Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/PhuqRsSd957E3jTs1zqSoYuQn5o.roa
File: PhuqRsSd957E3jTs1zqSoYuQn5o.roa (raw, json)
Hash identifier: HxgkWuptM41lX68eABrQ64laet6nBS9PvmoZUYE9pNc=
Subject key identifier: 3E:1B:AA:46:C4:9D:F7:9E:C4:DE:34:EC:D7:3A:92:A1:8B:90:9F:9A
Certificate issuer: /CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Certificate serial: 04183E86
Authority key identifier: 11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/PhuqRsSd957E3jTs1zqSoYuQn5o.roa
Signing time: Thu 05 May 2022 09:48:26 +0000
ROA not before: Thu 05 May 2022 09:48:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 185.232.206.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68697734 (0x4183e86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Validity
Not Before: May 5 09:48:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e1baa46c49df79ec4de34ecd73a92a18b909f9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:39:2e:9a:46:d5:38:60:47:12:86:f2:c3:9d:
f8:2d:98:7a:e6:3a:ee:b3:96:03:fa:27:64:51:cb:
76:53:49:f1:5b:d3:8f:20:8d:cf:3e:3a:97:93:11:
ee:9d:0b:7d:05:fd:6d:34:d8:5a:af:49:25:2d:b4:
89:ee:48:da:e4:51:f2:f0:36:b3:b5:c4:b4:14:03:
70:2c:f9:65:d0:1e:56:f8:c6:83:2d:17:78:58:6e:
a7:48:09:e0:f5:7a:13:50:a3:85:58:44:01:47:c4:
8f:25:7d:e9:89:cf:2f:4a:f6:72:da:f1:87:96:a8:
9f:3c:ca:d3:8c:9c:23:34:9f:ca:a9:1d:7b:bc:3d:
00:2e:74:68:aa:39:e3:e5:bb:29:2f:d3:16:04:fa:
20:20:74:e0:dc:25:aa:f0:1a:ee:47:5b:dc:da:d4:
ba:91:92:ea:28:bc:05:f4:ee:13:d9:3c:50:1f:32:
20:3c:0f:ed:d1:6f:99:7f:7a:c9:cc:05:7c:73:85:
0c:78:49:58:93:a8:af:da:f4:9a:29:b6:6e:b7:08:
5c:cf:c2:b4:7b:fa:f9:9a:04:6a:57:b0:0e:c5:b5:
5d:c1:0f:1d:92:1f:82:74:a5:f9:7f:cc:5d:44:18:
23:7f:98:1c:89:d4:23:01:fb:01:f9:ad:af:72:4f:
ae:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:1B:AA:46:C4:9D:F7:9E:C4:DE:34:EC:D7:3A:92:A1:8B:90:9F:9A
X509v3 Authority Key Identifier:
keyid:11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/PhuqRsSd957E3jTs1zqSoYuQn5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/Ee7NccGT5Kww7QPQufBdoQHGA9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.206.0/23
Signature Algorithm: sha256WithRSAEncryption
36:7e:2e:7a:dd:9e:66:57:49:cd:b9:b0:88:ed:bf:f1:06:98:
a0:3b:e9:0e:20:5d:0b:f0:96:98:7d:78:36:75:33:7a:bb:eb:
6a:50:eb:fd:7e:ea:a2:d4:ad:d4:ca:17:94:1d:05:1c:63:4f:
b3:89:bc:fc:b8:69:a0:02:f8:df:76:35:f1:8f:b5:09:a6:cd:
e5:29:d6:10:fc:e2:4c:65:99:37:e7:04:59:16:60:9c:13:13:
59:20:84:38:7f:96:d2:89:02:c9:98:be:9c:0f:fc:28:dd:3a:
fe:9d:16:62:a4:cc:a2:dc:20:db:c6:ec:2b:7f:ee:ab:55:13:
18:cc:31:85:84:04:31:10:74:e8:fb:f0:a7:8a:eb:e8:24:0f:
23:ea:14:44:f4:c4:51:e2:13:08:f4:9f:f3:3b:63:9e:ce:00:
25:a9:15:1b:ca:c4:ce:fd:87:99:b3:93:5f:9b:d2:b7:ad:6c:
81:1a:c9:28:c0:cd:c4:f4:94:a1:c7:56:2c:76:30:52:be:7c:
f3:e0:ea:e6:75:e9:e5:45:c8:39:62:27:01:2e:33:fe:e1:16:
cf:55:56:ad:65:f1:d3:fc:4b:e6:ce:b7:06:c0:ef:90:03:46:
3d:9b:b5:3c:4f:8b:ea:34:0c:28:88:37:b6:67:42:cf:c8:d6:
38:82:75:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:25 2023 by rpki-client on console-ams.rpki-client.org