Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/3b27b0-a1a7-4bf5-8cdd-595bfa1e1a9b/1/beQq2jnmC6nlo-gV0T1jYkrWFGI.roa
File: beQq2jnmC6nlo-gV0T1jYkrWFGI.roa (raw, json)
Hash identifier: gAmcIqsyKbShcuYM3LdVVnubZ0xLuWpP5AK2BKuUbQA=
Subject key identifier: 6D:E4:2A:DA:39:E6:0B:A9:E5:A3:E8:15:D1:3D:63:62:4A:D6:14:62
Certificate issuer: /CN=f90e719baa4c8310483679fb6a3cb4ce9ac00c09
Certificate serial: 097C1629
Authority key identifier: F9:0E:71:9B:AA:4C:83:10:48:36:79:FB:6A:3C:B4:CE:9A:C0:0C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Q5xm6pMgxBINnn7ajy0zprADAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/3b27b0-a1a7-4bf5-8cdd-595bfa1e1a9b/1/beQq2jnmC6nlo-gV0T1jYkrWFGI.roa
Signing time: Sat 01 Jan 2022 05:05:55 +0000
ROA not before: Sat 01 Jan 2022 05:05:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205244
IP address blocks: 185.224.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159127081 (0x97c1629)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f90e719baa4c8310483679fb6a3cb4ce9ac00c09
Validity
Not Before: Jan 1 05:05:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6de42ada39e60ba9e5a3e815d13d63624ad61462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:76:7b:af:d8:18:ad:35:9b:08:b5:16:b6:5d:
1a:09:99:34:0b:02:51:44:73:5e:fa:6b:f4:1c:e0:
1b:04:05:dd:f5:43:00:7b:66:28:f3:a9:e9:69:51:
17:ab:63:db:92:c5:04:29:79:27:a7:ef:b1:37:69:
6d:6e:1d:9e:44:90:26:7f:cf:b3:9e:f6:77:8c:a4:
8a:c2:ab:ba:f2:16:ab:60:d6:9e:f8:55:3d:fa:f1:
bc:90:87:0a:d2:49:ee:08:02:b6:04:0c:30:07:53:
75:be:c0:46:a9:e8:49:8a:46:19:04:75:c7:68:b7:
1e:80:c3:28:38:b2:9b:a7:ff:ab:b8:f5:d0:01:4a:
e3:9a:a1:c4:90:4d:a0:25:c7:41:36:d8:8c:ab:b4:
5f:5e:9f:52:2b:c6:24:0b:8f:34:6c:8f:1e:80:83:
70:47:64:e2:5e:f3:8f:99:dc:7c:bb:98:94:41:0b:
1f:d4:89:51:1c:14:66:78:34:55:e6:fd:dd:56:6c:
02:c3:11:84:54:38:9a:72:e4:f6:d0:cc:5c:53:60:
43:21:fe:e8:9b:18:8b:86:82:b7:d4:23:60:ba:e9:
c4:13:5c:1a:11:53:c1:43:9f:aa:1e:72:9a:bf:79:
4e:3b:6d:f3:2c:d0:91:c8:ae:e1:71:1e:bf:0a:c3:
6d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E4:2A:DA:39:E6:0B:A9:E5:A3:E8:15:D1:3D:63:62:4A:D6:14:62
X509v3 Authority Key Identifier:
keyid:F9:0E:71:9B:AA:4C:83:10:48:36:79:FB:6A:3C:B4:CE:9A:C0:0C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Q5xm6pMgxBINnn7ajy0zprADAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3b27b0-a1a7-4bf5-8cdd-595bfa1e1a9b/1/beQq2jnmC6nlo-gV0T1jYkrWFGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3b27b0-a1a7-4bf5-8cdd-595bfa1e1a9b/1/1-Q5xm6pMgxBINnn7ajy0zprADAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.100.0/22
Signature Algorithm: sha256WithRSAEncryption
32:05:07:f3:c0:89:4f:9c:67:65:08:a5:be:00:1f:b8:37:5e:
5f:50:de:54:ac:61:f3:51:df:1d:ec:97:0d:e8:57:9d:41:9f:
7e:b5:00:8b:ff:42:c7:19:5f:8b:7a:8e:76:0c:2c:d4:95:c8:
16:96:ac:e0:3e:2c:69:35:e7:c5:3b:9d:0f:0f:94:5a:a8:4a:
de:d8:bf:85:1a:fc:1f:aa:d2:57:30:bc:4d:05:b1:d9:c9:d8:
f6:cb:99:0e:db:d7:da:3c:34:48:2f:38:96:be:e9:8b:48:d6:
32:9d:d1:fe:f7:b0:a3:14:5f:97:f8:78:98:1d:4f:05:14:df:
e2:5e:06:74:07:5c:13:9b:14:d1:c5:0c:ea:8d:00:2e:d2:d5:
c2:7a:15:cd:68:16:42:35:db:1e:55:13:42:91:d1:50:d7:05:
53:8d:4d:57:a6:45:4a:89:e6:3d:52:c7:dc:85:20:ee:e9:5c:
76:52:27:18:87:8c:21:e0:94:36:59:06:bc:f7:1f:cc:01:67:
18:e1:22:31:a2:b9:85:d3:e8:0c:19:d9:8d:1a:f3:4d:6e:52:
84:cd:f1:20:3b:f7:1b:90:ed:34:7d:d2:7a:46:be:ba:71:d7:
01:58:0a:12:27:71:b8:86:1f:2f:58:d4:00:ef:de:e1:b8:f5:
5e:cc:cb:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:57 2024 by rpki-client on console-fra.rpki-client.org