Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/Md9Xxg6M03pWSn2SH8F43pG7Xro.roa
File: Md9Xxg6M03pWSn2SH8F43pG7Xro.roa (raw, json)
Hash identifier: GLQElw/lgOgvwhER5sdoT9mV/0ojHwwU3dpRrI9dC6U=
Subject key identifier: 31:DF:57:C6:0E:8C:D3:7A:56:4A:7D:92:1F:C1:78:DE:91:BB:5E:BA
Certificate issuer: /CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Certificate serial: 1749B4A4
Authority key identifier: 91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/Md9Xxg6M03pWSn2SH8F43pG7Xro.roa
Signing time: Sat 01 Jan 2022 08:05:45 +0000
ROA not before: Sat 01 Jan 2022 08:05:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47264
IP address blocks: 185.4.116.0/24 maxlen: 24
185.4.116.0/22 maxlen: 22
185.4.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390706340 (0x1749b4a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Validity
Not Before: Jan 1 08:05:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31df57c60e8cd37a564a7d921fc178de91bb5eba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:92:3c:01:99:1e:b4:28:08:51:ba:92:18:4e:
e0:a4:3a:0a:a4:f1:b8:7b:7f:12:fa:ac:70:06:1a:
9b:2e:ff:1e:cf:2e:7e:8b:d2:16:27:70:0a:f0:4c:
71:b7:ce:cd:c4:21:58:e3:56:a0:6b:9e:06:dc:ed:
92:a6:be:30:52:be:ea:64:11:20:3a:e1:d7:ec:31:
f5:01:95:c5:1b:62:c5:93:e1:4c:e1:ff:fc:f5:8b:
d9:11:4b:22:3b:8a:e6:6e:32:d4:4f:59:40:b7:b2:
d8:46:65:c9:c8:63:02:7c:f4:92:2c:de:47:35:72:
15:a8:ce:aa:23:a8:65:f6:db:9c:d4:71:71:f0:5a:
a5:2f:41:a9:43:73:9b:88:09:33:e5:3b:1b:36:fe:
d1:f9:25:04:94:34:7e:49:c7:89:54:7e:a7:63:9e:
f2:a8:0a:fa:02:a4:d4:dc:6c:3b:27:f3:73:c0:6c:
22:7e:13:5f:17:c1:37:b0:54:11:49:c5:35:45:59:
14:2a:2b:1a:c5:25:00:09:1f:42:d8:5e:19:a7:7d:
48:1b:17:5e:8f:1b:aa:50:02:a1:6b:8f:bf:08:86:
c3:30:7a:7e:22:5c:7e:06:58:ca:eb:9f:8c:89:e9:
ce:e6:51:98:b3:b9:4d:bb:ce:2a:28:71:ba:6c:04:
b6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:DF:57:C6:0E:8C:D3:7A:56:4A:7D:92:1F:C1:78:DE:91:BB:5E:BA
X509v3 Authority Key Identifier:
keyid:91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/Md9Xxg6M03pWSn2SH8F43pG7Xro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.116.0/22
Signature Algorithm: sha256WithRSAEncryption
11:e8:06:38:ab:98:98:72:70:9a:88:fc:64:ef:7c:2d:9d:f2:
c6:62:c0:0e:79:d4:f4:2f:62:5f:23:f3:49:56:8e:fa:2f:c0:
36:97:fc:67:a2:5e:02:e4:b1:18:b5:6e:ae:96:ae:6f:2f:5b:
5e:3a:6c:28:af:65:9f:3c:98:41:71:ce:3c:eb:86:db:5a:37:
8a:99:80:7e:40:57:5d:1f:7c:0d:84:dd:af:07:94:c7:8a:21:
a5:85:e6:98:ef:9a:d5:ba:b0:7e:22:f6:73:4d:33:5f:7c:5d:
07:b4:7f:0a:2b:7f:bd:08:d0:68:e8:0a:82:62:39:f6:46:e8:
c9:53:ae:4e:06:43:9e:05:2a:b3:39:01:68:a6:64:89:48:9a:
4d:a7:ef:13:ee:7e:1b:52:27:1d:86:ca:21:22:5b:10:1f:05:
6f:e7:97:04:15:36:c0:f9:bd:b0:4b:de:7c:f6:0d:1e:e2:38:
89:bf:09:0b:04:e3:a5:5b:6c:34:4f:4b:a6:b1:ba:60:30:bb:
d1:c2:16:fc:f1:a4:52:18:a6:86:89:eb:e5:b0:9d:15:4c:a3:
b7:9b:53:7c:ee:85:b9:21:fc:2d:44:11:b8:40:0d:5e:43:5e:
8f:76:8f:1a:5a:8e:b9:54:27:0b:1b:5b:b5:9a:87:4c:b5:84:
05:4f:79:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:02 2024 by rpki-client on console-ams.rpki-client.org