Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/tJX01c55hk0BlVfMhHLgW4FBemI.roa
File: tJX01c55hk0BlVfMhHLgW4FBemI.roa (raw, json)
Hash identifier: 4RjTQWC+Hyify4bkIvV0dtgNyQASTi/jLpsP0dv63VU=
Subject key identifier: B4:95:F4:D5:CE:79:86:4D:01:95:57:CC:84:72:E0:5B:81:41:7A:62
Certificate issuer: /CN=30aff75209684a354669061d23da29f8ea2f1d5e
Certificate serial: 0BD5ECB6
Authority key identifier: 30:AF:F7:52:09:68:4A:35:46:69:06:1D:23:DA:29:F8:EA:2F:1D:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MK_3UgloSjVGaQYdI9op-OovHV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/tJX01c55hk0BlVfMhHLgW4FBemI.roa
Signing time: Sat 01 Jan 2022 06:02:12 +0000
ROA not before: Sat 01 Jan 2022 06:02:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202305
IP address blocks: 185.90.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198569142 (0xbd5ecb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30aff75209684a354669061d23da29f8ea2f1d5e
Validity
Not Before: Jan 1 06:02:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b495f4d5ce79864d019557cc8472e05b81417a62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:02:d0:ac:68:a4:33:2a:76:ae:2e:8c:fa:64:
8e:a6:e0:3a:6a:8c:f1:17:6e:b2:c3:3d:db:c6:15:
e9:44:e2:05:b1:94:36:fe:cd:90:79:91:42:12:e5:
12:e6:4a:d2:4d:29:f5:ee:d9:e8:a7:a6:8c:20:30:
12:7a:5c:87:d9:88:02:53:d4:7c:03:ef:50:c0:43:
b5:44:e0:7a:46:6e:1b:d7:13:0e:91:58:26:6b:9d:
20:8b:3d:39:24:69:9f:8b:e3:6d:eb:ba:f0:1d:3d:
db:c7:39:27:93:ac:76:74:4c:79:8e:7e:24:b6:14:
5c:43:eb:ff:64:6f:54:14:23:8e:5a:95:a2:3f:88:
0d:49:87:a3:18:8e:eb:3b:a4:ec:0f:99:bd:96:f7:
30:9f:1f:b3:2b:03:7e:ae:0d:de:15:d1:83:42:10:
82:e0:a4:9b:fb:ba:c0:e9:d9:61:1b:a8:41:cc:0a:
09:6a:c8:e9:c6:11:ba:e0:e4:52:85:1f:f3:db:98:
80:53:f6:97:cd:a0:7d:c8:19:d9:f0:64:cf:cc:bb:
56:96:8c:28:dc:4c:95:c0:64:a8:51:15:84:1d:21:
45:d0:e8:4e:ca:92:09:00:46:cb:c8:28:8b:ec:6b:
37:a7:9e:3a:e2:10:ba:89:ce:41:88:a7:ad:46:cd:
60:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:95:F4:D5:CE:79:86:4D:01:95:57:CC:84:72:E0:5B:81:41:7A:62
X509v3 Authority Key Identifier:
keyid:30:AF:F7:52:09:68:4A:35:46:69:06:1D:23:DA:29:F8:EA:2F:1D:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MK_3UgloSjVGaQYdI9op-OovHV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/tJX01c55hk0BlVfMhHLgW4FBemI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/MK_3UgloSjVGaQYdI9op-OovHV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.208.0/22
Signature Algorithm: sha256WithRSAEncryption
45:ee:b8:ab:21:24:54:ca:3f:4c:47:e4:f0:6d:1f:b4:5c:71:
ea:c6:59:f0:e9:0e:9e:a6:9a:ac:d1:4a:62:09:52:cc:e7:64:
be:ed:13:3c:47:ab:a0:a3:56:35:fc:56:db:b7:15:67:4f:07:
04:89:29:bc:2b:33:01:40:ce:25:74:7c:03:d0:80:c7:d7:85:
ed:89:bb:00:f9:fd:24:37:f2:bd:27:a1:9b:45:85:7d:3d:ee:
80:26:a4:ef:e9:5b:1f:15:1f:ae:7a:f3:23:ef:6b:b3:9c:15:
92:88:49:f5:f2:f2:d1:91:5f:f3:95:70:d4:92:8b:10:93:d6:
ba:98:8d:b0:8d:23:03:4d:73:0e:79:3d:13:f1:69:3b:6e:da:
3a:c2:f1:de:2b:14:f8:b5:9a:66:db:6e:28:0e:7d:b3:23:92:
36:55:01:ed:bc:83:fc:43:0d:f6:ab:25:10:4e:94:5d:94:1d:
ce:d9:ee:33:33:b4:f9:c2:da:e2:7a:0c:84:d6:21:9e:04:0e:
8f:81:02:d8:a6:81:1b:5f:dd:de:b0:16:9a:3b:cf:23:46:11:
e0:d3:c5:76:1b:d1:1c:4e:af:05:65:a3:bc:49:bb:ee:9e:04:
ec:6b:49:21:4e:86:20:f9:ce:06:81:ba:a3:99:cc:74:bc:ea:
24:55:d8:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:15 2024 by rpki-client on console-ams.rpki-client.org