Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/ShAmfKP7mEfYSuNxocq1gP57Cr4.roa
File: ShAmfKP7mEfYSuNxocq1gP57Cr4.roa (raw, json)
Hash identifier: dSnMZYN1SXWsO/GqEjfSZcipKPxSYT/vC+eFU1H4Sq0=
Subject key identifier: 4A:10:26:7C:A3:FB:98:47:D8:4A:E3:71:A1:CA:B5:80:FE:7B:0A:BE
Certificate issuer: /CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c
Certificate serial: 03DE4EA9
Authority key identifier: 1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/ShAmfKP7mEfYSuNxocq1gP57Cr4.roa
Signing time: Sat 01 Jan 2022 15:01:41 +0000
ROA not before: Sat 01 Jan 2022 15:01:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205944
IP address blocks: 185.250.96.0/24 maxlen: 24
185.250.98.0/24 maxlen: 24
185.250.97.0/24 maxlen: 24
185.250.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64900777 (0x3de4ea9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c
Validity
Not Before: Jan 1 15:01:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a10267ca3fb9847d84ae371a1cab580fe7b0abe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:69:53:55:71:9e:ce:7e:e9:0b:1d:be:dc:02:
5b:ff:44:ea:84:3c:64:69:ee:c6:36:ab:f4:c4:ae:
f4:e8:06:59:07:ed:34:ec:a5:3f:6a:81:70:c8:d1:
51:78:9c:2f:5c:59:fc:08:03:74:90:7d:ba:bb:33:
94:05:f5:33:bf:14:ec:63:40:68:1d:e9:67:5a:58:
1f:7d:a3:73:4e:29:e1:cc:94:12:70:e2:ff:d2:12:
aa:52:94:66:13:7c:60:0a:24:d5:2d:45:bb:70:a2:
58:4d:69:30:18:4c:29:1c:db:48:70:24:89:a1:e0:
66:31:c7:80:11:c3:4e:62:d2:52:15:29:57:f0:53:
c4:37:23:98:2e:a6:88:00:78:6e:64:d5:3f:5c:c4:
64:7d:ba:50:50:b3:0c:23:a9:71:68:ca:7d:84:0b:
29:f9:a7:ea:8d:2f:38:d8:62:81:f7:30:c6:47:27:
9c:42:3d:02:0e:93:af:78:7c:52:e1:46:ca:49:ec:
cb:b8:72:4e:26:2b:62:6b:5d:85:f9:d7:0c:bd:1e:
cc:8d:8c:e8:2c:ee:10:0a:da:7d:14:31:9c:61:f9:
50:ca:d6:ef:9f:2d:d9:ed:50:dd:8f:f0:d2:8d:de:
37:50:8e:0f:dc:da:cc:ac:19:37:3b:a6:c4:40:9e:
1f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:10:26:7C:A3:FB:98:47:D8:4A:E3:71:A1:CA:B5:80:FE:7B:0A:BE
X509v3 Authority Key Identifier:
keyid:1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/ShAmfKP7mEfYSuNxocq1gP57Cr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.96.0/22
Signature Algorithm: sha256WithRSAEncryption
49:c0:b0:94:81:76:0e:e5:61:65:1c:82:0e:8b:e4:0e:70:21:
77:95:99:fd:1e:02:2d:06:2c:fa:00:f8:02:0f:23:8e:ed:86:
0d:97:4a:5f:d5:a6:89:31:c1:83:36:f2:0a:05:38:98:c5:61:
68:9b:80:31:45:00:57:13:2e:04:b1:88:98:6e:60:62:f4:03:
94:03:42:2b:7c:2b:8b:4a:fe:34:d4:34:bc:a2:7d:1b:eb:b6:
29:5f:ca:22:13:77:dd:c1:6f:8b:8b:d4:53:2f:81:8b:0f:2d:
bb:9f:64:c4:0e:b9:4c:6d:f0:4a:c1:df:36:c7:8a:b9:12:10:
1c:a7:16:4e:c2:22:77:cd:a8:fa:ac:8c:9c:bb:86:55:44:eb:
46:9b:a1:7a:c0:a3:42:24:c3:34:f2:0d:92:d9:f8:a4:ed:49:
f6:ba:75:06:9e:77:cb:b3:30:ac:fe:5e:da:5a:09:c6:8d:ed:
37:5a:f9:1b:51:1f:ff:41:1b:ae:fd:58:46:70:bf:94:84:33:
3a:b1:f5:9d:75:86:fc:95:17:8c:08:45:4f:fc:86:b0:59:59:
d8:a3:f4:fa:84:90:6f:1e:16:79:43:9b:8e:b8:ee:59:dd:f3:
41:18:ae:f2:f8:f0:81:1b:16:46:c5:f1:74:8e:80:e9:1f:aa:
58:2d:4d:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:02 2023 by rpki-client on console-ams.rpki-client.org