Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/142664-4c33-442a-b432-fafb12a16c31/1/O4z3_qAXOgUpSF-K7IunBP_lZtY.roa
File: O4z3_qAXOgUpSF-K7IunBP_lZtY.roa (raw, json)
Hash identifier: 1WcQJ5wl1iNAyOnF0Ct2zJF3b90BgmH7JJb25hTp7+s=
Subject key identifier: 3B:8C:F7:FE:A0:17:3A:05:29:48:5F:8A:EC:8B:A7:04:FF:E5:66:D6
Certificate issuer: /CN=785840e3a0f0474a4acce45ed5fc9cff77858d93
Certificate serial: 01380B43
Authority key identifier: 78:58:40:E3:A0:F0:47:4A:4A:CC:E4:5E:D5:FC:9C:FF:77:85:8D:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eFhA46DwR0pKzORe1fyc_3eFjZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/142664-4c33-442a-b432-fafb12a16c31/1/O4z3_qAXOgUpSF-K7IunBP_lZtY.roa
Signing time: Sat 01 Jan 2022 12:55:51 +0000
ROA not before: Sat 01 Jan 2022 12:55:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59437
IP address blocks: 185.241.110.0/24 maxlen: 24
2a10:9640::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20450115 (0x1380b43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=785840e3a0f0474a4acce45ed5fc9cff77858d93
Validity
Not Before: Jan 1 12:55:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b8cf7fea0173a0529485f8aec8ba704ffe566d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:fd:a8:29:36:10:9f:63:61:6c:86:d6:00:a1:
db:21:eb:45:d7:80:56:79:70:29:7a:a6:cf:32:b7:
db:92:79:f7:c3:73:6e:2c:5c:e8:62:33:1b:23:be:
20:f3:56:62:88:43:9f:6c:fb:01:8f:cb:94:ab:af:
2f:67:b6:8e:64:85:c8:f4:7c:b5:3c:68:d2:36:3a:
30:65:71:9e:aa:aa:0c:1f:e2:86:8f:26:6f:3a:03:
5f:11:1f:73:c6:72:51:86:d8:d1:5e:f0:d0:6c:56:
70:c2:3f:fe:52:94:85:51:c0:b1:7b:e3:72:3a:18:
0c:68:57:cb:1a:e7:0c:8f:e0:df:d7:8d:a2:61:93:
cf:b6:cb:2e:47:69:df:9a:b9:2f:36:de:07:2c:48:
85:ed:9b:32:46:34:ba:04:13:1d:eb:6e:b6:a3:06:
7c:92:8b:d4:b5:06:2d:ee:c9:cf:c3:27:9b:14:ed:
37:63:48:1a:0f:23:be:14:f7:4e:1e:96:ee:56:a6:
ae:29:9e:c8:0d:9e:ea:a8:04:03:87:fb:89:71:79:
83:52:43:f7:a7:e5:13:8c:98:75:47:41:0d:10:12:
c3:7d:a9:1b:9b:8f:44:3b:c7:e0:0d:82:ce:55:7f:
ec:9a:0c:6b:6b:35:a9:cd:10:93:bb:6b:fd:11:db:
dc:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:8C:F7:FE:A0:17:3A:05:29:48:5F:8A:EC:8B:A7:04:FF:E5:66:D6
X509v3 Authority Key Identifier:
keyid:78:58:40:E3:A0:F0:47:4A:4A:CC:E4:5E:D5:FC:9C:FF:77:85:8D:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eFhA46DwR0pKzORe1fyc_3eFjZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/142664-4c33-442a-b432-fafb12a16c31/1/O4z3_qAXOgUpSF-K7IunBP_lZtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/142664-4c33-442a-b432-fafb12a16c31/1/eFhA46DwR0pKzORe1fyc_3eFjZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.110.0/24
IPv6:
2a10:9640::/29
Signature Algorithm: sha256WithRSAEncryption
30:44:5f:40:e2:77:39:46:97:8e:25:ea:c1:80:f5:7f:17:2b:
c3:29:99:20:53:ca:36:21:b7:38:06:62:08:ac:b3:89:64:b8:
0f:76:2e:d1:98:84:38:f7:31:b9:c9:0b:d8:fa:89:b6:71:a7:
04:2e:f7:a6:11:78:58:34:63:c7:66:98:fe:9c:6b:e0:28:69:
aa:b9:65:bf:84:ac:a1:0b:89:e3:2e:e4:3c:b9:8b:9c:a3:80:
de:de:be:7d:02:e4:95:91:35:2e:fa:f0:5e:d5:08:a8:eb:51:
0f:3a:47:7d:e0:14:8e:de:dd:62:f3:5a:84:e9:db:f2:fd:fa:
78:8c:11:c4:f8:54:c6:46:bc:85:8a:60:79:e9:bb:74:57:9b:
8e:2b:b5:0b:65:dc:2b:ab:89:f5:e3:06:ae:3d:45:2f:79:b9:
a2:b3:f4:2b:b5:c8:a9:0a:e8:24:e1:41:08:2a:37:9e:fd:74:
51:c6:d9:ba:3c:88:f9:aa:49:e9:72:af:1d:90:1e:50:18:62:
20:f2:2b:62:9e:e3:91:59:a2:fd:73:0f:73:d2:01:60:52:50:
c3:6e:da:5b:5b:e1:69:a6:5c:c2:aa:39:e4:24:bb:d2:1f:b8:
b2:62:6a:d4:36:48:40:de:fc:a3:ec:15:16:84:60:28:28:70:
51:f9:d0:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:10 2023 by rpki-client on console-ams.rpki-client.org