Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e61614-ebc5-4731-8560-9d1812999a35/1/dckrzkNGDRvQFHk1TjXPc5f-m9I.roa
File: dckrzkNGDRvQFHk1TjXPc5f-m9I.roa (raw, json)
Hash identifier: Mdl+dKBTIofQlvlF5PRRjPKkvnie/u2+8lNA49v45tY=
Subject key identifier: 75:C9:2B:CE:43:46:0D:1B:D0:14:79:35:4E:35:CF:73:97:FE:9B:D2
Certificate issuer: /CN=b4a90f6896678442afaee1baaaa6b2a2decacd3b
Certificate serial: 133E5A28
Authority key identifier: B4:A9:0F:68:96:67:84:42:AF:AE:E1:BA:AA:A6:B2:A2:DE:CA:CD:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKkPaJZnhEKvruG6qqayot7KzTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e61614-ebc5-4731-8560-9d1812999a35/1/dckrzkNGDRvQFHk1TjXPc5f-m9I.roa
Signing time: Wed 22 Jun 2022 07:53:45 +0000
ROA not before: Wed 22 Jun 2022 07:53:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 185.150.61.0/24 maxlen: 24
185.150.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 322853416 (0x133e5a28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a90f6896678442afaee1baaaa6b2a2decacd3b
Validity
Not Before: Jun 22 07:53:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75c92bce43460d1bd01479354e35cf7397fe9bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b1:8b:e3:f5:38:ec:b2:3b:5d:9c:c8:5e:cf:
b3:97:96:81:13:b8:10:c1:5f:59:bd:cc:e1:50:49:
11:cf:68:98:de:c3:01:1e:8e:76:53:c6:a0:a5:c1:
4b:54:72:ba:ea:a8:d6:af:0e:52:73:20:6a:65:d6:
0c:fb:1f:d5:1d:3e:a6:c6:d1:f9:b6:e0:37:92:68:
9a:c5:6b:09:9b:06:1c:b1:5e:c1:57:06:43:15:89:
da:3a:87:4a:2e:2a:25:97:39:c5:3d:b6:f3:12:bf:
de:18:03:b5:0c:d7:fa:9e:8c:f3:b6:68:d1:eb:f0:
b2:73:68:fa:cb:52:80:e7:bc:b9:45:25:bb:59:06:
0e:a6:eb:6e:59:f1:43:aa:f1:58:d1:80:e0:bb:f0:
fa:92:8c:79:85:d7:42:35:79:4a:d9:73:2a:b8:04:
e9:ae:ae:9a:fb:dd:e8:4d:36:21:3e:21:49:ab:9c:
a7:2d:75:f6:52:df:05:77:21:25:5f:24:ee:c4:e2:
f0:0a:4e:2b:b0:c9:2e:a5:c4:8c:09:87:45:9a:a4:
dd:ec:12:10:08:9b:0a:7f:67:9b:19:93:a9:5c:ca:
bf:76:c1:6a:b5:1a:1a:b8:b3:84:11:5d:a0:da:f3:
7f:8a:76:bf:8d:e2:b2:60:b1:3a:f5:1c:db:be:be:
e1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:C9:2B:CE:43:46:0D:1B:D0:14:79:35:4E:35:CF:73:97:FE:9B:D2
X509v3 Authority Key Identifier:
keyid:B4:A9:0F:68:96:67:84:42:AF:AE:E1:BA:AA:A6:B2:A2:DE:CA:CD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKkPaJZnhEKvruG6qqayot7KzTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e61614-ebc5-4731-8560-9d1812999a35/1/dckrzkNGDRvQFHk1TjXPc5f-m9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e61614-ebc5-4731-8560-9d1812999a35/1/tKkPaJZnhEKvruG6qqayot7KzTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.60.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:86:57:be:3d:fd:62:e4:47:fb:b8:3b:5c:3d:e3:91:de:b0:
a6:4b:ea:47:c7:a2:a5:32:6d:85:b2:0c:07:86:d3:05:33:79:
a0:d7:b1:97:d4:a0:1d:c8:5e:79:56:4c:19:87:d0:24:0e:84:
60:2c:e8:a6:c6:17:d9:65:8f:7f:c1:f3:3c:01:70:b2:9c:04:
46:78:0b:a7:68:da:09:d4:ef:3f:50:a1:50:98:3c:58:6a:41:
83:ef:01:22:e3:7b:03:9c:22:cb:84:35:2e:d5:c8:7d:9a:d6:
af:18:6f:64:c5:c3:0f:d0:a6:0e:89:d4:6e:d7:6f:8c:d5:22:
61:87:b0:66:a8:ef:c0:bb:5a:b7:76:10:c7:15:bf:b1:6a:b9:
0d:37:45:2f:6d:c1:c0:aa:70:d9:88:a3:0c:14:da:3d:20:7b:
c6:cd:e4:47:69:d9:d4:7a:89:76:9f:f2:b8:09:1f:a3:a9:7c:
f9:a2:13:cc:c9:61:db:b4:96:b1:2c:fc:03:3a:b9:8b:ce:80:
60:4c:97:d2:67:b6:02:82:55:9b:95:dc:ec:88:f4:8e:ce:6d:
72:33:ce:9a:0d:22:88:39:f3:f7:48:60:59:70:9c:11:72:a5:
b1:98:f8:73:58:84:d0:73:a0:9a:b4:27:84:73:86:f3:11:43:
f5:0f:5e:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:12 2023 by rpki-client on console-ams.rpki-client.org