Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/0e7e28-a829-47d2-80e6-8ba6888669cf/1/_0sVUjqUftq01P53pZdE3xH54Zc.roa
File: _0sVUjqUftq01P53pZdE3xH54Zc.roa (raw, json)
Hash identifier: HObEZXW7inAjM29CMmDvbleD6mgvy8R18p0cXa/FJcs=
Subject key identifier: FF:4B:15:52:3A:94:7E:DA:B4:D4:FE:77:A5:97:44:DF:11:F9:E1:97
Certificate issuer: /CN=d6aa89f7b722279c032942dcf24865f6d72d6501
Certificate serial: 02152FED
Authority key identifier: D6:AA:89:F7:B7:22:27:9C:03:29:42:DC:F2:48:65:F6:D7:2D:65:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1qqJ97ciJ5wDKULc8khl9tctZQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/0e7e28-a829-47d2-80e6-8ba6888669cf/1/_0sVUjqUftq01P53pZdE3xH54Zc.roa
Signing time: Sat 01 Jan 2022 07:58:41 +0000
ROA not before: Sat 01 Jan 2022 07:58:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.225.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34942957 (0x2152fed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6aa89f7b722279c032942dcf24865f6d72d6501
Validity
Not Before: Jan 1 07:58:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff4b15523a947edab4d4fe77a59744df11f9e197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c3:66:b4:57:4d:70:87:3b:3c:ed:50:cd:4d:
ca:48:42:dc:b6:ec:0f:d4:75:ff:7b:bb:9b:ad:21:
bb:2d:13:d3:7f:e1:4f:19:c0:1d:8d:e1:7d:96:b2:
07:e0:a2:a4:24:cb:9a:1b:e3:ef:01:c0:3c:da:ce:
ac:45:7a:2c:26:c2:84:1a:e2:1e:2b:ca:49:86:35:
d0:6e:5d:64:c5:75:ea:8e:8f:1f:5d:78:90:7f:0c:
9f:67:a4:ff:bf:f7:8c:92:e5:0a:cf:f7:b7:2f:20:
19:51:0e:a9:f1:af:09:4e:8b:dc:ab:f1:bf:83:d4:
1f:47:00:15:a6:12:b5:7e:b5:72:f5:e7:92:bc:dc:
37:0f:e5:c5:66:75:9d:c5:e1:1e:39:6f:8b:72:58:
72:29:28:ed:b1:21:ac:27:8b:77:73:a3:cf:44:38:
fa:b1:d7:af:92:d4:31:55:66:b0:0b:0a:d9:cf:ed:
a5:2b:6b:4c:12:8b:78:2d:60:b3:29:f7:b2:a5:ed:
e5:5b:29:81:b0:c4:00:8f:ca:ba:50:3d:d5:d3:8d:
f1:85:3b:b5:de:a3:6e:cf:b6:22:ba:c9:f3:0c:3e:
1a:f9:ef:15:33:01:ec:56:93:1f:2b:fb:49:6a:fb:
62:34:7d:dc:e0:60:3d:d1:0d:79:01:22:ab:7e:eb:
f1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:4B:15:52:3A:94:7E:DA:B4:D4:FE:77:A5:97:44:DF:11:F9:E1:97
X509v3 Authority Key Identifier:
keyid:D6:AA:89:F7:B7:22:27:9C:03:29:42:DC:F2:48:65:F6:D7:2D:65:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1qqJ97ciJ5wDKULc8khl9tctZQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0e7e28-a829-47d2-80e6-8ba6888669cf/1/_0sVUjqUftq01P53pZdE3xH54Zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0e7e28-a829-47d2-80e6-8ba6888669cf/1/1qqJ97ciJ5wDKULc8khl9tctZQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.252.0/22
Signature Algorithm: sha256WithRSAEncryption
74:c9:c9:30:9e:f4:d8:9a:aa:b8:e2:6a:df:3a:c6:1b:6e:7e:
a6:08:3b:fb:73:17:16:f5:e5:d3:ba:70:aa:c8:a3:04:28:1e:
3f:76:84:03:98:27:49:bb:f7:e1:f8:f6:14:e6:f5:8d:b3:c0:
28:aa:b1:37:aa:8d:e9:69:f9:c4:c7:46:d3:33:6a:29:d8:37:
ef:88:63:28:13:2f:88:93:13:30:e4:f2:4b:5b:05:04:85:83:
67:4f:39:52:a4:30:67:4a:79:23:e7:82:08:9a:c5:b9:fc:a1:
d1:b7:7d:fe:45:68:a2:92:70:83:dc:3f:9c:1b:c9:ef:e0:6d:
c1:b3:78:75:17:77:c4:79:fe:6a:ad:8f:9d:e7:20:f6:1e:1c:
a8:f3:6b:e0:98:bc:93:03:6c:fd:d0:bd:cc:a0:06:0a:1c:50:
e3:1e:a2:e9:b8:7c:bc:e4:e4:d7:0c:89:d9:dc:a6:b6:66:50:
34:82:35:54:1d:e3:24:d5:6e:7c:5e:4c:f1:95:54:62:6c:59:
a1:37:2e:61:0c:49:00:2e:96:cc:b8:09:96:84:6b:91:f3:58:
38:a7:10:c2:80:9a:be:63:dd:f7:76:25:89:44:67:c7:5c:2f:
50:2a:f0:94:f4:b4:96:f0:3f:47:66:cf:ae:f9:86:ad:fc:85:
12:e7:bd:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:48 2023 by rpki-client on console-fra.rpki-client.org