Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/M5XefT2qkbd42j7rFkzPi5DBbrg.roa
File: M5XefT2qkbd42j7rFkzPi5DBbrg.roa (raw, json)
Hash identifier: zj+6b/o2ayAoo7qm8XLYBRQE5/7VlzP+T1GRsQXo73Q=
Subject key identifier: 33:95:DE:7D:3D:AA:91:B7:78:DA:3E:EB:16:4C:CF:8B:90:C1:6E:B8
Certificate issuer: /CN=b9762db1282ffd084761232038f81f5d29e640d5
Certificate serial: 048BAD84
Authority key identifier: B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/M5XefT2qkbd42j7rFkzPi5DBbrg.roa
Signing time: Mon 27 Jun 2022 20:17:32 +0000
ROA not before: Mon 27 Jun 2022 20:17:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 185.139.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76262788 (0x48bad84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9762db1282ffd084761232038f81f5d29e640d5
Validity
Not Before: Jun 27 20:17:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3395de7d3daa91b778da3eeb164ccf8b90c16eb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8f:de:4c:bb:88:4d:30:c6:2b:01:0d:f7:9c:
0f:85:8a:9c:be:20:54:28:4e:d3:7e:99:e3:9e:b1:
53:11:ee:1e:e2:2b:c4:45:f1:de:6e:8e:78:93:e5:
7c:32:4a:db:c0:cc:84:31:19:17:ab:b2:cc:3f:c0:
a5:1b:10:70:75:0f:8e:83:b4:12:12:f4:35:0f:f0:
73:61:9a:86:f9:76:d1:40:3c:a6:10:48:c5:ab:09:
d5:93:5a:a4:09:e9:23:e2:44:33:29:1a:c9:de:bb:
2e:64:cf:f6:8f:4d:6e:50:13:53:25:6d:a0:d5:b6:
21:dc:89:12:9f:d9:66:d1:29:a3:ae:76:bc:23:91:
34:f4:02:cd:71:d9:66:a5:ce:b9:96:c0:c7:3f:9a:
c2:a6:37:7a:a5:54:12:1f:1a:29:a3:c2:3b:e8:d7:
ae:fc:9c:88:94:d3:69:ad:4a:ea:28:49:8d:2a:b6:
b1:a9:fa:ac:ae:73:df:0e:ec:cb:71:4d:2d:ed:20:
c9:ea:c7:b9:8c:9f:e3:0b:49:8d:75:03:41:a0:5d:
42:4c:17:5d:9e:6f:97:61:95:14:52:f6:69:49:0e:
a4:41:8f:25:0a:a4:b9:67:a2:ea:76:c5:98:43:2e:
5d:4a:7f:b2:d6:ad:47:ca:62:aa:75:fe:11:56:2a:
56:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:95:DE:7D:3D:AA:91:B7:78:DA:3E:EB:16:4C:CF:8B:90:C1:6E:B8
X509v3 Authority Key Identifier:
keyid:B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/M5XefT2qkbd42j7rFkzPi5DBbrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/uXYtsSgv_QhHYSMgOPgfXSnmQNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.35.0/24
Signature Algorithm: sha256WithRSAEncryption
81:b3:e6:a2:61:48:a6:f5:40:e3:a7:72:1d:62:98:59:ac:87:
95:62:ff:69:ef:fc:31:90:e4:3b:e2:94:39:2d:4e:7d:29:5b:
82:52:ac:a5:3f:af:a5:5e:0b:70:f9:d5:91:4c:23:04:9f:98:
26:fe:2d:86:8c:eb:b8:d7:99:78:27:99:55:3b:21:d1:cf:f5:
b8:90:f3:3e:ef:68:1a:e9:a3:84:da:91:92:b7:e7:50:d0:a4:
79:db:5a:2f:fe:49:b7:a0:3c:60:4f:27:eb:a1:45:c9:4d:9e:
ae:e5:d5:4b:7d:4c:4f:2f:6b:e1:1e:ae:76:cc:c2:6a:12:80:
95:8c:26:a1:fd:28:60:52:5b:a7:68:44:11:14:d3:f6:a7:5d:
34:c4:06:4d:d3:2b:bd:0a:ea:34:28:23:46:1e:e9:62:10:ca:
54:8a:ba:3a:f1:dd:45:c8:18:04:c7:e4:0c:47:fc:78:f4:7f:
90:59:c2:63:2b:95:79:37:81:2e:8f:00:5d:44:19:9b:d0:03:
58:c5:3e:2d:ec:4c:6c:e4:6f:2a:b0:e7:5e:7c:6a:d0:ca:68:
3c:4b:95:20:82:9c:a2:d8:33:a8:37:df:2e:29:f0:74:b8:2a:
4e:01:67:c7:96:a5:67:fc:ec:b2:15:f1:66:d3:6b:14:a5:31:
d4:d3:6b:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:47 2024 by rpki-client on console-ams.rpki-client.org