Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/F_OCWaHF-Be4eQ3a6xlR2gPhwq8.roa
File: F_OCWaHF-Be4eQ3a6xlR2gPhwq8.roa (raw, json)
Hash identifier: 9ZBF191pN8yfRViCTJJP2aCRG0H9Uh/JPbuukXqQOSI=
Subject key identifier: 17:F3:82:59:A1:C5:F8:17:B8:79:0D:DA:EB:19:51:DA:03:E1:C2:AF
Certificate issuer: /CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Certificate serial: 38C0DA31
Authority key identifier: A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/F_OCWaHF-Be4eQ3a6xlR2gPhwq8.roa
Signing time: Thu 30 Jun 2022 22:00:02 +0000
ROA not before: Thu 30 Jun 2022 22:00:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42418
IP address blocks: 185.25.143.0/24 maxlen: 24
2a02:22c8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952162865 (0x38c0da31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Validity
Not Before: Jun 30 22:00:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17f38259a1c5f817b8790ddaeb1951da03e1c2af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e7:b3:44:f6:4a:7b:fa:95:1c:91:18:06:6d:
ba:63:81:8c:89:dc:56:6a:87:3d:8b:ee:f0:9d:12:
36:28:aa:84:b5:a2:9b:b6:ba:ce:3c:17:45:d2:a1:
05:2c:95:97:81:26:dc:33:ce:21:be:57:57:48:53:
fa:ab:5b:e7:92:a7:9f:04:7e:a5:9a:b9:ec:7a:ab:
b8:d7:de:83:bf:55:08:9e:59:6e:8e:70:f7:59:8f:
b1:46:b3:d9:f1:63:91:0a:e9:b1:30:68:ce:ab:a7:
7b:73:79:96:46:ee:6c:ff:bc:57:1c:0b:83:9f:81:
e6:45:32:ca:09:d6:0f:80:c4:a0:7f:82:5b:83:fe:
5e:c0:82:80:fe:84:1d:f5:a8:21:0a:ec:df:e1:2f:
ae:b9:06:6b:28:bb:1c:f9:b3:46:22:b8:e0:58:97:
68:45:82:8c:75:05:b6:bc:7c:55:95:2a:4a:81:1f:
2f:82:c2:1d:4b:23:6d:fc:36:68:12:bb:ed:73:fc:
db:ec:e4:54:35:54:db:47:11:50:82:8a:a2:b4:af:
23:23:cb:c8:d7:21:bc:69:85:c0:52:5c:2e:3f:3e:
4b:52:86:37:98:d1:e4:80:52:2d:43:9e:94:48:0b:
cd:0d:83:fe:c7:67:5a:bd:d2:29:71:2e:fb:88:7c:
d2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:F3:82:59:A1:C5:F8:17:B8:79:0D:DA:EB:19:51:DA:03:E1:C2:AF
X509v3 Authority Key Identifier:
keyid:A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/F_OCWaHF-Be4eQ3a6xlR2gPhwq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.25.143.0/24
IPv6:
2a02:22c8::/48
Signature Algorithm: sha256WithRSAEncryption
3d:d7:30:1c:ba:75:3a:9d:cc:4a:d3:c3:c6:8f:f1:f2:8a:35:
42:ff:5d:bd:7b:3f:67:1d:6a:d8:23:5a:78:f8:56:f0:ff:d4:
31:9c:89:b6:77:8f:14:58:ad:3d:00:38:f6:c9:10:71:04:fc:
b0:e3:8f:df:d5:97:86:26:06:0d:09:c1:77:25:3f:1c:87:18:
8a:1e:90:8d:46:e5:5c:f5:c2:cd:af:69:e7:62:ba:28:8f:76:
76:ae:31:ac:34:a9:1b:c0:5f:6e:13:2a:38:a3:f7:68:d7:12:
64:99:9d:6b:3e:61:dc:ea:6a:e9:4f:38:01:f0:11:7d:98:a1:
a8:ee:a1:83:61:2d:6c:37:14:6c:30:fe:64:6d:6e:26:3a:84:
93:bb:15:4b:1a:60:b1:e4:ca:3c:12:f7:12:59:7e:39:62:85:
a0:59:6f:21:f4:45:53:12:7b:83:bf:c2:18:6b:e3:92:36:a3:
c7:a3:8c:1f:2b:f4:3c:e1:d7:35:b2:e6:ee:d2:5e:12:df:5a:
a5:de:de:d4:4d:c2:8c:fb:0d:33:35:d9:b0:bc:ee:01:3c:22:
10:ba:98:ac:3d:cf:0d:35:70:bb:c0:24:6a:9e:7c:67:d8:6d:
34:96:d0:3a:66:20:e8:22:21:05:31:ad:bd:6c:4b:0e:9c:36:
dc:1f:81:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:51 2024 by rpki-client on console-ams.rpki-client.org