024 by rpki-client on console-ams.rpki-client.org