Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/tzaiqKuxUg7-ulyN-gVquUc_U4k.roa
File: tzaiqKuxUg7-ulyN-gVquUc_U4k.roa (raw, json)
Hash identifier: pHkRE5z/sGHQqORLgnxHMfE3h7l+yDXiqRU6bsWuA+k=
Subject key identifier: B7:36:A2:A8:AB:B1:52:0E:FE:BA:5C:8D:FA:05:6A:B9:47:3F:53:89
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 13B5E187
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/tzaiqKuxUg7-ulyN-gVquUc_U4k.roa
Signing time: Mon 04 Apr 2022 06:31:19 +0000
ROA not before: Mon 04 Apr 2022 06:31:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200322
IP address blocks: 185.204.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330686855 (0x13b5e187)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: Apr 4 06:31:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b736a2a8abb1520efeba5c8dfa056ab9473f5389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ca:a0:67:ad:d3:7b:8b:97:c1:34:84:ac:18:
2f:55:dc:ed:bf:43:2a:3c:d1:8f:99:9b:36:68:68:
cb:c4:74:be:96:e4:83:70:db:ae:a3:95:98:db:75:
5c:f3:d1:7a:bb:3d:7c:7c:2c:81:c1:cf:d8:ef:f3:
13:26:9b:62:5d:86:4e:eb:ab:e8:a9:a4:66:93:d5:
d7:91:1c:a3:01:1b:41:b2:52:06:5f:5b:dc:0e:df:
f7:7d:20:61:cf:29:a3:d5:45:01:8b:0f:05:fa:c2:
2c:70:c5:c1:63:dd:31:0d:5f:3f:a0:a0:01:9c:89:
4f:8f:44:85:91:19:5c:6d:b2:a3:73:24:2e:b6:62:
5a:18:32:48:17:52:32:1a:0c:27:74:49:3e:68:e9:
2a:c0:8e:93:66:56:8e:89:50:05:7a:04:d8:96:99:
00:a1:be:c9:9e:80:37:23:7f:67:c6:31:88:82:d8:
df:b9:a9:2c:92:9a:92:48:33:c5:52:43:10:27:1a:
a8:b1:16:4f:53:f5:ca:7f:38:2a:8e:83:fb:2b:89:
6f:3f:af:a7:54:6b:6f:be:96:d2:fe:3f:a6:96:99:
c5:c8:c1:15:07:c5:ef:96:84:79:19:da:f9:98:b1:
1f:b1:fd:72:01:9b:86:41:d2:51:68:da:d7:49:b2:
99:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:36:A2:A8:AB:B1:52:0E:FE:BA:5C:8D:FA:05:6A:B9:47:3F:53:89
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/tzaiqKuxUg7-ulyN-gVquUc_U4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.160.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:08:bf:ea:11:be:1a:39:7b:3b:73:de:65:4c:b1:76:18:87:
e1:df:50:db:ca:4a:44:89:2d:6f:ef:10:83:1d:ea:99:35:79:
be:b9:0c:d2:d4:60:f0:78:21:18:e4:3b:96:2f:a2:22:7d:72:
20:d8:0f:e7:2c:06:7d:55:00:6d:a4:26:61:d8:71:d6:b0:1c:
7f:45:0f:10:47:a8:04:88:a8:84:94:c2:3b:ae:e5:b4:65:19:
6e:6a:7b:a8:1d:2e:86:a1:a0:6f:d6:63:d9:23:56:98:e2:2f:
68:7a:c0:1d:a7:48:6b:c7:64:39:9c:9e:39:13:c0:2a:34:f4:
a6:e3:3b:38:f7:b4:3a:11:ac:8d:ad:15:22:f2:e9:03:06:13:
80:7c:6b:bc:60:eb:53:20:60:b0:1e:02:c5:74:08:ce:1b:2c:
f6:d3:5a:78:6d:01:8d:0d:16:ad:f0:64:60:37:57:51:e7:b5:
f3:b8:fe:a6:2b:f1:41:bc:6c:2a:d1:78:b2:d6:1b:2f:4d:bf:
71:7a:75:c8:b1:85:01:e2:a0:83:23:3a:06:08:04:b7:4a:59:
c4:59:7b:fd:02:42:f2:37:50:51:47:a9:cf:9b:30:07:81:4c:
9f:d2:9a:78:b8:cd:55:6e:fd:5e:7b:74:c4:78:88:8e:c9:2f:
66:f9:1e:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:31 2024 by rpki-client on console-ams.rpki-client.org