Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/StMzu_0uxfJ_bhk74Wen-5u6CP4.roa
File: StMzu_0uxfJ_bhk74Wen-5u6CP4.roa (raw, json)
Hash identifier: cDi/knmASn0rxyeids7//IUSNKMQQDwzhY5T3dwSSPA=
Subject key identifier: 4A:D3:33:BB:FD:2E:C5:F2:7F:6E:19:3B:E1:67:A7:FB:9B:BA:08:FE
Certificate issuer: /CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Certificate serial: 09FBD556
Authority key identifier: A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/StMzu_0uxfJ_bhk74Wen-5u6CP4.roa
Signing time: Sat 01 Jan 2022 03:59:46 +0000
ROA not before: Sat 01 Jan 2022 03:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207702
IP address blocks: 185.226.230.0/24 maxlen: 24
185.220.164.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167499094 (0x9fbd556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Validity
Not Before: Jan 1 03:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ad333bbfd2ec5f27f6e193be167a7fb9bba08fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ce:ce:83:49:3b:08:7f:00:b3:a4:da:05:63:
f2:d4:5f:65:ef:ab:2a:2c:af:31:82:55:e5:51:69:
9c:a7:c8:b7:18:24:50:f4:89:e1:27:8e:7a:00:73:
f9:d5:49:a5:99:29:9b:74:be:ce:10:01:80:ae:12:
28:63:7b:56:d6:28:7b:55:bf:8e:bb:a8:3f:42:07:
e8:cf:7b:97:79:20:9f:ac:2b:99:1e:af:6d:69:b7:
47:bf:40:ba:b4:28:93:99:35:c8:23:26:70:7b:eb:
5d:1c:6c:f5:35:84:72:d5:74:58:c0:6a:0b:5a:2a:
34:68:b4:f9:01:4a:ea:e8:95:a1:a6:63:a8:73:a3:
b5:80:bd:0d:33:54:5b:a6:67:5d:fe:b5:9e:de:2b:
36:d5:35:98:03:ea:64:31:dc:57:26:b7:a8:ad:24:
b4:89:63:49:33:a1:ca:37:51:85:45:e7:34:6f:3a:
d0:ba:93:3e:47:d3:01:ab:08:a9:64:77:aa:7a:df:
47:51:a1:0a:3e:db:49:57:98:e5:69:30:88:7d:2d:
f6:f5:ce:6a:69:35:04:e9:fa:a6:22:98:ed:0a:a6:
26:55:2b:70:f7:02:4a:2e:10:31:28:5c:e1:cf:1f:
0e:6a:79:64:3d:48:93:be:4a:86:d2:d0:9b:49:b2:
76:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:D3:33:BB:FD:2E:C5:F2:7F:6E:19:3B:E1:67:A7:FB:9B:BA:08:FE
X509v3 Authority Key Identifier:
keyid:A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/StMzu_0uxfJ_bhk74Wen-5u6CP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/qEkgTKTw605W4I4Jn-N4XOBv_qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.164.0/23
185.226.230.0/24
Signature Algorithm: sha256WithRSAEncryption
67:aa:35:fa:01:20:dc:87:f5:d8:21:0c:c5:a7:7d:18:6c:52:
c1:5b:67:90:34:ee:06:8a:6d:22:22:60:67:bb:5c:f3:ed:55:
ea:22:ee:62:02:b9:e0:03:e0:a4:f1:f1:43:3e:ab:95:57:6e:
ef:17:fc:54:a2:ef:0b:2e:29:e6:51:53:34:16:10:e2:ac:f5:
0e:88:b4:c6:d7:07:8c:41:02:24:f9:fe:69:d7:51:88:df:2a:
ec:0c:d1:2f:38:f6:12:a2:16:0f:5d:62:26:7a:f6:6b:c9:49:
cc:fc:52:a7:d8:5e:61:4a:e1:cb:f5:10:c3:51:2f:cb:a8:68:
30:5c:b8:56:ef:93:d5:35:ba:3d:53:72:85:8e:f4:09:5e:d1:
a2:22:f5:bb:e5:1b:24:db:59:b9:95:7f:b1:29:eb:bd:b0:fe:
db:a6:ee:49:26:1e:40:28:23:95:83:87:d8:55:ff:19:50:0d:
a2:8b:c8:0c:ae:c7:61:a6:18:c3:e8:1a:f9:f9:ee:c4:ee:a0:
60:9c:a5:67:cc:6f:23:90:35:9f:55:65:53:9f:77:76:ed:32:
19:84:d3:fa:a5:28:43:7d:54:b5:97:b3:0b:55:c6:ac:70:d2:
9e:52:69:01:04:85:57:23:7c:c8:fb:d1:5e:73:fd:6a:d3:57:
2b:90:cf:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:02 2024 by rpki-client on console-fra.rpki-client.org