Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/sTGMW9s8E32QNMyvQA_M3trdDmU.roa
File: sTGMW9s8E32QNMyvQA_M3trdDmU.roa (raw, json)
Hash identifier: rV2hdTCyzSWC3NXhFK1ZETIg5kzF0x685axT9hRJWvU=
Subject key identifier: B1:31:8C:5B:DB:3C:13:7D:90:34:CC:AF:40:0F:CC:DE:DA:DD:0E:65
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 0302E665
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/sTGMW9s8E32QNMyvQA_M3trdDmU.roa
Signing time: Sun 05 Jun 2022 13:41:26 +0000
ROA not before: Sun 05 Jun 2022 13:41:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208476
IP address blocks: 185.231.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50521701 (0x302e665)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jun 5 13:41:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1318c5bdb3c137d9034ccaf400fccdedadd0e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:09:25:41:ee:e5:8f:ee:19:02:05:e9:00:6a:
dc:e0:95:ff:88:55:78:b7:ae:7d:ae:6c:e4:94:20:
0e:97:39:96:ca:b2:27:12:bf:d8:06:e5:70:a4:1b:
09:4d:ac:2b:09:53:9a:2b:64:c4:68:3d:2d:5f:0a:
8f:23:76:d4:2d:9b:7d:22:21:39:87:ab:7b:83:f7:
a1:5a:d1:1e:83:00:06:7e:70:79:58:0c:e8:61:3a:
d9:5c:2f:b7:36:fe:1d:5c:12:f8:4f:53:be:d3:e1:
e9:e8:70:83:dd:db:be:9e:82:ca:e4:00:32:7f:4a:
c7:54:e6:57:4c:3d:42:9a:23:b4:3f:1c:66:fd:df:
27:2b:3b:84:85:2f:c1:cd:b6:72:1e:a8:50:a3:57:
35:40:80:f0:db:bb:ae:55:5b:9b:55:42:59:9e:24:
85:fa:63:29:57:50:1a:12:c0:14:d7:f5:4c:ed:41:
41:31:11:73:af:8a:b1:0a:bb:06:2b:43:52:d9:1b:
39:32:ad:9f:54:a3:98:b8:c2:68:c5:e8:ed:fc:4a:
9b:4b:b0:9b:1c:19:e6:26:d7:68:31:4c:25:07:a2:
0a:ba:3c:23:f8:5e:ac:39:54:8d:c0:f1:0c:53:4d:
6d:d8:fb:29:58:99:5c:a7:70:7b:2a:e7:73:7c:27:
29:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:31:8C:5B:DB:3C:13:7D:90:34:CC:AF:40:0F:CC:DE:DA:DD:0E:65
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/sTGMW9s8E32QNMyvQA_M3trdDmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.113.0/24
Signature Algorithm: sha256WithRSAEncryption
18:ae:c6:7d:71:78:5c:7b:74:67:be:7e:92:86:5b:11:e1:6b:
8c:29:3d:5a:3c:88:68:82:73:d3:23:e3:5d:b9:7b:bc:3b:bb:
69:4c:36:12:4d:8c:af:64:2d:38:fd:26:16:76:61:88:f3:7c:
7b:1e:62:74:c7:34:b3:60:2e:a9:3a:e9:75:ae:d3:fb:71:c2:
f0:4d:41:e5:2b:36:b6:3f:b2:3d:97:30:fb:76:da:08:b0:86:
9f:c9:94:4d:df:35:dc:51:e6:8e:2b:a9:b9:cd:d0:c4:61:9c:
1c:3f:71:d1:ff:5f:24:f5:12:cf:8b:55:07:39:6e:3e:8b:73:
d1:a3:6f:f7:23:9c:d4:da:b8:68:12:e6:4a:43:39:56:41:88:
71:2d:bb:50:76:db:f6:99:82:06:ef:c0:a8:20:3e:2a:db:48:
57:5e:08:23:75:a2:b4:67:6d:c0:07:12:2b:a2:dd:aa:9f:6f:
0e:12:be:39:1e:59:16:83:a7:28:7a:da:49:c7:de:21:ef:0f:
b9:01:61:24:be:52:47:60:0c:40:da:21:eb:7f:33:e7:7c:e7:
55:3f:99:8d:1f:39:4f:63:46:da:5f:c7:fe:f2:04:c2:2b:1e:
8c:ba:95:c0:d1:d0:1a:e0:b1:94:4d:cc:39:bb:24:47:db:67:
78:af:c7:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org