Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1cb911-5e7f-49e8-b4f0-3f6ee705915b/1/rJ2n5cb7L0lS79CjNd_2DjpGAak.roa
File: rJ2n5cb7L0lS79CjNd_2DjpGAak.roa (raw, json)
Hash identifier: uNkC8lLEF7ERXpjkw0A1/7F5meEVPj/vMfBF7J6toXo=
Subject key identifier: AC:9D:A7:E5:C6:FB:2F:49:52:EF:D0:A3:35:DF:F6:0E:3A:46:01:A9
Certificate issuer: /CN=6954e90899ff25644520724cde8c211613600bef
Certificate serial: 08DAC94C
Authority key identifier: 69:54:E9:08:99:FF:25:64:45:20:72:4C:DE:8C:21:16:13:60:0B:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVTpCJn_JWRFIHJM3owhFhNgC-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1cb911-5e7f-49e8-b4f0-3f6ee705915b/1/rJ2n5cb7L0lS79CjNd_2DjpGAak.roa
Signing time: Sat 01 Jan 2022 10:57:16 +0000
ROA not before: Sat 01 Jan 2022 10:57:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51569
IP address blocks: 185.95.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148556108 (0x8dac94c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6954e90899ff25644520724cde8c211613600bef
Validity
Not Before: Jan 1 10:57:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac9da7e5c6fb2f4952efd0a335dff60e3a4601a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:09:8b:ec:90:53:bf:9e:e0:d9:b9:f8:88:25:
54:1c:67:8f:7e:19:ee:22:94:c7:26:b6:7e:e7:ee:
3a:16:52:17:15:a9:55:49:c5:1c:42:72:20:40:69:
9b:48:f5:2b:3a:c7:c1:87:ac:e7:b2:8f:7d:24:9d:
6c:24:1e:ff:8a:00:b8:bc:0c:28:d5:de:58:4e:30:
92:b6:5d:ee:54:0a:d5:ab:d5:e8:79:da:14:b6:94:
07:ae:19:aa:ce:52:1f:25:ea:f4:d9:bf:f8:2f:e4:
30:9c:4f:cc:e3:c9:c7:62:1e:ad:45:6b:ba:4d:7e:
8b:a0:87:3d:44:56:3f:4a:aa:08:dd:60:22:de:76:
50:e1:f7:d7:e8:32:30:26:46:4e:7a:fd:6f:84:6e:
87:9f:a6:52:00:c3:85:cc:ce:f9:f3:d8:06:72:cd:
5f:35:f4:6d:91:cc:c0:92:2f:2b:72:b0:f7:03:fe:
6f:90:a1:ad:05:97:99:d2:97:e0:f5:ed:b7:0c:2d:
18:f3:96:a3:99:e6:37:49:a2:4b:02:d0:c9:c3:6d:
4a:23:08:ef:53:44:34:af:0a:50:c1:58:6e:35:af:
c0:e9:4f:c9:dc:8d:2a:c5:77:35:17:f5:d6:77:41:
4c:f4:e4:04:e7:9a:e1:e5:a5:0f:9c:8b:e9:d2:ee:
45:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:9D:A7:E5:C6:FB:2F:49:52:EF:D0:A3:35:DF:F6:0E:3A:46:01:A9
X509v3 Authority Key Identifier:
keyid:69:54:E9:08:99:FF:25:64:45:20:72:4C:DE:8C:21:16:13:60:0B:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVTpCJn_JWRFIHJM3owhFhNgC-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1cb911-5e7f-49e8-b4f0-3f6ee705915b/1/rJ2n5cb7L0lS79CjNd_2DjpGAak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1cb911-5e7f-49e8-b4f0-3f6ee705915b/1/aVTpCJn_JWRFIHJM3owhFhNgC-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.136.0/22
Signature Algorithm: sha256WithRSAEncryption
11:bd:d3:f0:9f:7e:66:a9:23:e8:e5:67:93:85:71:c7:bc:ae:
2d:5f:db:d0:78:59:00:46:f2:f1:88:9d:ab:8b:ce:8a:f3:d2:
0c:ca:ed:a9:05:60:a1:82:7c:ed:e7:74:85:50:41:e3:b6:fa:
f9:2d:06:63:9a:e2:d6:d7:c7:94:99:b3:8b:64:fb:bd:e4:35:
78:77:01:b1:0b:37:ce:3d:92:58:89:0a:0b:4b:6d:98:0f:8e:
c7:b8:15:ac:f3:e9:67:00:57:7b:48:eb:a4:e8:42:fe:87:81:
7e:8a:b8:10:d9:bf:8f:15:1b:41:f6:d2:9d:fc:30:e0:a9:7b:
e2:f8:15:df:4f:7c:e5:6d:11:fb:df:e2:d9:91:37:58:f5:35:
dd:29:a0:44:1b:a4:56:cd:da:0f:ec:62:fa:7d:74:8b:d4:c7:
eb:8e:58:eb:69:16:c3:ac:b6:07:24:54:9b:66:1e:87:ca:4c:
10:d5:aa:26:ca:4a:1d:92:b6:aa:79:78:01:c4:b3:0d:8b:84:
51:39:f1:ea:6d:e4:e9:1a:c0:08:39:74:eb:c1:30:b6:0c:94:
16:b4:49:d4:28:17:f0:b2:1b:19:b3:cb:ad:de:42:83:ea:d6:
eb:58:44:27:dd:ec:77:1d:d5:6b:bd:ea:72:fd:b9:09:14:3b:
4f:05:e6:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:39 2024 by rpki-client on console-fra.rpki-client.org