Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/STrVn-suifLzFSvsBy_ItHzF6xw.roa
File: STrVn-suifLzFSvsBy_ItHzF6xw.roa (raw, json)
Hash identifier: hbakD2Mjwhyf6uBLo3u6UJpkM3VQdVn5QVlgxl5Lamw=
Subject key identifier: 49:3A:D5:9F:EB:2E:89:F2:F3:15:2B:EC:07:2F:C8:B4:7C:C5:EB:1C
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0184F62C7BB8C0748FEF1C26DE631A71D7E3
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/STrVn-suifLzFSvsBy_ItHzF6xw.roa
Signing time: Fri 09 Dec 2022 09:17:00 +0000
ROA not before: Fri 09 Dec 2022 09:17:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207274
IP address blocks: 185.225.204.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f6:2c:7b:b8:c0:74:8f:ef:1c:26:de:63:1a:71:d7:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Dec 9 09:17:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=493ad59feb2e89f2f3152bec072fc8b47cc5eb1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b6:6c:17:fa:f8:09:d6:bb:f9:53:a1:6e:62:
17:2a:7a:f7:94:94:a8:33:ab:55:ab:5d:86:23:36:
ef:0b:5b:83:d5:30:cf:5f:54:5a:e4:c2:8b:16:88:
e9:9d:e9:04:af:7f:38:01:96:9e:7f:d2:d9:64:e4:
c8:ce:07:dc:3c:ec:6b:8e:bf:c4:41:01:23:0f:aa:
38:32:6b:24:3a:e0:9d:50:bd:61:0a:fc:65:53:b0:
d1:49:a6:98:bf:c7:54:aa:34:15:1e:7a:f4:a0:1d:
5c:f2:12:e4:97:0a:45:89:f1:b9:10:f5:0d:44:54:
a8:3c:61:e2:9b:a1:da:65:0e:20:bb:0d:30:ae:f5:
d4:2e:4f:46:b1:30:1e:d1:b6:23:4b:4e:64:18:29:
b4:a4:a0:02:c4:6e:66:3c:b0:f2:5e:19:11:d4:3c:
71:27:8f:df:59:30:69:28:3b:dc:b0:0d:fa:0c:ba:
4b:87:55:e2:78:7c:1e:a4:f3:94:ef:8f:a4:35:24:
cd:c2:60:bd:62:44:26:c9:df:95:d3:0a:f5:6a:73:
be:69:53:9f:d5:73:1a:1d:06:ec:94:f0:d2:9e:eb:
56:a3:e9:31:0e:a2:4b:70:9a:9f:4e:d4:70:49:92:
76:c2:fb:9c:4d:d5:56:99:14:a5:84:e0:c6:5b:23:
74:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3A:D5:9F:EB:2E:89:F2:F3:15:2B:EC:07:2F:C8:B4:7C:C5:EB:1C
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/STrVn-suifLzFSvsBy_ItHzF6xw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.204.0/23
Signature Algorithm: sha256WithRSAEncryption
38:45:f2:61:f9:32:8d:f8:41:ee:d6:43:67:d7:7d:08:d9:90:
06:95:db:e8:b3:49:33:29:0d:8b:83:fd:e9:93:04:cc:5c:d3:
8e:85:31:62:f1:a0:cf:27:63:52:10:b4:e6:95:98:bb:86:c9:
25:89:31:b6:dd:87:cd:fe:91:65:fa:f3:c8:9a:35:70:51:24:
5e:10:4b:74:c0:bd:35:a1:2f:ff:03:3f:a2:41:25:bc:e4:3a:
22:9b:93:f6:5b:9c:3e:92:e6:18:59:e7:84:36:2f:a6:49:c8:
69:62:b4:ff:14:bd:cb:3a:ed:fe:12:e1:47:a2:7c:01:80:04:
29:63:c9:3d:e8:3f:c9:dc:4a:4b:6a:eb:99:cc:b8:00:9d:cc:
61:e3:5f:74:7f:57:d9:4b:95:cc:5c:21:54:df:00:99:33:61:
7d:a7:bd:d0:54:d9:7d:7d:35:43:d6:2f:c9:80:e8:81:3b:a8:
7a:5c:24:e2:40:31:9a:87:ae:44:21:d4:a8:03:cb:5f:a8:49:
87:7b:fb:3d:f2:e2:96:8c:72:a1:ea:cd:e1:98:51:df:5d:46:
5e:f1:e9:60:a1:fe:65:3d:51:08:e3:31:67:6c:2c:41:75:8f:
64:c6:a8:ed:6c:e1:84:fa:a0:ce:81:3f:47:59:06:8f:09:7d:
ef:8e:38:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:36 2024 by rpki-client on console-ams.rpki-client.org