Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d69830-ccb1-4675-ad2f-66ac0dba5bf2/1/cAz0Oaj3EK7MhWkP7Fr77ivRQmk.roa
File: cAz0Oaj3EK7MhWkP7Fr77ivRQmk.roa (raw, json)
Hash identifier: jQMqrGLrFbjQ76uY6fH2BB4zZID/adpd2l3iKZtOI90=
Subject key identifier: 70:0C:F4:39:A8:F7:10:AE:CC:85:69:0F:EC:5A:FB:EE:2B:D1:42:69
Certificate issuer: /CN=d947b281348abdac24c2bd16da06775ca755f410
Certificate serial: 059187
Authority key identifier: D9:47:B2:81:34:8A:BD:AC:24:C2:BD:16:DA:06:77:5C:A7:55:F4:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UeygTSKvawkwr0W2gZ3XKdV9BA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d69830-ccb1-4675-ad2f-66ac0dba5bf2/1/cAz0Oaj3EK7MhWkP7Fr77ivRQmk.roa
Signing time: Thu 09 Jun 2022 11:39:04 +0000
ROA not before: Thu 09 Jun 2022 11:39:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49264
IP address blocks: 185.161.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 364935 (0x59187)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d947b281348abdac24c2bd16da06775ca755f410
Validity
Not Before: Jun 9 11:39:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=700cf439a8f710aecc85690fec5afbee2bd14269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8e:06:e0:d7:09:ba:56:c7:f6:fd:a9:68:b8:
2d:5a:15:52:4c:8d:f9:e2:eb:c3:6c:4b:21:2c:04:
c0:a5:73:80:c5:cf:65:58:0a:40:18:56:08:55:86:
8c:84:f6:a1:a9:11:1b:a3:5a:a7:8e:15:ac:50:da:
1f:23:a9:5c:9a:c6:0c:55:5c:fb:38:71:9f:bc:c2:
d6:5b:59:61:df:f0:88:e2:df:7b:3e:7b:8b:69:08:
80:99:82:aa:57:11:22:46:d3:c9:7e:9a:04:fd:42:
ac:38:ed:ec:50:df:ac:ef:9d:7c:93:f7:33:70:ff:
1e:b1:a8:7d:27:80:9a:42:ac:6f:49:87:8d:7d:fd:
2a:0d:52:51:48:a4:82:9a:c4:cd:92:a7:e7:6d:41:
d4:9b:ad:32:f1:3f:2c:7d:6b:3b:53:03:6e:2a:61:
72:e9:37:28:e8:a9:a3:5b:9a:c7:d2:c0:70:ea:8a:
cb:ac:07:76:53:14:f7:73:4d:00:31:c9:69:df:40:
dd:70:f4:6d:48:45:87:13:5d:c2:d6:9d:b1:d3:dd:
8e:7e:b4:2f:cd:5e:22:fc:48:9a:43:c5:75:9c:4c:
43:6d:11:26:2e:39:85:e2:90:61:fa:e0:87:57:c0:
39:e1:e2:f3:e9:b5:f0:2a:db:94:54:38:47:4a:d3:
99:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:0C:F4:39:A8:F7:10:AE:CC:85:69:0F:EC:5A:FB:EE:2B:D1:42:69
X509v3 Authority Key Identifier:
keyid:D9:47:B2:81:34:8A:BD:AC:24:C2:BD:16:DA:06:77:5C:A7:55:F4:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UeygTSKvawkwr0W2gZ3XKdV9BA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d69830-ccb1-4675-ad2f-66ac0dba5bf2/1/cAz0Oaj3EK7MhWkP7Fr77ivRQmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d69830-ccb1-4675-ad2f-66ac0dba5bf2/1/2UeygTSKvawkwr0W2gZ3XKdV9BA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.160.0/24
Signature Algorithm: sha256WithRSAEncryption
67:10:4e:1e:a1:9b:5a:ca:f4:1d:ed:81:6a:4f:be:4e:83:bc:
37:58:9e:09:72:77:14:0d:04:c9:e8:bb:60:72:c7:f4:1f:97:
04:cd:75:36:f1:c7:9d:76:1b:d4:08:05:3f:33:b8:fe:10:54:
e0:32:67:76:8d:74:24:15:e6:3a:e9:18:a3:c5:46:55:d1:b0:
9d:b5:39:10:78:d4:93:12:54:f9:20:6c:fb:54:43:b4:c6:9d:
96:b4:9f:e6:b9:ae:1a:4f:7e:be:af:b4:6c:d8:3c:be:b6:6b:
c9:a8:96:a0:ab:0e:ba:19:5e:bd:3b:d8:84:b7:30:73:89:99:
ab:29:71:ab:77:6e:d7:1c:37:fa:8e:76:c5:f4:76:af:03:1a:
2d:96:26:c3:56:f0:da:d1:ea:f0:ac:0c:d2:ad:06:a0:b2:11:
4d:73:18:b9:1c:db:f6:be:aa:b6:39:83:5c:42:66:5c:12:27:
68:f1:10:da:99:fe:7c:e3:98:c8:c6:83:ea:06:db:61:66:ff:
55:2d:2c:b4:e6:2a:cb:a5:43:05:ae:14:22:1e:7b:10:6e:c5:
1c:db:f5:02:bd:98:b6:ad:8b:39:52:bf:d6:a8:7e:0e:8e:b1:
d8:26:99:a3:de:9b:78:fd:28:40:12:11:04:6a:42:90:1d:5e:
dc:00:03:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:44 2023 by rpki-client on console-ams.rpki-client.org