Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/2d1c55-425b-4cb8-8172-b43541272abe/1/1-ymfY5RFYkFXc1AQjAdzGp4FXUY.roa
File: 1-ymfY5RFYkFXc1AQjAdzGp4FXUY.roa (raw, json)
Hash identifier: DnAtrKqs8F2Zu/W8a6DOtSqJc0Z3W1gfWOEE3kmAizc=
Subject key identifier: FB:29:9F:63:94:45:62:41:57:73:50:10:8C:07:73:1A:9E:05:5D:46
Certificate issuer: /CN=4628bbcd6eecb518c8be8944652c03eedec0d1fe
Certificate serial: 05B346
Authority key identifier: 46:28:BB:CD:6E:EC:B5:18:C8:BE:89:44:65:2C:03:EE:DE:C0:D1:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rii7zW7stRjIvolEZSwD7t7A0f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/2d1c55-425b-4cb8-8172-b43541272abe/1/1-ymfY5RFYkFXc1AQjAdzGp4FXUY.roa
Signing time: Thu 31 Mar 2022 08:55:37 +0000
ROA not before: Thu 31 Mar 2022 08:55:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35710
IP address blocks: 185.168.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373574 (0x5b346)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4628bbcd6eecb518c8be8944652c03eedec0d1fe
Validity
Not Before: Mar 31 08:55:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb299f6394456241577350108c07731a9e055d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f9:08:6b:5a:bd:ed:8c:83:a7:f1:8f:b8:5c:
79:2c:1f:c7:85:4f:75:24:0e:5a:b5:2b:fd:40:d2:
a9:b4:74:ca:74:49:ae:80:2c:3c:b7:31:19:ea:b6:
14:54:5d:a2:d9:f5:e7:2c:52:2c:a0:e2:ab:ee:b8:
ef:ef:ed:bd:6d:6b:0c:0e:a6:ee:1e:1e:dc:c0:47:
26:61:d9:10:84:e2:44:76:38:56:8e:60:0c:97:1c:
0a:4b:e7:5b:ca:81:f1:64:33:b5:ad:21:68:86:8e:
18:3b:46:d9:8c:6a:06:5e:d9:6b:3c:5c:23:7a:f3:
77:6f:dd:db:c5:b5:73:f3:7d:34:04:8a:28:55:65:
49:ba:7d:5e:cc:ea:3e:98:97:df:79:4c:ea:ea:59:
26:97:85:a1:9b:36:7e:9a:ef:d6:81:a1:4c:47:78:
61:a4:c3:36:40:ba:7d:1b:73:f4:e6:c3:17:9a:6f:
ca:46:01:50:3a:77:01:07:c2:a4:99:3f:a4:39:0d:
28:9b:00:1a:57:05:29:f9:98:b5:6b:98:ed:1c:4e:
03:86:d3:90:1c:e9:6e:89:89:63:e3:45:6d:88:cf:
b0:0c:0a:32:89:b4:65:d8:b6:dd:e1:5a:eb:a3:95:
5c:fd:33:8c:1b:ff:9a:90:2a:3f:78:77:fb:e4:3a:
0d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:29:9F:63:94:45:62:41:57:73:50:10:8C:07:73:1A:9E:05:5D:46
X509v3 Authority Key Identifier:
keyid:46:28:BB:CD:6E:EC:B5:18:C8:BE:89:44:65:2C:03:EE:DE:C0:D1:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rii7zW7stRjIvolEZSwD7t7A0f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/2d1c55-425b-4cb8-8172-b43541272abe/1/1-ymfY5RFYkFXc1AQjAdzGp4FXUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/2d1c55-425b-4cb8-8172-b43541272abe/1/Rii7zW7stRjIvolEZSwD7t7A0f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.151.0/24
Signature Algorithm: sha256WithRSAEncryption
66:62:8b:aa:ed:da:af:bd:5d:1a:04:d5:37:83:b6:76:fb:c6:
11:70:d2:93:dc:43:d6:56:2c:13:c1:9d:76:e3:a2:6c:b9:3e:
5f:ba:9a:68:b5:53:28:9a:cc:41:f2:9e:f6:94:df:1a:fc:03:
39:14:f5:bb:a5:6c:e3:45:15:da:45:c6:16:4f:ba:ca:5c:83:
01:33:08:c1:5c:a9:18:cf:f5:9e:b5:d1:e5:13:69:f4:27:41:
d5:5e:c8:e8:c9:6e:eb:0d:13:e5:07:c7:34:bc:91:e4:f8:85:
ae:c3:d5:7c:cf:7c:3d:5d:00:ef:39:e8:cc:80:92:c8:73:5e:
0c:6b:ac:81:5b:dc:00:ab:8d:57:da:1d:14:f9:4c:62:8e:5a:
55:25:12:d8:94:9d:32:72:9f:4b:9e:3c:c0:31:b7:79:72:99:
13:cf:b4:21:8c:54:41:32:29:e8:39:5a:c8:40:53:31:a0:27:
d2:ca:9f:90:6d:b7:81:b4:be:75:c1:51:44:21:5a:7c:cb:5f:
41:50:34:f6:ed:fe:4f:24:3c:4e:a3:d0:6e:e2:e9:b3:9f:db:
5f:18:f5:47:e0:77:db:4c:ed:ec:1a:30:56:9a:f4:e3:e3:a5:
09:45:0b:f2:31:c3:c2:af:77:33:c2:58:e8:0d:aa:5b:b8:b7:
47:70:cb:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:59 2023 by rpki-client on console.sobornost.net