Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/4DtGwOQAgly8ZmPWNvf3-KcojWs.roa
File: 4DtGwOQAgly8ZmPWNvf3-KcojWs.roa (raw, json)
Hash identifier: n9/tn92jyqt8tJx6ppoKQjgskhF7gdEv/fJXn2pM5Ic=
Subject key identifier: E0:3B:46:C0:E4:00:82:5C:BC:66:63:D6:36:F7:F7:F8:A7:28:8D:6B
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 026E6E35
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/4DtGwOQAgly8ZmPWNvf3-KcojWs.roa
Signing time: Wed 06 Apr 2022 07:39:34 +0000
ROA not before: Wed 06 Apr 2022 07:39:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42160
IP address blocks: 185.231.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40791605 (0x26e6e35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Apr 6 07:39:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e03b46c0e400825cbc6663d636f7f7f8a7288d6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c8:fc:52:51:85:14:2a:f1:09:72:10:9e:f8:
f1:0e:fb:1c:7c:f5:78:1d:b6:04:8d:b8:d8:d6:24:
81:8c:0d:24:22:4d:7b:3d:a4:72:8c:b1:ef:c7:32:
57:d4:87:07:3b:79:50:c8:70:a7:c0:b7:ff:08:f9:
6f:79:30:aa:48:94:b7:af:f1:7c:a5:4a:0a:5d:a5:
b6:72:0d:22:3c:82:99:7c:d6:9e:2c:2c:e6:fd:4b:
8c:7f:21:a4:83:67:6c:14:7d:6d:f2:5f:29:d7:a2:
da:c7:21:10:e6:0c:71:97:6e:59:de:58:98:a9:3e:
d6:d3:16:58:64:01:bf:8d:80:5e:8d:0b:83:4f:47:
99:63:79:aa:56:08:95:a9:7d:ae:f7:b1:07:21:67:
64:82:2a:f0:1d:53:70:cb:c4:a0:6e:c7:2a:53:b5:
d7:29:b3:79:b9:e0:d2:dc:be:10:51:c5:b0:5a:0f:
12:78:70:bb:7e:28:39:5d:e9:04:4b:a2:6a:85:b9:
09:28:d8:97:fb:be:b6:ed:ac:ba:ae:9e:7a:1e:e9:
32:e6:20:99:05:ad:15:e3:e3:4d:b7:fa:e2:bd:44:
22:b2:c0:98:7c:cb:45:08:9e:04:de:9d:5b:dd:ad:
c8:2b:9c:50:f6:2c:c4:ac:f9:83:5a:83:e6:7f:4e:
eb:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:3B:46:C0:E4:00:82:5C:BC:66:63:D6:36:F7:F7:F8:A7:28:8D:6B
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/4DtGwOQAgly8ZmPWNvf3-KcojWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.113.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:b8:7d:26:6c:43:7f:95:2c:fc:b4:54:ed:d1:b9:e4:36:23:
cb:3d:dd:9d:68:c8:2d:d2:c0:1c:df:89:bd:2b:6d:c4:a9:4c:
77:08:d8:fe:2b:b6:6b:bb:9a:15:6c:bc:8a:cb:e5:a1:4a:d8:
d1:4d:a3:bd:c4:69:ef:ba:e4:42:24:6d:73:7a:af:97:c5:0d:
16:77:7b:8d:84:97:bd:e3:cc:87:7e:59:72:65:ff:29:17:18:
4a:d4:a4:1f:1b:c9:0d:11:5e:ac:47:bc:eb:88:a0:02:ac:fd:
63:07:e9:71:96:3e:a0:6f:8f:e2:bd:1a:5b:50:73:fe:da:3e:
43:76:d6:0e:75:a2:10:02:a1:35:1e:8a:b7:99:cc:26:47:f8:
5a:ef:ef:c9:c7:79:39:14:c0:ad:23:f0:4e:e8:4b:3c:76:d1:
9c:68:e8:e2:0a:43:83:fe:56:c1:57:cf:37:47:95:e9:b6:89:
bd:29:f8:2e:ff:8b:c8:be:f4:23:f8:37:78:75:54:d2:1b:8f:
70:b9:03:84:77:e1:ef:42:35:b5:c1:5c:e1:81:32:7e:67:53:
e9:cc:43:05:46:10:ea:a6:7c:ce:7c:36:c5:c7:6b:1b:ab:ea:
28:59:05:21:6c:f3:d2:8a:4b:49:ec:2f:f4:1a:be:a9:61:3c:
1d:28:d1:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:20 2023 by rpki-client on console-fra.rpki-client.org