Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/AZRFtCl6kPueJ2DdVFJQmkEuA5Q.roa
File: AZRFtCl6kPueJ2DdVFJQmkEuA5Q.roa (raw, json)
Hash identifier: QrKY3XSPkvQAaQMGiljhAMJC+Dh0ynmfMuFR1Ogb0YQ=
Subject key identifier: 01:94:45:B4:29:7A:90:FB:9E:27:60:DD:54:52:50:9A:41:2E:03:94
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 178D883D
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/AZRFtCl6kPueJ2DdVFJQmkEuA5Q.roa
Signing time: Sat 01 Jan 2022 04:53:50 +0000
ROA not before: Sat 01 Jan 2022 04:53:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3170
IP address blocks: 185.133.73.0/24 maxlen: 32
194.156.159.0/24 maxlen: 32
185.137.181.0/24 maxlen: 32
2a06:7a03::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395151421 (0x178d883d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:53:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=019445b4297a90fb9e2760dd5452509a412e0394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:43:4b:60:ac:94:3c:30:ec:10:2c:29:a5:2e:
23:69:29:62:2b:f8:bf:f6:3d:6d:1a:41:fd:1b:61:
b0:ae:b7:f3:26:6a:69:2e:bb:db:5c:03:66:52:23:
b7:f2:88:26:c3:81:7a:14:5e:6e:e2:6f:12:09:ff:
15:99:b9:07:32:cc:16:c4:d0:a1:cd:6e:c8:da:0d:
9d:1e:88:06:d8:c5:ed:a3:2b:33:77:4a:22:dd:dc:
33:8f:88:a8:63:17:18:03:77:a7:20:33:f2:95:4d:
df:43:c4:07:fd:ba:b1:05:29:6d:78:99:c6:9f:a4:
c4:a7:85:f2:7f:89:1b:57:08:55:09:28:d5:11:58:
f0:f1:2f:4a:8d:56:61:a7:14:9d:f6:13:94:71:5c:
86:15:a3:a5:a1:ec:61:5d:1b:7e:1a:b6:d1:87:32:
b9:ae:53:27:f7:4e:6d:de:77:42:f4:3a:c2:0c:fe:
46:ea:6e:3f:e7:7d:15:6e:e8:61:74:29:6f:d7:97:
fb:60:bb:0d:5f:93:2f:5d:83:3a:f8:0f:19:71:9f:
00:4e:49:a7:45:59:41:d9:83:77:bf:c4:6d:2b:c3:
f1:59:6c:8b:32:ba:6d:7d:85:11:ae:cf:e7:09:ab:
46:79:0c:ff:d0:73:98:19:ad:ca:35:e6:0a:8f:d1:
19:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:94:45:B4:29:7A:90:FB:9E:27:60:DD:54:52:50:9A:41:2E:03:94
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/AZRFtCl6kPueJ2DdVFJQmkEuA5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.73.0/24
185.137.181.0/24
194.156.159.0/24
IPv6:
2a06:7a03::/48
Signature Algorithm: sha256WithRSAEncryption
ba:7b:08:90:8b:07:f5:f3:59:ba:0e:be:da:76:ff:13:66:57:
b5:7d:6a:bd:f9:d8:a5:58:cd:c0:ca:91:4a:7e:87:65:a6:c0:
e7:8e:8c:fe:a0:7c:7d:26:dd:96:45:cd:68:10:9f:d9:af:34:
fa:4b:ae:8c:84:21:dc:3b:3d:f3:d5:ba:ab:67:a9:61:c9:3f:
fb:cf:f5:4a:6d:83:b2:07:5a:ea:a6:3e:ef:36:ab:5e:85:56:
c5:18:f1:8b:32:46:1c:76:4a:28:d9:8d:e7:4b:e3:22:90:ad:
0c:67:f1:21:2c:0d:f1:f1:61:e7:d5:c2:2f:e9:56:79:be:32:
d2:91:01:21:27:f1:00:ad:64:f5:c1:36:6e:2e:3f:91:01:c5:
4d:62:e4:45:d5:07:26:65:6c:5a:b3:bd:6b:06:43:8d:1b:db:
ed:74:64:18:58:5c:b4:7e:eb:db:c7:ed:7c:02:7e:3a:b0:5c:
46:15:2d:b0:05:d6:fa:24:35:4e:8a:53:24:27:16:86:10:1a:
12:da:d2:69:0e:84:db:62:d5:0f:04:c7:42:a8:3f:21:96:01:
e1:6b:c4:f8:77:5e:c5:f4:9e:aa:bd:72:6c:0f:e1:53:29:5b:
12:ef:fe:7f:30:d4:1b:96:b5:d3:dc:21:7f:0e:0b:b1:b9:e6:
89:3b:7c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org