Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b8169b-8bfd-40ff-b9ba-403043048118/1/jvd0hpQdbCSuSn7l58s1O79qZpw.roa
File: jvd0hpQdbCSuSn7l58s1O79qZpw.roa (raw, json)
Hash identifier: gDr250ybb3Cvt8hN9OFA7jj/cC/A9/Zsea25UeblcWE=
Subject key identifier: 8E:F7:74:86:94:1D:6C:24:AE:4A:7E:E5:E7:CB:35:3B:BF:6A:66:9C
Certificate issuer: /CN=66f983138969f8da674f7b5c0133e0c2d029b4c8
Certificate serial: 10E055BA
Authority key identifier: 66:F9:83:13:89:69:F8:DA:67:4F:7B:5C:01:33:E0:C2:D0:29:B4:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZvmDE4lp-NpnT3tcATPgwtAptMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b8169b-8bfd-40ff-b9ba-403043048118/1/jvd0hpQdbCSuSn7l58s1O79qZpw.roa
Signing time: Sat 01 Jan 2022 16:03:24 +0000
ROA not before: Sat 01 Jan 2022 16:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197350
IP address blocks: 185.90.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283137466 (0x10e055ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66f983138969f8da674f7b5c0133e0c2d029b4c8
Validity
Not Before: Jan 1 16:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ef77486941d6c24ae4a7ee5e7cb353bbf6a669c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6a:27:b7:9d:b6:ad:fb:e2:2e:83:3c:60:f9:
14:d0:1e:f9:a1:ff:bd:85:98:f5:55:97:ec:ec:2c:
e1:7a:7d:9b:32:64:9c:bd:cd:62:c0:26:c7:c7:83:
e4:93:8f:97:91:e3:5e:fa:45:06:7d:e9:cd:ed:59:
2d:35:19:1b:8f:96:39:20:2d:11:17:d9:3b:5d:2a:
13:22:9b:3b:a2:91:7b:60:4d:04:c5:f6:a9:5c:32:
ec:3b:a7:bf:d8:9a:bd:bb:76:2b:5d:b3:07:9b:76:
dd:bb:2d:3b:97:d1:0d:aa:73:da:20:01:4e:11:7b:
ec:e5:f3:44:f7:f7:97:04:6b:fe:d4:ef:89:a1:3e:
ce:32:c2:8d:e4:ef:b9:7f:b1:fb:9a:52:78:6f:40:
ed:c8:40:a6:9e:38:fb:5b:55:54:3a:3a:cd:83:f9:
85:8e:2e:8d:23:35:89:f0:ce:ce:cf:eb:11:07:ef:
c2:8f:62:a5:6c:c2:9a:da:c7:5f:57:23:15:2b:eb:
da:78:b6:af:f0:1c:83:aa:c8:86:4b:df:45:ae:88:
a6:1c:fa:2c:91:1a:9e:64:ed:01:5c:47:8f:f0:e5:
2c:85:74:6a:11:cf:bf:2e:33:82:bd:ab:8f:83:64:
c4:a1:77:76:bd:6a:5e:75:42:69:8f:1f:ba:5a:f6:
e5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F7:74:86:94:1D:6C:24:AE:4A:7E:E5:E7:CB:35:3B:BF:6A:66:9C
X509v3 Authority Key Identifier:
keyid:66:F9:83:13:89:69:F8:DA:67:4F:7B:5C:01:33:E0:C2:D0:29:B4:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZvmDE4lp-NpnT3tcATPgwtAptMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b8169b-8bfd-40ff-b9ba-403043048118/1/jvd0hpQdbCSuSn7l58s1O79qZpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b8169b-8bfd-40ff-b9ba-403043048118/1/ZvmDE4lp-NpnT3tcATPgwtAptMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.124.0/22
Signature Algorithm: sha256WithRSAEncryption
13:27:94:87:70:2e:1a:c7:37:3c:2b:51:aa:c7:dc:c4:08:7c:
b4:70:8c:59:8b:51:3a:51:08:0a:16:fb:cd:c1:a0:69:30:5d:
ac:11:79:5c:7f:54:50:1a:1b:ed:79:bf:6c:33:09:3c:aa:99:
49:9c:a3:d2:17:8a:4a:15:8a:7e:25:50:7e:5c:53:0c:e0:0f:
97:ba:98:0e:e1:b5:fd:82:96:22:05:6a:be:32:e5:7f:51:48:
99:aa:1c:36:ce:18:f1:7d:92:c7:68:55:63:c5:1e:85:88:aa:
a2:62:5f:19:87:23:e2:4c:dc:eb:bc:c0:48:fe:9f:4c:13:f1:
f8:b7:1b:f1:61:7b:05:7d:bc:03:64:0a:1e:ab:8c:1e:fa:79:
70:c7:de:2a:3b:a0:12:e7:19:19:c1:30:02:78:1e:ea:04:d9:
34:87:47:d8:37:a6:7f:c6:41:e5:88:08:8a:6e:ff:7e:0e:81:
d0:3d:0e:d4:4a:cf:dd:9f:8e:4b:84:0f:46:e6:ab:cc:d9:8a:
0c:7b:13:60:7d:77:17:2e:fb:61:a9:2d:f7:51:5b:96:12:7e:
65:84:1a:38:01:b6:b7:e5:26:4d:a5:f5:95:a2:dc:cf:d4:0f:
10:18:6b:db:f2:c7:f0:ee:e6:10:05:fd:52:95:77:ff:af:fa:
7d:1f:e2:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:02 2024 by rpki-client on console-ams.rpki-client.org