Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/3FgtXbj9eV40y9mJDU2L9-VO4Zw.roa
File: 3FgtXbj9eV40y9mJDU2L9-VO4Zw.roa (raw, json)
Hash identifier: x5hQLpt6yiEMIlyxA7mnjpf7/+5hwNswHYtsyW1aRpE=
Subject key identifier: DC:58:2D:5D:B8:FD:79:5E:34:CB:D9:89:0D:4D:8B:F7:E5:4E:E1:9C
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 07846AF4
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/3FgtXbj9eV40y9mJDU2L9-VO4Zw.roa
Signing time: Thu 10 Feb 2022 20:19:13 +0000
ROA not before: Thu 10 Feb 2022 20:19:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 185.90.220.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126118644 (0x7846af4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Feb 10 20:19:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc582d5db8fd795e34cbd9890d4d8bf7e54ee19c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a7:b0:dd:8b:2e:f4:98:df:63:64:93:f8:1f:
f8:a0:ba:89:e1:2a:1d:7c:8e:2d:5b:11:44:cb:19:
80:2b:9f:52:b1:b6:3c:6d:65:c4:55:51:41:42:98:
41:92:e3:01:5d:b8:9c:be:5c:48:2a:d6:64:6d:16:
78:95:a5:9e:3d:36:fa:b6:31:75:24:a2:a5:09:00:
64:6d:08:ec:2f:e6:7d:c1:3c:28:b0:06:31:3c:cd:
01:1d:a6:ca:06:b9:7e:d8:26:2f:ca:df:a6:3b:46:
e0:06:a2:33:9c:ac:55:f8:5a:66:c5:6d:e8:42:4e:
a6:31:ab:b1:77:9e:b0:72:ad:7e:4d:2d:c8:43:d7:
ec:fb:08:5e:a5:b7:45:b8:4d:e8:9c:e4:89:b5:0a:
f4:46:8b:ce:3d:15:ed:98:eb:5b:e3:06:bf:bc:dc:
38:f4:7c:0c:2c:45:c0:20:22:90:ea:43:de:90:8f:
88:26:f0:c5:fd:e6:e2:87:4b:b4:11:17:d8:5f:bc:
95:d7:e6:f3:ac:3b:7f:90:f9:1d:ee:cf:53:06:35:
39:e7:2f:a6:7a:60:25:74:95:e4:16:70:96:af:3a:
4b:6f:ef:9a:7d:34:a9:48:70:29:9f:b5:00:bf:d4:
78:6e:da:e1:0c:a5:95:7b:53:be:79:9b:36:56:0c:
86:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:58:2D:5D:B8:FD:79:5E:34:CB:D9:89:0D:4D:8B:F7:E5:4E:E1:9C
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/3FgtXbj9eV40y9mJDU2L9-VO4Zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.220.0/22
Signature Algorithm: sha256WithRSAEncryption
18:fa:ab:36:ea:ac:59:da:f8:c6:a8:81:1f:fb:7a:4d:a9:f8:
f9:d2:ba:dd:0f:97:bc:9b:35:01:0f:42:dd:56:4a:13:f9:52:
d8:26:5a:86:69:cd:ca:62:b3:f6:34:42:b0:e1:74:2c:03:71:
0d:71:81:21:46:93:57:7b:51:56:1a:77:f4:ca:84:85:45:b1:
cf:c6:53:fe:f2:da:69:ff:8d:51:4b:a2:48:92:40:f9:df:bd:
37:16:e5:96:73:68:45:93:71:ad:77:2b:8f:52:57:00:ed:b1:
d9:6c:b6:17:2a:10:7e:6b:03:c1:3f:51:87:f5:9d:42:c9:fb:
87:ee:ee:50:4a:13:03:00:6d:d9:19:4b:4b:21:fe:da:c5:aa:
74:0a:b2:44:75:fd:1d:5f:1f:37:0d:a9:65:d7:77:0b:ba:91:
13:40:52:ac:f1:6a:e2:1e:ee:c1:1c:59:11:ec:3b:c6:4a:3b:
89:43:37:69:50:3d:19:22:04:25:70:8a:c5:ce:5e:df:af:89:
36:9e:e7:13:d0:ae:f4:c3:43:63:68:8a:17:59:e0:77:4f:34:
e3:aa:cf:e6:06:ad:81:29:66:79:e1:a1:32:34:20:96:13:c6:
c5:0e:bf:28:18:e3:58:53:1e:a1:8b:ab:63:14:ce:2f:ba:23:
7f:9d:d6:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:07 2024 by rpki-client on console-fra.rpki-client.org