Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/N-TJZxmtn0XCvcGnwxHx-UIUC7M.roa
File: N-TJZxmtn0XCvcGnwxHx-UIUC7M.roa (raw, json)
Hash identifier: SEe13owEbiLiBYt5MRGXnSLy68wIeNn7ScwAJnA9FLw=
Subject key identifier: 37:E4:C9:67:19:AD:9F:45:C2:BD:C1:A7:C3:11:F1:F9:42:14:0B:B3
Certificate issuer: /CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Certificate serial: F342F7
Authority key identifier: 6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/N-TJZxmtn0XCvcGnwxHx-UIUC7M.roa
Signing time: Mon 02 May 2022 17:05:59 +0000
ROA not before: Mon 02 May 2022 17:05:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209181
IP address blocks: 185.167.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15942391 (0xf342f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Validity
Not Before: May 2 17:05:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37e4c96719ad9f45c2bdc1a7c311f1f942140bb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1b:41:5e:91:53:19:7e:b3:13:c3:8f:40:a4:
3d:61:90:91:9c:60:3d:2a:2b:cb:24:54:40:61:ae:
93:e9:99:75:4a:8d:35:33:61:43:13:9b:02:b3:6d:
6f:48:48:5f:32:08:49:4b:c5:ac:70:b5:56:07:27:
bc:42:8a:97:01:6c:aa:71:1a:5d:0b:f2:6e:3c:52:
00:cd:47:a0:18:77:fd:62:40:57:9b:d1:ac:4d:9c:
e6:d3:dd:88:c0:0f:5e:e1:52:0b:f9:6e:fc:19:a3:
8c:f9:10:ae:83:d5:87:64:44:5a:aa:ba:3e:7e:bf:
ab:b8:b6:54:60:f2:cd:08:b5:dd:10:ba:5b:78:c4:
c4:e7:7a:f9:77:3c:b0:07:15:13:9e:9c:c5:9f:1c:
11:fb:7c:81:ff:81:99:f7:c2:df:b4:2d:6e:22:e4:
19:eb:72:64:fd:62:24:1b:4c:dc:3a:52:3c:41:c0:
2f:65:4d:c0:c9:c6:10:c8:c1:b7:1f:2b:55:6a:7f:
44:37:45:ad:ac:1a:27:97:a3:0c:99:04:07:34:ec:
67:7f:2c:53:b7:c9:f5:5a:85:81:f3:d9:25:c1:ed:
40:25:08:92:41:a5:d7:a7:84:52:ba:d0:02:97:a4:
fd:15:a3:b7:12:f3:b8:64:4d:aa:2b:20:d7:21:42:
ef:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E4:C9:67:19:AD:9F:45:C2:BD:C1:A7:C3:11:F1:F9:42:14:0B:B3
X509v3 Authority Key Identifier:
keyid:6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/N-TJZxmtn0XCvcGnwxHx-UIUC7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.235.0/24
Signature Algorithm: sha256WithRSAEncryption
83:88:b3:68:ae:8e:f4:13:4a:63:3a:48:4c:a3:01:88:da:3b:
15:b1:74:fa:f6:53:97:5a:a8:20:11:1e:03:68:f5:b1:5c:a8:
67:f1:18:20:c5:b6:9f:15:e9:4d:f1:f7:29:38:c0:7c:b5:0e:
ab:30:b0:31:bf:0f:9d:f1:9d:42:ea:21:96:95:e5:dc:26:35:
45:cf:7d:f3:9a:04:77:9f:fc:44:ce:ee:e2:18:2b:26:5b:af:
ae:d7:ca:7f:5d:5c:6e:5f:93:cf:39:6f:83:84:e3:ca:f7:b0:
55:5a:a2:e5:9c:21:0b:09:2f:34:1c:d1:6a:e2:e0:da:b2:6b:
a9:bd:13:30:3b:8b:00:bb:26:2c:f8:da:3f:e3:5d:7b:3c:ed:
8f:9d:7a:e1:fc:80:0d:5f:35:3c:f0:e8:2b:a2:df:06:e1:14:
29:40:d6:10:ae:01:e5:57:40:2c:5c:61:e3:9f:1d:40:24:98:
82:40:b4:84:71:be:f2:0e:ec:98:3c:61:45:af:d5:0d:55:90:
b0:ba:87:6d:38:4b:da:0e:d1:fc:f7:11:ff:97:31:46:78:14:
4c:3f:a6:7c:69:12:2a:77:8a:53:77:20:a2:0c:4c:aa:8a:72:
13:4d:92:4b:c3:c7:65:b6:2a:33:36:81:2f:6e:48:54:da:30:
9f:21:1f:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:30 2024 by rpki-client on console-fra.rpki-client.org