Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/dFQOlQRTZIArNAHiQNu7EXPLURc.roa
File: dFQOlQRTZIArNAHiQNu7EXPLURc.roa (raw, json)
Hash identifier: xOhqSTyfhPIOx4trLGD9u4ZO+VEOFFpSBSrqv0IkRwE=
Subject key identifier: 74:54:0E:95:04:53:64:80:2B:34:01:E2:40:DB:BB:11:73:CB:51:17
Certificate issuer: /CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Certificate serial: 10409B7E
Authority key identifier: A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/dFQOlQRTZIArNAHiQNu7EXPLURc.roa
Signing time: Fri 01 Apr 2022 22:58:27 +0000
ROA not before: Fri 01 Apr 2022 22:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 185.157.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 272669566 (0x10409b7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Validity
Not Before: Apr 1 22:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74540e95045364802b3401e240dbbb1173cb5117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:45:a1:8d:6d:dc:8f:ee:be:81:bc:c9:cc:10:
73:08:e8:15:8a:a8:fc:a9:a9:e4:c9:32:f8:0d:8d:
48:d6:19:0a:11:6d:a3:b2:89:ab:e6:50:8c:ef:da:
09:8c:30:d7:d0:6b:b4:f2:9d:87:64:90:70:78:98:
19:fb:f3:f8:6a:95:ac:b2:68:38:fa:20:81:5a:cd:
8e:59:f4:a7:1d:fb:b7:a6:96:6f:55:fd:92:aa:9f:
91:04:3a:77:05:38:21:6a:9e:88:c0:dd:ab:a7:39:
68:3e:d8:cb:86:17:f4:bc:90:c7:32:75:b5:e5:ed:
e8:09:85:56:91:3e:1a:c1:f2:0d:5f:b4:35:70:92:
15:f1:f8:30:c0:5c:ea:d1:ae:7b:c2:95:5b:d6:b2:
8b:51:a9:eb:4e:d3:d3:e1:f1:c0:a6:bf:b0:d6:e9:
87:d2:1b:29:0e:3d:93:13:d6:ce:d2:ee:73:46:ee:
4b:4c:3d:d6:99:6f:8e:75:68:f9:fc:e1:a6:91:d9:
42:73:cf:5e:79:3e:07:00:52:57:73:1e:df:30:34:
ca:f4:99:4f:97:9a:34:e9:ab:d2:5f:7f:4a:fc:99:
66:89:8b:f3:37:bf:e3:dc:a6:41:2f:b6:b9:fd:4e:
07:1d:c7:d7:bb:c3:cb:ee:4b:b3:d1:21:20:ff:d8:
b5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:54:0E:95:04:53:64:80:2B:34:01:E2:40:DB:BB:11:73:CB:51:17
X509v3 Authority Key Identifier:
keyid:A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/dFQOlQRTZIArNAHiQNu7EXPLURc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.50.0/24
Signature Algorithm: sha256WithRSAEncryption
74:c1:05:f9:16:28:40:21:ed:a0:05:7c:cd:eb:08:a7:3e:b5:
39:24:10:b6:de:68:c7:8d:6c:cb:94:e6:bf:12:f2:35:57:cd:
d0:54:f0:07:e1:37:b5:bf:c8:ff:21:ae:35:8f:b9:94:f4:97:
30:cb:7b:36:a7:fb:00:3e:a2:86:24:34:ca:30:d8:c2:2d:82:
fb:d9:3a:b7:86:57:88:0e:6f:7b:5d:d6:f8:a7:35:77:b8:b3:
1c:d2:20:8c:2d:6a:99:bf:ea:17:fb:76:5c:50:ae:70:17:96:
59:a8:8e:9b:df:50:97:35:ea:f8:38:b2:6c:bb:35:c7:b2:dd:
1b:dc:ac:f5:62:7c:28:15:81:bd:32:2e:d5:12:02:a9:91:0e:
b4:47:00:c3:29:74:d3:38:e0:76:d6:07:bc:9e:70:4b:b9:0b:
27:e8:b6:e1:94:50:f9:a5:67:95:f8:56:82:47:22:71:0d:0a:
24:b6:99:03:cf:0e:c7:84:76:96:20:74:fc:72:e2:45:cf:35:
1d:e3:da:64:f8:52:aa:09:84:2a:0c:d1:0d:67:3d:d1:8c:e5:
57:39:86:aa:5b:d1:a4:d8:22:5a:ff:ea:12:2d:d5:7b:0c:8f:
c3:aa:65:b0:28:ed:fb:3c:bd:67:4e:43:1e:9e:ba:2d:8c:2b:
06:52:35:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:57 2023 by rpki-client on console-ams.rpki-client.org