Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/8e36b6-d5af-410a-9fb9-8a92df77a07f/1/ThH7lZVq37I5PBo1ZPpMsyA7Uvc.roa
File: ThH7lZVq37I5PBo1ZPpMsyA7Uvc.roa (raw, json)
Hash identifier: y+NlVMu4Yg85spZED9BnNC05S+F9QNmpEAlV5iBBeqo=
Subject key identifier: 4E:11:FB:95:95:6A:DF:B2:39:3C:1A:35:64:FA:4C:B3:20:3B:52:F7
Certificate issuer: /CN=93e079d7349891d2b4024895fa67e41c18f56fd4
Certificate serial: 11B147A4
Authority key identifier: 93:E0:79:D7:34:98:91:D2:B4:02:48:95:FA:67:E4:1C:18:F5:6F:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-B51zSYkdK0AkiV-mfkHBj1b9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/8e36b6-d5af-410a-9fb9-8a92df77a07f/1/ThH7lZVq37I5PBo1ZPpMsyA7Uvc.roa
Signing time: Sat 01 Jan 2022 10:57:34 +0000
ROA not before: Sat 01 Jan 2022 10:57:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204101
IP address blocks: 185.111.152.0/22 maxlen: 22
2a06:5e40:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 296830884 (0x11b147a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e079d7349891d2b4024895fa67e41c18f56fd4
Validity
Not Before: Jan 1 10:57:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e11fb95956adfb2393c1a3564fa4cb3203b52f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4c:d6:67:6a:f8:31:6f:ee:70:f0:60:df:0b:
b6:25:ea:46:3a:d0:8e:dd:92:92:08:a4:20:a7:04:
3d:76:78:9a:da:14:a2:37:b7:30:e0:11:a4:ed:83:
81:41:1e:ab:fa:b1:d3:cc:a6:e0:cd:86:4b:69:f0:
99:c7:c2:65:40:da:a3:22:73:54:cc:5d:e7:db:b4:
e5:07:80:d6:19:45:e1:e5:5e:2e:7c:00:9a:3d:24:
92:e2:38:15:f8:f1:75:3d:08:27:8d:bf:37:45:8f:
02:5b:e8:0e:38:d5:d9:5d:39:31:6e:0c:13:d7:a9:
50:27:cc:73:f3:57:eb:66:d8:a7:cd:0c:54:46:06:
e3:c4:dd:23:a6:b7:16:ef:85:cb:95:10:ec:dc:aa:
79:6d:a3:ae:2c:9d:20:a7:27:54:87:59:08:8a:55:
46:9b:88:a1:ef:ad:12:fb:6a:69:bf:9d:84:09:fb:
c3:1c:2c:5a:12:b4:7c:c7:25:5a:4e:c3:27:81:7d:
0d:28:76:4f:14:cc:72:7b:35:82:cf:16:3c:bd:9b:
de:49:dc:b7:1d:57:90:ff:89:29:08:a8:87:b0:97:
64:e8:47:2c:bf:42:e8:8e:e6:0e:78:b3:f5:28:0a:
b3:c3:69:2c:62:41:4c:9b:2a:97:e8:43:ec:ab:34:
a1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:11:FB:95:95:6A:DF:B2:39:3C:1A:35:64:FA:4C:B3:20:3B:52:F7
X509v3 Authority Key Identifier:
keyid:93:E0:79:D7:34:98:91:D2:B4:02:48:95:FA:67:E4:1C:18:F5:6F:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-B51zSYkdK0AkiV-mfkHBj1b9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8e36b6-d5af-410a-9fb9-8a92df77a07f/1/ThH7lZVq37I5PBo1ZPpMsyA7Uvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8e36b6-d5af-410a-9fb9-8a92df77a07f/1/k-B51zSYkdK0AkiV-mfkHBj1b9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.152.0/22
IPv6:
2a06:5e40:1::/48
Signature Algorithm: sha256WithRSAEncryption
27:c4:0d:a6:5e:f4:ff:15:40:8d:f8:c2:03:43:f0:b7:46:ac:
9e:25:3b:2a:d4:d6:6c:76:e1:0d:96:db:f0:67:6d:0f:d3:83:
45:fc:e7:20:f0:0c:72:ca:10:b5:9d:32:94:80:9d:10:74:56:
82:de:e1:d7:87:ce:11:a0:f6:6e:ac:ee:22:15:66:7b:9d:29:
08:9c:6b:0d:d8:d6:32:d6:98:ab:b3:42:2b:11:95:18:4e:5c:
28:28:07:4b:34:a6:f4:e4:67:58:be:29:28:a1:80:dc:04:5a:
9f:e7:d9:4e:73:2c:3e:80:d4:5e:9a:3b:e2:a0:49:1f:76:2c:
b2:47:b2:3c:a7:90:f1:30:b3:8e:e2:63:b3:df:86:2d:58:de:
45:60:78:69:6d:36:45:45:20:8f:ee:bb:b0:7a:b0:0a:1a:33:
e4:e5:8b:32:36:e2:0d:e3:c8:3c:37:2c:97:85:28:97:60:00:
93:32:c8:98:f0:5a:b1:04:b3:aa:27:11:33:96:39:1f:c5:fe:
f5:66:51:52:17:54:83:a3:38:2b:4b:e6:63:92:53:c9:b8:10:
24:be:75:09:4c:0d:26:cf:05:79:c8:2a:a0:77:b9:ec:8e:bb:
ce:4e:14:71:c6:25:d1:fb:e7:4c:0a:75:57:2e:e0:06:cf:aa:
89:d8:f8:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:27 2023 by rpki-client on console.sobornost.net