Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/c52d44-1bb6-4dc0-86ba-44cb4e953027/1/Sfya04_Oyxxp7LGLMwPvDiNn7ZU.roa
File: Sfya04_Oyxxp7LGLMwPvDiNn7ZU.roa (raw, json)
Hash identifier: JgUJg4CUEeE5mNb2rRwk+lrybdGGzgm3L/PyCF8UgvI=
Subject key identifier: 49:FC:9A:D3:8F:CE:CB:1C:69:EC:B1:8B:33:03:EF:0E:23:67:ED:95
Certificate issuer: /CN=2aaacfc5d5e3b268f2c6ba4336bcc941f5c8d7af
Certificate serial: 014B8199
Authority key identifier: 2A:AA:CF:C5:D5:E3:B2:68:F2:C6:BA:43:36:BC:C9:41:F5:C8:D7:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqrPxdXjsmjyxrpDNrzJQfXI168.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/c52d44-1bb6-4dc0-86ba-44cb4e953027/1/Sfya04_Oyxxp7LGLMwPvDiNn7ZU.roa
Signing time: Sat 01 Jan 2022 03:52:22 +0000
ROA not before: Sat 01 Jan 2022 03:52:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52030
IP address blocks: 185.234.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21725593 (0x14b8199)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aaacfc5d5e3b268f2c6ba4336bcc941f5c8d7af
Validity
Not Before: Jan 1 03:52:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49fc9ad38fcecb1c69ecb18b3303ef0e2367ed95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d4:3e:33:38:e2:38:40:45:b1:b8:99:4b:ec:
16:80:4b:cb:be:6c:fc:28:2c:46:25:a6:f4:2f:2e:
d2:78:2e:94:f3:6c:44:e2:ae:61:d1:a5:ff:26:80:
27:ca:54:5b:d1:42:d8:55:f1:85:dd:bd:02:c6:60:
66:57:d8:f4:db:2e:75:91:b1:fd:b2:36:d8:a9:55:
78:eb:30:b1:8d:dd:5e:b8:89:6b:f0:55:56:66:69:
bb:70:ac:1b:e0:08:3a:ae:16:27:01:5a:69:d0:47:
53:07:1c:ec:fd:d2:ae:27:05:37:6b:70:0b:6e:8b:
ac:cd:ef:1b:c0:fa:5b:97:cf:0f:cb:fb:6a:f1:78:
28:a5:ef:e3:c6:6a:71:bb:81:80:25:df:fd:13:3d:
01:b9:ab:42:94:ec:b8:26:48:ec:8e:a2:6c:a4:01:
6f:32:04:3e:1f:33:7a:01:29:c3:f3:d4:0a:62:60:
8a:7d:5c:02:45:2f:a1:39:cb:66:d9:33:04:1d:bc:
27:bd:35:e3:84:7d:6e:b0:71:bb:c9:59:92:c9:07:
c3:a0:79:bd:8b:0a:12:a5:d4:ba:37:16:96:79:1f:
30:fd:96:d9:91:97:45:4b:a1:10:d8:ad:55:83:dc:
59:0d:54:78:18:c1:c2:49:22:1a:55:c9:77:5e:1e:
79:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:FC:9A:D3:8F:CE:CB:1C:69:EC:B1:8B:33:03:EF:0E:23:67:ED:95
X509v3 Authority Key Identifier:
keyid:2A:AA:CF:C5:D5:E3:B2:68:F2:C6:BA:43:36:BC:C9:41:F5:C8:D7:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqrPxdXjsmjyxrpDNrzJQfXI168.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/c52d44-1bb6-4dc0-86ba-44cb4e953027/1/Sfya04_Oyxxp7LGLMwPvDiNn7ZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/c52d44-1bb6-4dc0-86ba-44cb4e953027/1/KqrPxdXjsmjyxrpDNrzJQfXI168.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.110.0/24
Signature Algorithm: sha256WithRSAEncryption
26:8d:47:af:07:91:88:08:56:bf:3a:74:fa:49:fc:73:87:27:
6a:09:c1:91:75:26:5a:17:bf:77:5e:24:ad:93:77:b0:1f:34:
7d:a6:5e:0b:36:c5:0c:7c:4f:71:29:3d:4a:d1:61:88:ee:79:
df:dd:bd:3d:eb:46:43:31:f2:b6:30:76:3d:74:6b:05:53:af:
e2:d1:90:df:01:51:ee:6d:20:67:e1:76:38:32:15:1e:0f:a7:
de:48:36:e9:46:29:a5:16:96:0a:f6:f1:62:40:6d:3e:de:92:
8f:18:58:77:21:f2:4a:e1:2a:cf:cf:0d:94:0b:d2:58:f0:29:
a5:23:31:45:1c:1b:c4:71:86:b4:a4:c6:da:dd:99:27:68:96:
fc:b4:ff:f4:64:ec:86:f2:86:a4:6a:dc:0a:13:bc:99:d4:55:
1c:9f:50:83:b7:e9:69:d5:26:e5:3a:7c:7a:d4:fc:93:9e:39:
96:2e:b3:bc:67:29:6f:bd:4c:0c:5a:d2:50:44:72:81:ef:1b:
87:1b:68:37:a4:b6:d2:9f:66:60:92:a1:4b:2d:f4:70:5d:6f:
d0:88:a8:2b:a5:ef:e8:37:15:91:e2:ea:d2:ab:88:1b:21:0c:
99:65:12:2e:a5:da:63:d7:c2:2a:bc:00:4b:b0:f4:71:7d:4f:
4e:72:b7:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:22 2024 by rpki-client on console-fra.rpki-client.org