Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/9002e2-dc04-4c39-9235-54d5d04e346d/1/pf50wTYRVYBSKXmL40Ehn8D-fss.roa
File: pf50wTYRVYBSKXmL40Ehn8D-fss.roa (raw, json)
Hash identifier: m9MRz8hmPrf6I8uohfAxlXK+Ie/+9ruoD3JDA+jIJaI=
Subject key identifier: A5:FE:74:C1:36:11:55:80:52:29:79:8B:E3:41:21:9F:C0:FE:7E:CB
Certificate issuer: /CN=d922d8d45f985dc3896c9176a7d48d7658cb4f68
Certificate serial: 0A322326
Authority key identifier: D9:22:D8:D4:5F:98:5D:C3:89:6C:91:76:A7:D4:8D:76:58:CB:4F:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2SLY1F-YXcOJbJF2p9SNdljLT2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/9002e2-dc04-4c39-9235-54d5d04e346d/1/pf50wTYRVYBSKXmL40Ehn8D-fss.roa
Signing time: Sat 01 Jan 2022 10:58:26 +0000
ROA not before: Sat 01 Jan 2022 10:58:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43790
IP address blocks: 185.154.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171057958 (0xa322326)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d922d8d45f985dc3896c9176a7d48d7658cb4f68
Validity
Not Before: Jan 1 10:58:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5fe74c1361155805229798be341219fc0fe7ecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c5:bd:a3:83:20:b0:45:fc:e1:c4:50:78:1a:
6b:47:42:fd:3e:1a:33:be:fb:08:df:c0:26:1c:f1:
af:2a:2e:86:3a:91:bf:4d:ef:09:54:52:18:85:9a:
d4:83:68:85:c5:1c:42:e2:91:69:26:47:70:bf:9b:
5d:8c:71:3e:e3:21:60:be:4d:84:b7:4c:4f:48:ad:
f3:fa:40:31:f2:c7:a2:75:3c:6e:75:e0:26:7c:71:
e5:b8:1e:b2:2d:00:12:d0:66:5e:fe:eb:f5:2a:71:
45:ab:87:39:c4:96:83:03:39:e2:9d:d0:93:a1:97:
82:63:6c:ca:7c:82:1d:b1:43:28:ea:ed:df:2d:94:
14:0e:43:c6:55:cc:43:16:bf:4b:4b:7a:d9:ed:4c:
f1:d4:9f:57:60:3f:f2:f2:39:9e:0b:06:9c:50:bb:
ed:22:6a:09:8a:0b:18:fd:44:05:0e:56:42:fa:2f:
bb:5a:5c:cc:f6:d4:c6:de:56:c6:e3:eb:9b:20:56:
ce:34:e8:b5:7e:da:f0:7d:c0:04:e3:3f:23:2c:c9:
e6:00:b5:b7:8b:8d:42:40:25:93:2c:47:50:79:e6:
4c:5a:48:5e:66:e5:87:8b:10:1e:c0:a0:27:db:a6:
3b:e2:12:e7:62:75:bc:20:06:b0:a4:44:37:03:c4:
a1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:FE:74:C1:36:11:55:80:52:29:79:8B:E3:41:21:9F:C0:FE:7E:CB
X509v3 Authority Key Identifier:
keyid:D9:22:D8:D4:5F:98:5D:C3:89:6C:91:76:A7:D4:8D:76:58:CB:4F:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2SLY1F-YXcOJbJF2p9SNdljLT2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9002e2-dc04-4c39-9235-54d5d04e346d/1/pf50wTYRVYBSKXmL40Ehn8D-fss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9002e2-dc04-4c39-9235-54d5d04e346d/1/2SLY1F-YXcOJbJF2p9SNdljLT2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.71.0/24
Signature Algorithm: sha256WithRSAEncryption
52:9b:81:72:9a:a6:2e:65:1a:e9:fd:84:c9:41:01:a8:1d:42:
87:24:01:1a:34:ee:14:04:6c:d1:bb:01:2d:2c:7a:2a:7f:c0:
4b:91:e4:e0:f2:e6:24:d1:46:13:5d:7f:e0:fc:07:43:b0:ad:
90:66:3a:98:18:47:a6:a0:93:7d:5e:c3:0f:e0:bc:ed:d9:03:
31:71:35:89:4b:9b:67:86:40:8c:ba:7d:ef:7f:ef:05:3a:b8:
29:85:f8:42:f1:f4:45:79:03:6e:3b:ba:cc:0a:1c:43:0b:65:
06:61:b9:e0:3b:d7:86:ec:53:29:b9:09:59:2b:d8:3a:96:50:
6e:23:3a:da:0d:93:e1:cf:37:d4:ce:78:1d:85:67:43:98:d3:
2f:08:e3:0f:bf:e7:18:22:50:1a:17:35:b3:51:48:30:40:fc:
aa:24:af:7e:e5:aa:fc:30:93:8f:3a:9a:42:86:4c:cc:94:a4:
59:58:34:38:dc:8f:af:6e:3f:f3:e1:c1:b8:86:5e:30:05:14:
b6:90:5a:64:6f:f8:e6:3c:fa:cb:35:27:20:ac:fb:45:2c:9b:
3f:77:9f:38:1d:94:17:39:06:71:c8:01:ba:0b:db:26:98:20:
d2:b7:54:88:fa:51:b2:84:a1:35:27:e1:e8:d3:42:02:43:89:
1a:51:49:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:34 2023 by rpki-client on console-fra.rpki-client.org