Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/9VrmH0M6MG9lV1MeGyNDvDL30qE.roa
File: 9VrmH0M6MG9lV1MeGyNDvDL30qE.roa (raw, json)
Hash identifier: 29+q5dOx9n3B2J0iacRVUhdQ7PaElvw02TFdRmsm/rI=
Subject key identifier: F5:5A:E6:1F:43:3A:30:6F:65:57:53:1E:1B:23:43:BC:32:F7:D2:A1
Certificate issuer: /CN=30aff75209684a354669061d23da29f8ea2f1d5e
Certificate serial: 0CEA4144
Authority key identifier: 30:AF:F7:52:09:68:4A:35:46:69:06:1D:23:DA:29:F8:EA:2F:1D:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MK_3UgloSjVGaQYdI9op-OovHV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/9VrmH0M6MG9lV1MeGyNDvDL30qE.roa
Signing time: Tue 26 Apr 2022 22:53:34 +0000
ROA not before: Tue 26 Apr 2022 22:53:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207185
IP address blocks: 185.90.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 216678724 (0xcea4144)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30aff75209684a354669061d23da29f8ea2f1d5e
Validity
Not Before: Apr 26 22:53:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f55ae61f433a306f6557531e1b2343bc32f7d2a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9e:07:5a:13:68:cc:de:39:a7:fa:ee:86:4f:
1e:ba:64:e0:fc:8c:73:7a:3e:32:14:7e:5c:74:e3:
e7:e1:53:1a:0b:2d:d6:7b:55:f9:68:c3:aa:0c:fc:
4e:57:42:5a:fc:b9:02:cc:ae:91:f6:f4:59:37:9f:
1e:6b:7f:86:23:36:c1:d1:e8:17:54:b5:ef:99:1b:
d8:8c:4e:48:9e:fb:12:ab:1e:9e:f9:72:b1:a9:5c:
de:51:b3:ec:58:38:20:05:34:9a:73:60:5a:0e:13:
02:1c:c1:5f:08:47:69:49:3c:61:67:c2:62:4e:cd:
7f:69:74:a3:3b:16:2f:09:af:75:4e:1b:95:56:ff:
f2:21:88:14:cc:2c:b7:d5:19:d0:d6:28:1e:f3:8f:
57:73:fc:aa:51:30:a4:52:7e:f2:ad:72:58:09:75:
3a:0c:15:13:fa:c0:6c:2d:41:fa:85:d7:6f:c3:b3:
f6:70:c4:dd:96:b0:58:83:03:fc:08:05:0c:59:6b:
bf:40:23:70:08:e8:25:9f:55:19:05:4f:c9:63:6f:
9b:ad:32:ab:ee:6c:61:49:05:08:2d:7c:4e:de:ea:
9c:bc:1d:d9:d2:aa:0f:e0:0b:7f:7c:d4:f9:51:03:
f0:69:d7:77:b2:b4:00:38:0d:99:49:22:66:ac:e8:
d9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:5A:E6:1F:43:3A:30:6F:65:57:53:1E:1B:23:43:BC:32:F7:D2:A1
X509v3 Authority Key Identifier:
keyid:30:AF:F7:52:09:68:4A:35:46:69:06:1D:23:DA:29:F8:EA:2F:1D:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MK_3UgloSjVGaQYdI9op-OovHV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/9VrmH0M6MG9lV1MeGyNDvDL30qE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/MK_3UgloSjVGaQYdI9op-OovHV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.208.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:f9:ae:2e:e0:c0:a9:99:0c:3d:95:15:be:9d:a6:3e:eb:21:
4e:23:2d:05:b5:a2:87:67:25:62:a2:53:b2:42:dd:38:45:72:
32:a6:b7:e6:44:98:75:7f:e8:70:a2:fe:ee:56:82:0d:f0:51:
56:bd:22:99:4e:c9:5f:0d:a5:9c:35:0f:dd:31:05:15:b6:61:
33:13:bf:d8:5b:fa:b2:4f:80:bc:81:ae:bf:76:fc:f7:7a:2c:
ec:90:a5:4d:36:5a:b4:27:5b:b2:e8:74:7b:c5:47:af:22:68:
35:59:9c:a1:73:f3:87:98:80:90:43:28:c0:91:e0:d0:9b:4d:
72:2c:48:fc:59:ac:8c:01:05:2a:e2:31:92:fa:45:ea:60:14:
53:72:f0:d1:87:41:61:9c:e0:b6:4d:16:98:0d:4b:97:c8:4c:
99:ed:f5:b7:53:7e:74:44:71:92:07:fb:ec:24:d4:a0:1e:83:
8b:43:05:a1:22:c2:68:f2:57:5b:49:d2:39:5b:d6:44:76:64:
b7:b3:78:17:5e:37:c0:b8:68:22:f8:40:c6:28:32:99:69:c1:
79:7d:92:fd:88:f6:4d:a4:84:82:71:4a:68:b7:44:c1:5e:a2:
d8:59:43:18:bf:7d:9f:eb:1a:7d:de:10:8d:66:06:ac:a0:69:
95:1e:5d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:58 2024 by rpki-client on console-fra.rpki-client.org