Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/c75f12-97a4-4d9e-9978-b1822755f712/1/sSLf88Y1A4KOHB2JMu8yPjP10tI.roa
File: sSLf88Y1A4KOHB2JMu8yPjP10tI.roa (raw, json)
Hash identifier: fZUy8i1WLzZZ1eH/tMfXuZzOKHwW3HunMRn1LGntmLk=
Subject key identifier: B1:22:DF:F3:C6:35:03:82:8E:1C:1D:89:32:EF:32:3E:33:F5:D2:D2
Certificate issuer: /CN=ce22dd19725b6a59e79f0ff39789a5658e4a5fdd
Certificate serial: 0D52366B
Authority key identifier: CE:22:DD:19:72:5B:6A:59:E7:9F:0F:F3:97:89:A5:65:8E:4A:5F:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ziLdGXJbalnnnw_zl4mlZY5KX90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/c75f12-97a4-4d9e-9978-b1822755f712/1/sSLf88Y1A4KOHB2JMu8yPjP10tI.roa
Signing time: Sat 01 Jan 2022 02:57:34 +0000
ROA not before: Sat 01 Jan 2022 02:57:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56395
IP address blocks: 185.215.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223491691 (0xd52366b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce22dd19725b6a59e79f0ff39789a5658e4a5fdd
Validity
Not Before: Jan 1 02:57:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b122dff3c63503828e1c1d8932ef323e33f5d2d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:dc:fa:37:46:5c:c6:21:11:08:b2:79:1f:92:
fb:6a:13:48:4c:ce:fd:7b:35:3c:37:9a:8e:f1:3f:
98:f0:2e:78:5b:9e:7b:1a:c9:44:19:50:42:4b:3a:
45:76:6a:49:a8:40:88:c5:2e:90:02:5a:de:9d:07:
7b:0d:ae:67:c6:2f:cc:c4:a5:6d:aa:40:00:3c:af:
0c:3e:88:43:38:c8:08:ed:36:20:5c:9f:a3:e7:9d:
85:48:d7:13:55:b7:29:f8:f0:0d:a7:95:71:bf:7f:
10:ee:2b:51:8f:c2:47:e8:36:0e:10:7c:1a:b3:09:
b7:44:af:d5:0a:ee:94:d6:03:09:db:c9:e3:f1:4e:
c2:3b:7b:40:7d:a4:3f:e9:0e:42:05:90:39:9d:4e:
33:a0:25:f4:a0:01:ed:82:ed:4a:be:7d:b6:7d:16:
e8:af:72:07:40:bd:6e:58:61:b1:47:2c:7c:e7:54:
82:b8:b5:f6:7d:e6:eb:06:f0:ec:7e:8e:0d:36:42:
fc:d7:6a:82:54:12:38:5b:8c:3a:35:48:da:70:db:
3b:97:c4:7f:a1:aa:41:a1:62:26:c6:4f:e3:06:b6:
97:79:6f:9b:dd:4a:ab:fc:98:fc:39:4f:23:b4:43:
14:be:ab:1a:41:74:82:ce:ba:23:21:28:b9:42:63:
e7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:22:DF:F3:C6:35:03:82:8E:1C:1D:89:32:EF:32:3E:33:F5:D2:D2
X509v3 Authority Key Identifier:
keyid:CE:22:DD:19:72:5B:6A:59:E7:9F:0F:F3:97:89:A5:65:8E:4A:5F:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ziLdGXJbalnnnw_zl4mlZY5KX90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/c75f12-97a4-4d9e-9978-b1822755f712/1/sSLf88Y1A4KOHB2JMu8yPjP10tI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/c75f12-97a4-4d9e-9978-b1822755f712/1/ziLdGXJbalnnnw_zl4mlZY5KX90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.120.0/22
Signature Algorithm: sha256WithRSAEncryption
00:3e:a3:1d:e4:65:e7:f6:95:7e:3f:fb:80:0b:df:79:8b:48:
26:e1:ed:42:0e:2e:d6:05:3f:b4:80:00:27:92:36:f4:6f:3d:
69:aa:fc:c3:84:a9:26:1c:82:46:01:ea:6f:50:88:48:1c:32:
62:62:74:b3:86:f6:73:cc:8e:11:4f:e5:74:09:19:8c:a6:8a:
0d:00:dc:14:03:6c:e5:11:d4:42:63:9e:20:fe:db:b5:82:3c:
45:05:84:db:1e:93:e6:67:ec:9b:c2:e2:6b:5c:82:69:31:88:
12:00:e1:ff:df:9b:a3:4b:7d:9a:f7:4c:fd:77:d0:84:a2:f9:
c0:3b:61:29:e2:12:e2:55:6b:d4:6d:89:ec:0e:79:f3:b8:96:
91:60:44:d9:60:c9:e2:54:7c:c3:11:48:a3:8c:ac:02:4f:ec:
0f:81:ad:80:26:9d:65:ba:3a:9d:93:2f:9b:8e:57:72:57:7b:
ff:45:61:48:6a:0f:c9:24:70:de:3e:4d:00:ab:95:e0:34:5f:
9c:17:2c:4c:d9:56:ab:d4:94:6b:8c:51:6b:39:d0:af:50:41:
b5:d4:ea:01:00:9f:48:76:0a:a8:b5:4e:21:bc:0d:f8:c8:56:
57:1a:da:bd:f7:3d:0a:d1:ba:6e:35:34:86:a5:c0:1b:a9:45:
8c:9f:7d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:01 2024 by rpki-client on console-fra.rpki-client.org