Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/2a7bf4-3454-4d14-9e0c-183f9975fc94/1/kTTiGg4ndZtvtiJrero9GHWT7M4.roa
File: kTTiGg4ndZtvtiJrero9GHWT7M4.roa (raw, json)
Hash identifier: jscjcm3yTUc2by6NWYpJpTJoEw1bFT5k1oqdFYynw1Q=
Subject key identifier: 91:34:E2:1A:0E:27:75:9B:6F:B6:22:6B:7A:BA:3D:18:75:93:EC:CE
Certificate issuer: /CN=b40d494333cb4d9e5fd10c846c47cf56445c503a
Certificate serial: A5551D
Authority key identifier: B4:0D:49:43:33:CB:4D:9E:5F:D1:0C:84:6C:47:CF:56:44:5C:50:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tA1JQzPLTZ5f0QyEbEfPVkRcUDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/2a7bf4-3454-4d14-9e0c-183f9975fc94/1/kTTiGg4ndZtvtiJrero9GHWT7M4.roa
Signing time: Sat 01 Jan 2022 03:00:51 +0000
ROA not before: Sat 01 Jan 2022 03:00:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203068
IP address blocks: 185.145.178.0/24 maxlen: 24
185.145.179.0/24 maxlen: 24
185.145.176.0/24 maxlen: 24
185.145.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10835229 (0xa5551d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40d494333cb4d9e5fd10c846c47cf56445c503a
Validity
Not Before: Jan 1 03:00:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9134e21a0e27759b6fb6226b7aba3d187593ecce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:41:0a:e7:02:88:fd:cd:50:c0:17:dd:c3:ad:
24:d3:55:ac:c9:7e:4a:c8:ac:46:7c:c4:c5:60:49:
a1:24:9a:be:ef:31:83:1f:b2:9f:57:e0:4b:e5:ae:
fa:e5:f4:3d:d9:dd:6f:0d:2a:3f:1c:73:e8:2d:97:
ae:7b:6a:ce:89:40:7d:93:29:70:bd:f6:9a:b7:58:
8b:c1:50:3e:2d:40:57:9c:95:65:55:99:97:be:70:
12:4e:4b:88:8c:a9:be:ba:e4:97:e9:71:00:ac:da:
41:3f:99:eb:aa:3c:6d:40:53:ad:d8:df:5f:0a:59:
63:d9:cc:7f:44:52:16:69:62:f6:15:88:d3:72:47:
5d:a7:33:47:1c:e9:e5:23:c6:9c:17:19:9b:a4:c9:
b3:12:a9:50:01:04:1a:73:c1:15:ed:dc:1a:6a:95:
e3:52:2e:76:b9:60:fb:1b:6e:c4:9e:ef:3a:17:82:
61:a8:0e:48:bf:42:2c:a7:37:c0:65:01:e7:a9:12:
09:5a:af:ef:a4:94:ba:c2:81:99:c6:47:07:db:1a:
4e:e3:4c:78:12:ba:d1:51:6e:c7:9e:d7:61:9c:4c:
bc:4e:bc:ee:32:db:21:05:67:52:7e:35:74:eb:e7:
a1:0a:c4:27:cc:c0:0a:70:82:f3:1b:74:8a:2f:aa:
f8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:34:E2:1A:0E:27:75:9B:6F:B6:22:6B:7A:BA:3D:18:75:93:EC:CE
X509v3 Authority Key Identifier:
keyid:B4:0D:49:43:33:CB:4D:9E:5F:D1:0C:84:6C:47:CF:56:44:5C:50:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tA1JQzPLTZ5f0QyEbEfPVkRcUDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/2a7bf4-3454-4d14-9e0c-183f9975fc94/1/kTTiGg4ndZtvtiJrero9GHWT7M4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/2a7bf4-3454-4d14-9e0c-183f9975fc94/1/tA1JQzPLTZ5f0QyEbEfPVkRcUDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.176.0/22
Signature Algorithm: sha256WithRSAEncryption
05:4b:9a:e4:c0:15:71:c8:e6:eb:89:cd:86:94:0d:8d:da:4e:
6e:8f:74:7b:4f:2c:65:17:de:bb:f6:8f:ff:49:5e:2d:08:8c:
30:4b:b5:d0:01:9e:62:14:65:6f:21:b7:2a:1d:0b:5b:ec:04:
1d:d4:d0:61:e4:6f:48:3f:3b:07:c1:5c:a8:14:0e:fc:b0:64:
4f:04:ed:01:05:d8:13:be:d3:88:25:b9:a0:ce:fb:39:52:27:
8b:9a:83:39:0e:a1:b9:ea:dd:be:7b:02:14:c3:2e:4b:33:05:
15:20:74:f2:82:fb:5f:ac:75:9a:aa:a8:37:a0:e6:65:34:f9:
09:49:f5:14:05:7d:ca:72:7d:bc:b8:dc:f5:47:90:bb:5a:e3:
8c:4b:26:a3:9b:a3:f5:0a:a8:c6:1b:82:9e:c7:37:bf:0d:5d:
3e:da:ad:4d:17:76:13:d7:95:a3:0d:48:76:14:95:a2:60:73:
29:45:25:3b:ea:ef:df:1e:50:b7:b0:c5:10:c2:11:11:11:dc:
c7:54:03:49:c5:77:10:6d:bc:3f:bc:ce:d7:4b:89:f1:62:6e:
d6:7c:17:97:66:0b:f2:3d:46:7c:1e:5c:1a:c0:24:2e:86:70:
65:e8:28:70:22:29:a2:a9:08:37:f1:68:68:29:d1:29:dc:52:
60:69:ef:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:16 2024 by rpki-client on console-ams.rpki-client.org