Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/7b997b-bea6-4891-95d1-94c6f744de46/1/THNLYCmMxVa98bhFIKp_qPJ-HyU.roa
File: THNLYCmMxVa98bhFIKp_qPJ-HyU.roa (raw, json)
Hash identifier: ahQXs7rdC+tdrJs9TZqeQVajbdaYSygNYkW1PbF1Cak=
Subject key identifier: 4C:73:4B:60:29:8C:C5:56:BD:F1:B8:45:20:AA:7F:A8:F2:7E:1F:25
Certificate issuer: /CN=f4897fdbdc7d2508dfcd14cff600ad43b927924b
Certificate serial: 0183654CFEE3DFD4BEB59681B91B3A160DAA
Authority key identifier: F4:89:7F:DB:DC:7D:25:08:DF:CD:14:CF:F6:00:AD:43:B9:27:92:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Il_29x9JQjfzRTP9gCtQ7knkks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/7b997b-bea6-4891-95d1-94c6f744de46/1/THNLYCmMxVa98bhFIKp_qPJ-HyU.roa
Signing time: Thu 22 Sep 2022 13:04:48 +0000
ROA not before: Thu 22 Sep 2022 13:04:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201841
IP address blocks: 185.63.157.0/24 maxlen: 24
185.63.158.0/23 maxlen: 23
185.63.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:65:4c:fe:e3:df:d4:be:b5:96:81:b9:1b:3a:16:0d:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4897fdbdc7d2508dfcd14cff600ad43b927924b
Validity
Not Before: Sep 22 13:04:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c734b60298cc556bdf1b84520aa7fa8f27e1f25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:06:be:2b:96:cd:4d:99:bd:1b:64:a6:35:73:
3f:ae:00:27:97:3c:8d:0e:09:d2:4e:4d:da:02:e1:
3e:df:98:9d:19:72:29:24:33:6c:8f:d7:0f:b1:1c:
75:bc:8e:84:be:2b:e5:1c:a5:be:0d:c1:39:cf:7b:
a1:fd:e4:e9:95:c7:95:37:55:f1:67:8b:f5:4f:76:
d1:9a:38:cb:e5:85:36:41:07:84:3c:45:65:7d:77:
5d:cb:e0:2c:fa:3e:3b:3a:ed:54:f2:43:cc:7d:07:
4c:ed:dd:e8:4c:90:44:a1:3c:f9:eb:5b:ac:e0:20:
81:26:99:01:41:9c:b1:90:f0:bf:e5:4f:fd:be:c4:
65:88:75:f4:5f:53:c5:c9:f2:f3:9b:32:34:a2:05:
2d:7b:09:75:ac:98:16:20:4e:8c:43:83:11:96:8e:
a3:55:d6:28:56:00:07:01:16:3e:7a:55:67:bb:d8:
8d:d3:3b:6f:ce:30:1d:5a:ca:dd:f6:b2:63:aa:ea:
07:d9:3e:2d:97:2a:a1:19:b2:b0:96:a9:13:cd:08:
07:4d:39:37:52:e2:87:70:b4:fe:6a:fb:0c:80:46:
37:8f:d0:3a:8b:9f:6f:bb:27:45:5e:fc:d1:a2:fe:
51:1b:a1:46:b8:d7:53:ac:b3:2a:52:94:fb:8c:d5:
db:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:73:4B:60:29:8C:C5:56:BD:F1:B8:45:20:AA:7F:A8:F2:7E:1F:25
X509v3 Authority Key Identifier:
keyid:F4:89:7F:DB:DC:7D:25:08:DF:CD:14:CF:F6:00:AD:43:B9:27:92:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Il_29x9JQjfzRTP9gCtQ7knkks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7b997b-bea6-4891-95d1-94c6f744de46/1/THNLYCmMxVa98bhFIKp_qPJ-HyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7b997b-bea6-4891-95d1-94c6f744de46/1/9Il_29x9JQjfzRTP9gCtQ7knkks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.156.0/22
Signature Algorithm: sha256WithRSAEncryption
81:9e:78:9e:57:45:03:f5:35:40:0c:5b:48:d3:d0:a9:5a:b1:
e8:23:98:ad:91:cb:e5:6b:42:93:0d:b6:b9:d0:72:36:73:2b:
a7:ab:21:d5:67:d7:27:a1:7a:29:92:62:f6:e4:28:bc:69:6b:
62:7d:15:fd:d3:6d:5b:41:64:81:ee:f1:7c:8f:23:1f:56:d1:
77:aa:e1:60:a5:1d:6b:d0:00:83:dd:d8:07:75:b2:47:f9:9e:
e4:4e:48:9e:09:e6:1d:44:d9:79:8f:e6:79:aa:e3:1e:e6:43:
39:88:88:b7:62:e3:3c:c5:60:f2:dc:a9:77:ec:25:a1:ed:9c:
2f:53:95:36:76:44:0a:60:63:57:0d:d9:e9:26:96:73:c5:fa:
c9:01:8a:a7:ff:42:f9:ae:f6:0d:20:87:67:7a:34:0d:67:54:
61:86:3e:51:57:92:d2:91:26:f4:32:42:5e:61:17:c5:72:28:
8b:62:39:67:6d:a7:2f:ac:b9:10:79:2b:e0:b0:79:f8:4b:35:
58:8d:1d:39:e0:e8:2f:77:84:22:f6:61:a7:14:66:a3:08:f8:
bd:79:10:41:db:0c:f5:d2:ca:83:2b:53:0e:78:87:c8:cc:ce:
fd:7a:7d:26:bf:6f:6e:f5:0f:16:6d:03:00:78:a5:dc:59:d4:
22:6b:3f:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:20 2023 by rpki-client on console-ams.rpki-client.org