Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/cIRsOt98cY8zDD6ocs1NAfHB4sM.roa
File: cIRsOt98cY8zDD6ocs1NAfHB4sM.roa (raw, json)
Hash identifier: eHzQWCTPwzrn3/Au/NyFV6BOIdzsYlznS4JAqwcPyqs=
Subject key identifier: 70:84:6C:3A:DF:7C:71:8F:33:0C:3E:A8:72:CD:4D:01:F1:C1:E2:C3
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 0B285B
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/cIRsOt98cY8zDD6ocs1NAfHB4sM.roa
Signing time: Mon 20 Jun 2022 07:03:44 +0000
ROA not before: Mon 20 Jun 2022 07:03:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205534
IP address blocks: 185.155.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 731227 (0xb285b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: Jun 20 07:03:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70846c3adf7c718f330c3ea872cd4d01f1c1e2c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:94:ae:86:bc:16:8c:d6:be:7c:ac:78:03:65:
09:c3:da:8e:5d:bb:94:38:96:83:d4:af:36:f8:4f:
a8:2a:31:76:68:fa:69:74:9a:03:33:e2:69:89:52:
f7:1c:25:07:8f:d9:cb:29:27:81:1a:b3:52:d3:b7:
9f:9f:32:21:dc:f2:33:75:c9:cc:b0:e6:c1:41:93:
d2:ba:7d:10:b7:f7:b8:15:16:a2:39:ac:82:c4:12:
a9:cd:e0:f2:2f:60:00:2a:bd:42:ac:84:6a:e4:30:
16:97:7c:26:fa:0f:24:63:5c:37:f1:0f:42:05:75:
a1:6c:bd:15:8f:40:8b:a6:b6:9c:20:6f:67:e2:77:
af:54:47:8b:62:2b:bb:de:f2:1d:d7:68:2b:ed:9e:
74:39:2c:63:9a:d8:ee:80:27:53:a3:d3:b4:24:10:
50:55:d5:60:30:2f:8f:fc:3c:24:a3:4f:ca:12:d9:
3b:4e:72:b7:a0:2d:2d:31:a2:cd:68:80:17:db:e8:
51:53:a6:89:a6:61:cd:06:48:cb:3c:13:54:5b:77:
e3:3b:17:29:84:cd:ef:5d:9b:64:ff:a7:32:8e:f2:
ac:d6:c9:00:bd:15:cb:fa:12:0a:33:0a:22:90:6a:
78:5b:37:00:60:5a:51:9d:e5:c8:7a:7c:e6:ae:c4:
ce:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:84:6C:3A:DF:7C:71:8F:33:0C:3E:A8:72:CD:4D:01:F1:C1:E2:C3
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/cIRsOt98cY8zDD6ocs1NAfHB4sM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.235.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:b1:5a:79:50:d2:c1:0e:f2:c0:63:0a:67:84:a6:54:3c:63:
a0:53:3f:c4:01:63:5c:ca:d6:f2:d3:0e:17:3c:fd:02:0b:53:
85:be:9f:71:8d:85:f8:14:97:ec:60:c5:0c:a8:fb:65:44:c3:
6d:4f:a8:31:0b:09:11:30:5d:71:11:23:6c:e4:20:61:26:c8:
38:b5:64:5b:d5:4e:98:7f:48:14:f2:dc:d4:5c:4f:90:18:c8:
2a:65:50:5a:49:d0:87:ff:5d:94:a2:b1:66:35:b6:b4:55:30:
5d:76:dd:92:ee:da:5b:6f:46:dd:1f:d5:38:f3:39:1b:f7:97:
c3:0c:b6:8d:eb:1a:d2:92:25:f8:34:53:5c:7a:4c:13:50:f9:
a2:65:a1:fa:c7:8e:2f:3f:b4:bb:ed:ae:ab:93:1f:2f:54:13:
c7:ae:17:52:61:51:e7:aa:17:d1:19:31:a7:11:8f:55:d9:67:
60:9e:5d:58:b2:68:28:f6:27:bd:e6:57:c4:a0:09:b4:a6:1e:
a5:be:9f:30:78:dc:a7:09:32:91:9a:07:b3:4f:6c:61:3c:ce:
c2:22:7d:f1:db:7e:b9:92:eb:e3:2c:f3:a9:88:a8:78:87:1f:
f5:81:76:5b:ff:c6:1b:d5:91:2d:1d:66:3b:e7:1d:50:7b:34:
cf:43:6f:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:51 2024 by rpki-client on console-fra.rpki-client.org