Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/2f5a1d-f94a-4bb0-a014-e451b5907ea4/1/1pjBWJqTar_vE4b9fPQFkqAUIHs.roa
File: 1pjBWJqTar_vE4b9fPQFkqAUIHs.roa (raw, json)
Hash identifier: 4+0ycEQidSY7LD3pcBxuJTzkpMoEgHSBbPK0OuhH1QU=
Subject key identifier: D6:98:C1:58:9A:93:6A:BF:EF:13:86:FD:7C:F4:05:92:A0:14:20:7B
Certificate issuer: /CN=02c34f8373be7ffb1a35eb38860565bc3c451be6
Certificate serial: 0989AB71
Authority key identifier: 02:C3:4F:83:73:BE:7F:FB:1A:35:EB:38:86:05:65:BC:3C:45:1B:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AsNPg3O-f_saNes4hgVlvDxFG-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/2f5a1d-f94a-4bb0-a014-e451b5907ea4/1/1pjBWJqTar_vE4b9fPQFkqAUIHs.roa
Signing time: Sat 01 Jan 2022 08:59:14 +0000
ROA not before: Sat 01 Jan 2022 08:59:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29605
IP address blocks: 185.207.44.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160017265 (0x989ab71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c34f8373be7ffb1a35eb38860565bc3c451be6
Validity
Not Before: Jan 1 08:59:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d698c1589a936abfef1386fd7cf40592a014207b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e9:da:69:52:d4:b7:ae:8a:0b:22:b8:59:21:
da:90:07:f4:0a:c6:34:b8:c6:d3:a8:15:09:0f:81:
17:c4:d4:94:74:5a:04:9a:37:6b:01:a4:3b:76:e6:
6b:af:45:cc:38:da:0b:dc:ad:86:8c:41:14:10:d7:
60:9f:8f:16:f0:da:b6:de:55:d2:37:70:b8:0c:4b:
eb:c1:c6:04:ac:9c:66:c3:35:6c:3d:11:06:14:b8:
75:bb:eb:8f:9e:af:bf:b5:b0:98:e7:24:d2:bc:e9:
3e:79:8e:0f:b7:da:7f:2b:49:42:c6:1d:7f:6f:7d:
52:ac:f6:1a:27:d6:1f:46:66:ee:88:80:b9:ae:7e:
1a:3b:ff:1a:9b:bf:07:87:fb:b8:83:37:17:f3:5e:
67:e2:74:2d:28:7e:ec:1d:a4:f9:ca:02:47:1f:cc:
37:fa:0e:aa:18:31:fb:09:38:d7:49:cd:07:70:34:
5f:e9:96:29:fb:9a:3c:e0:03:d6:67:7c:cb:8d:6d:
2c:38:a0:e6:df:0a:d1:54:93:3e:11:c3:aa:fb:1f:
27:16:ae:d0:bd:58:a1:90:65:4c:0d:0a:2c:1f:90:
73:8f:3b:eb:17:9d:b8:21:bd:37:57:05:4f:ae:e0:
cc:56:ec:3d:b8:8b:3b:7a:04:cb:e2:50:77:f1:ac:
58:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:98:C1:58:9A:93:6A:BF:EF:13:86:FD:7C:F4:05:92:A0:14:20:7B
X509v3 Authority Key Identifier:
keyid:02:C3:4F:83:73:BE:7F:FB:1A:35:EB:38:86:05:65:BC:3C:45:1B:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AsNPg3O-f_saNes4hgVlvDxFG-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/2f5a1d-f94a-4bb0-a014-e451b5907ea4/1/1pjBWJqTar_vE4b9fPQFkqAUIHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/2f5a1d-f94a-4bb0-a014-e451b5907ea4/1/AsNPg3O-f_saNes4hgVlvDxFG-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.44.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:5d:e3:6d:fb:69:cc:f9:de:d9:61:ba:4c:96:d5:8c:7a:1a:
60:ca:84:a9:f7:f4:f2:28:09:ee:08:78:ba:8d:9f:fe:ed:bd:
3c:ef:cf:23:13:ed:46:6b:38:cc:c9:53:d0:30:e6:cc:5b:d6:
60:f3:75:aa:76:b4:3c:af:aa:b5:1c:cd:bf:91:b1:1e:c0:52:
bd:3e:ba:d7:c5:be:b2:97:19:f6:10:3e:6e:ec:6f:48:3e:b2:
58:4e:b3:d7:63:2e:6d:b0:88:b5:5f:ed:1d:df:3c:ec:77:94:
2f:50:0d:14:0b:bb:92:62:f2:5d:f4:57:30:b8:45:62:c1:a6:
65:6e:60:a6:20:bf:4d:52:a7:66:d8:fb:94:97:31:a4:29:dd:
8c:8b:88:ee:ba:ad:60:02:2a:25:da:b8:b3:03:e2:02:81:c8:
b5:1f:f5:70:35:d8:08:d1:ab:6b:bc:65:a6:c6:06:61:c6:a0:
a6:6c:2e:63:76:f1:35:7d:24:3e:2f:11:fa:ce:08:c8:cd:bc:
29:54:4b:f6:d7:1b:2d:9b:67:af:d9:23:d5:72:b3:29:2f:b3:
df:87:4f:f5:da:b7:3b:0a:a1:f4:a8:81:02:9b:d6:8b:cf:86:
30:89:ec:4c:7b:51:dd:75:ea:09:a6:a0:7c:b2:9a:3d:b0:8a:
0f:7d:17:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:24 2023 by rpki-client on console-ams.rpki-client.org