Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a4abf3-4af3-4180-8340-b13a1f20d15f/1/4fLZ-NkH2oLk_72SSZNGhY_CiG0.roa
File: 4fLZ-NkH2oLk_72SSZNGhY_CiG0.roa (raw, json)
Hash identifier: ccIbYtOGKA33LH5WNnNIqLECXz9r5bXHZxWELMzj8jk=
Subject key identifier: E1:F2:D9:F8:D9:07:DA:82:E4:FF:BD:92:49:93:46:85:8F:C2:88:6D
Certificate issuer: /CN=c13e341c1e14d35a7496ce7828e3055f863935cf
Certificate serial: 10C2832F
Authority key identifier: C1:3E:34:1C:1E:14:D3:5A:74:96:CE:78:28:E3:05:5F:86:39:35:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wT40HB4U01p0ls54KOMFX4Y5Nc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a4abf3-4af3-4180-8340-b13a1f20d15f/1/4fLZ-NkH2oLk_72SSZNGhY_CiG0.roa
Signing time: Sat 01 Jan 2022 14:06:57 +0000
ROA not before: Sat 01 Jan 2022 14:06:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212388
IP address blocks: 185.173.190.0/24 maxlen: 24
185.173.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281183023 (0x10c2832f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c13e341c1e14d35a7496ce7828e3055f863935cf
Validity
Not Before: Jan 1 14:06:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1f2d9f8d907da82e4ffbd92499346858fc2886d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:72:81:b3:29:18:5f:59:64:62:fc:51:27:bd:
7f:0b:f9:da:c6:ba:8c:a4:2b:69:df:d3:2c:1b:49:
3f:b3:19:0b:51:ec:2d:f4:62:63:09:83:eb:73:66:
33:3a:79:4b:0d:05:80:c2:86:59:d7:b6:df:61:57:
b3:d2:b6:6e:9c:04:46:49:e8:59:20:23:7c:9a:ad:
2d:5b:c2:01:f4:52:db:7f:48:f0:21:9f:26:c3:ed:
af:af:a4:85:79:91:72:3e:79:74:b9:b4:9b:ae:0a:
21:27:0f:8c:32:91:6b:16:14:e0:32:b5:0a:8e:14:
78:8e:34:6f:77:30:59:d1:13:4d:74:6e:ed:a6:be:
6f:04:54:fc:7d:57:7e:38:37:16:36:a9:1f:b1:62:
07:5a:b5:24:20:5d:39:2b:b1:f0:cd:40:e4:11:7c:
d3:1b:eb:ae:3b:26:37:fd:e2:79:ae:de:e0:b8:6b:
32:17:f4:5c:95:32:76:f0:70:92:e8:c1:6e:bb:34:
7f:d9:59:76:d6:9d:c6:da:89:92:68:2f:be:b5:1d:
ad:7b:1f:08:d3:7e:85:20:ea:9a:4e:f5:8c:95:53:
ac:07:a6:be:15:a9:88:3f:1e:05:6a:ee:65:48:55:
5a:2c:22:61:52:2c:15:fd:47:60:ce:aa:48:24:5c:
ab:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F2:D9:F8:D9:07:DA:82:E4:FF:BD:92:49:93:46:85:8F:C2:88:6D
X509v3 Authority Key Identifier:
keyid:C1:3E:34:1C:1E:14:D3:5A:74:96:CE:78:28:E3:05:5F:86:39:35:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wT40HB4U01p0ls54KOMFX4Y5Nc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a4abf3-4af3-4180-8340-b13a1f20d15f/1/4fLZ-NkH2oLk_72SSZNGhY_CiG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a4abf3-4af3-4180-8340-b13a1f20d15f/1/wT40HB4U01p0ls54KOMFX4Y5Nc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.190.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:22:b5:92:e9:6d:7b:8f:85:6d:7e:ed:64:c5:95:83:bc:28:
e8:99:3f:df:26:30:f3:9e:46:65:77:57:12:36:2e:f4:42:dd:
1c:76:d6:1c:fd:15:7e:62:4c:68:e2:a1:8c:6e:37:61:d0:83:
9d:4c:1e:8d:cf:d8:7f:84:76:4d:61:c6:97:f7:7b:89:0d:1d:
73:09:fc:49:a8:eb:a6:8f:84:8d:fe:7d:b6:2f:31:40:4c:83:
21:a6:17:b7:c4:45:f3:ef:bb:c9:20:06:9c:06:28:87:d8:2b:
4f:9b:cf:f0:f7:55:68:2c:08:0b:88:f4:df:e6:2e:21:b4:47:
19:6e:f9:78:d7:19:e3:ec:92:61:70:52:13:d3:b8:55:ec:99:
72:f6:ec:85:45:92:bb:ef:fd:fe:06:34:a6:48:4d:43:ca:2d:
4a:75:ca:98:36:cc:27:46:b6:de:21:4d:00:8a:d6:99:eb:63:
2f:9e:68:21:81:03:e2:a9:a7:5f:03:57:c3:a8:e2:1a:c2:c7:
12:41:1a:95:af:91:8a:a7:d9:ab:68:f1:0d:64:3b:db:69:b9:
cb:f1:88:9f:e7:d5:1b:4c:09:ee:93:03:78:ff:bb:b6:1a:b9:
97:35:2d:94:5f:e0:a3:03:7a:6b:d7:31:80:b3:49:7b:7e:b0:
7c:ef:77:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:11 2024 by rpki-client on console-ams.rpki-client.org