Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/132ed3-434d-4d49-95ca-59a587bdea3f/1/9sxMD6lIiIF_gM080sWWu3go9NI.roa
File: 9sxMD6lIiIF_gM080sWWu3go9NI.roa (raw, json)
Hash identifier: hYAgYY7Kh/9bS0WxVAgn/512hXKqlKjp+SRU7kb0j48=
Subject key identifier: F6:CC:4C:0F:A9:48:88:81:7F:80:CD:3C:D2:C5:96:BB:78:28:F4:D2
Certificate issuer: /CN=cf9625541abe6b5ae926671daa98ac6d8094ec7b
Certificate serial: 02A1C114
Authority key identifier: CF:96:25:54:1A:BE:6B:5A:E9:26:67:1D:AA:98:AC:6D:80:94:EC:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z5YlVBq-a1rpJmcdqpisbYCU7Hs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/132ed3-434d-4d49-95ca-59a587bdea3f/1/9sxMD6lIiIF_gM080sWWu3go9NI.roa
Signing time: Sat 01 Jan 2022 03:52:03 +0000
ROA not before: Sat 01 Jan 2022 03:52:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29611
IP address blocks: 185.138.196.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44155156 (0x2a1c114)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf9625541abe6b5ae926671daa98ac6d8094ec7b
Validity
Not Before: Jan 1 03:52:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6cc4c0fa94888817f80cd3cd2c596bb7828f4d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b8:9b:00:43:2d:10:2d:0a:50:49:63:b7:7a:
f9:9c:ce:9c:b8:0a:42:74:bd:32:c6:63:e3:46:70:
22:12:9c:a3:a4:e6:48:05:81:81:58:fe:05:b9:7d:
8e:63:17:87:1d:ec:a8:75:37:f2:80:b5:7e:cb:5e:
db:f9:c7:c6:7e:80:75:a5:6d:a2:17:f4:6d:8a:88:
37:8e:d2:09:1a:a3:56:fd:24:f8:f4:5e:4c:49:0f:
d4:3c:66:9a:32:da:d4:2b:9e:09:7c:0f:b3:72:8a:
71:12:61:9f:40:a6:cd:f6:23:8b:27:93:d3:6d:66:
86:82:2f:8e:7f:be:b8:49:40:6b:5c:3e:e6:11:3e:
36:44:59:21:51:f7:f6:33:1e:3b:af:a0:6b:e1:0f:
e1:4b:db:77:78:be:ac:b0:b8:4c:09:bc:2c:b1:9b:
32:e1:71:72:f9:c0:f8:27:e0:a8:e7:25:8a:7f:5f:
52:32:d9:17:b7:3a:a8:df:5f:09:e4:f0:b7:d8:d4:
53:bd:a2:9c:2e:ad:5d:df:a1:3f:46:7f:dd:60:2f:
cc:55:e9:77:c2:6c:40:d7:a0:11:21:be:35:ef:8f:
95:79:0a:3a:7f:6a:67:37:9b:cb:20:f4:54:98:7b:
d3:f4:d6:ef:02:54:9c:9d:21:d2:48:29:8c:de:0d:
f8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:CC:4C:0F:A9:48:88:81:7F:80:CD:3C:D2:C5:96:BB:78:28:F4:D2
X509v3 Authority Key Identifier:
keyid:CF:96:25:54:1A:BE:6B:5A:E9:26:67:1D:AA:98:AC:6D:80:94:EC:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z5YlVBq-a1rpJmcdqpisbYCU7Hs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/132ed3-434d-4d49-95ca-59a587bdea3f/1/9sxMD6lIiIF_gM080sWWu3go9NI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/132ed3-434d-4d49-95ca-59a587bdea3f/1/z5YlVBq-a1rpJmcdqpisbYCU7Hs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.196.0/23
Signature Algorithm: sha256WithRSAEncryption
18:82:cf:e9:ad:cd:d5:c3:5b:c6:3b:67:0c:39:71:2e:53:92:
cb:3a:8b:d1:e3:fc:0f:76:89:8f:6b:57:41:38:68:7d:e3:34:
be:77:56:a2:0a:ef:d6:c1:1b:cb:f8:ca:f4:5a:ba:bd:c8:53:
46:81:18:c6:1a:3b:83:d4:90:4a:b4:ce:ba:00:9e:8d:ee:7d:
a9:b4:e6:f5:cc:e6:77:23:01:0e:c9:b2:99:52:0b:2f:89:40:
a9:cf:43:d0:a0:20:78:ba:b2:5a:80:dd:e5:f2:75:4d:1e:89:
65:b2:11:13:52:84:4e:76:33:61:d4:b6:c2:de:38:bf:35:ef:
d0:fe:03:f7:c7:a1:23:79:52:4b:a9:60:d5:be:95:bc:0c:2d:
02:cd:86:02:3b:9b:5e:e3:98:4b:41:ec:ef:75:49:7a:b8:86:
4f:39:c2:44:fa:48:c3:05:77:80:8f:fa:1e:72:e1:1d:e7:fb:
93:11:c8:b8:ab:35:4a:16:3f:dd:cc:73:80:fd:e6:a7:5f:f8:
65:fb:81:7f:e7:7e:00:fc:99:0d:f2:86:a7:ce:39:b3:f7:34:
22:f4:80:6e:06:44:6d:5f:a0:89:e9:3b:48:a6:b0:94:4f:7e:
ea:a1:ce:e0:90:0d:e4:c3:2e:5a:48:2e:c3:99:ed:2a:8a:36:
dc:21:0d:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:03 2024 by rpki-client on console-ams.rpki-client.org