Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/T40cfRTJlFt6xhrvvP2EioB46Js.roa
File: T40cfRTJlFt6xhrvvP2EioB46Js.roa (raw, json)
Hash identifier: Ur9JbQU2IzFB5SL9y9FVt/ITw0n2s6qPXvCjTHQ3bjs=
Subject key identifier: 4F:8D:1C:7D:14:C9:94:5B:7A:C6:1A:EF:BC:FD:84:8A:80:78:E8:9B
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 018200FBAD0695157AA2869F258A4AD51473
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/T40cfRTJlFt6xhrvvP2EioB46Js.roa
Signing time: Fri 15 Jul 2022 08:31:10 +0000
ROA not before: Fri 15 Jul 2022 08:31:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39847
IP address blocks: 89.185.160.0/19 maxlen: 19
178.18.176.0/20 maxlen: 20
185.150.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:00:fb:ad:06:95:15:7a:a2:86:9f:25:8a:4a:d5:14:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jul 15 08:31:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f8d1c7d14c9945b7ac61aefbcfd848a8078e89b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9f:15:36:b8:dd:e2:d6:d5:96:fe:bf:1e:cf:
4d:18:02:74:96:48:a6:b6:8f:81:4e:96:04:b6:60:
d6:61:6a:de:71:82:89:14:57:6a:02:f4:fd:43:58:
0d:85:1c:32:de:1e:40:15:0b:89:ab:5d:da:a5:4e:
28:3f:39:0c:f5:f4:f3:43:61:87:6b:96:8d:b7:3a:
91:b1:d7:0d:69:5a:6e:b3:3e:84:0b:b0:92:8a:ae:
fa:ca:31:36:c6:e5:d4:23:9c:85:41:49:bd:99:dc:
c9:88:c5:12:f9:b0:56:f4:95:96:10:cb:57:e9:38:
d3:b2:33:97:21:2d:ec:ca:c0:c0:67:11:3d:d7:fe:
8a:bc:45:b7:4b:bb:f1:52:3e:37:92:95:65:53:95:
91:52:30:df:c7:95:eb:4d:26:d4:0f:a4:bc:72:d0:
fa:0d:ec:99:57:f9:5b:9c:e0:1b:44:e6:a1:fd:9a:
a9:49:7b:e5:99:8b:50:a8:1b:d7:b8:85:b3:2e:39:
3d:da:5b:3b:80:68:97:74:37:e3:5e:ee:0c:b0:97:
28:bf:6b:be:90:90:36:dc:35:99:bf:2a:90:30:b9:
7d:b9:8f:0c:da:33:ca:af:ac:fd:fb:1e:b5:58:d1:
90:f9:df:21:f0:8e:7f:c6:0f:60:0e:f3:77:48:f0:
39:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:8D:1C:7D:14:C9:94:5B:7A:C6:1A:EF:BC:FD:84:8A:80:78:E8:9B
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/T40cfRTJlFt6xhrvvP2EioB46Js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.160.0/19
178.18.176.0/20
185.150.120.0/22
Signature Algorithm: sha256WithRSAEncryption
44:38:15:ee:40:c7:05:13:9d:36:b4:e0:3e:98:d6:14:e7:66:
06:1e:33:4f:14:66:5a:fd:d8:87:60:00:3f:6b:5c:97:f7:7b:
24:4f:a6:d2:f9:9d:b2:1b:75:1f:14:98:f6:73:cb:cc:cb:25:
3f:d7:e2:1d:70:fa:66:9c:a1:3d:dc:3b:d3:76:28:00:01:0c:
d9:21:e5:62:df:ef:9a:c0:b0:30:0e:2c:bc:d2:16:ae:f5:f8:
c6:ef:0b:63:78:46:1c:36:86:8c:dc:48:27:6f:a3:89:92:8b:
e2:81:82:0c:5d:0e:d7:0c:7d:f9:82:21:2b:49:3d:c0:f6:7b:
e4:e5:ac:3a:04:a1:e7:3f:6c:30:9b:bf:4a:eb:6d:a5:a2:fe:
a7:c2:84:fb:e3:c7:e0:f9:ec:5f:7d:4e:e1:43:4b:cd:06:05:
e3:46:a4:a8:7f:2b:da:5b:ad:5d:ce:26:cd:a5:90:09:4b:45:
b8:5c:ea:25:9a:c3:f8:02:5a:90:1e:ba:34:ba:ba:52:10:3f:
03:0a:ce:ed:13:a9:fd:42:6e:69:d9:76:0e:d3:57:f9:74:41:
3f:96:b5:a0:bf:24:97:70:84:dd:4f:91:75:c0:c9:c4:76:d6:
31:ef:cc:3f:31:0f:76:c9:ea:17:6a:33:96:ee:ab:35:38:91:
6c:9e:99:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org