Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/b7NIZqBZQa_hL0m9cmEaSvQmY2I.roa
File: b7NIZqBZQa_hL0m9cmEaSvQmY2I.roa (raw, json)
Hash identifier: f59WlZPe098bYCeydzabqqB1dkzVjq87D2u0/577ICg=
Subject key identifier: 6F:B3:48:66:A0:59:41:AF:E1:2F:49:BD:72:61:1A:4A:F4:26:63:62
Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Certificate serial: 01833281CA687D144943A08E9D170A71A664
Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/b7NIZqBZQa_hL0m9cmEaSvQmY2I.roa
Signing time: Mon 12 Sep 2022 16:21:50 +0000
ROA not before: Mon 12 Sep 2022 16:21:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200848
IP address blocks: 185.94.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:32:81:ca:68:7d:14:49:43:a0:8e:9d:17:0a:71:a6:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Validity
Not Before: Sep 12 16:21:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fb34866a05941afe12f49bd72611a4af4266362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:3a:91:9c:2a:50:7a:09:3d:6f:63:9d:70:07:
97:1d:36:42:30:6d:25:97:11:50:b9:5b:1b:b2:5d:
77:92:e3:29:d8:f5:2d:f3:1a:50:80:2d:8c:53:f2:
d4:74:35:a0:28:54:8f:e6:67:41:ce:b2:b3:ec:14:
92:96:21:a3:56:68:b7:9b:48:1d:8d:01:88:d1:de:
11:6d:87:ba:f3:90:18:32:9e:79:cd:3a:5b:39:52:
dc:56:b0:d7:a3:fe:7a:43:28:58:43:76:5d:88:0f:
03:7a:21:25:f7:b3:7a:46:f6:c2:cd:37:a2:60:98:
2c:a9:25:3d:a5:53:be:b8:16:db:37:82:50:a1:da:
64:4b:b1:9f:77:59:38:1c:8b:29:1b:be:d7:d8:43:
95:6d:75:65:4d:ca:4c:86:90:47:df:2f:e2:89:0c:
0d:b3:c3:61:3b:64:f6:98:7c:ff:08:c4:bb:60:16:
89:7d:ee:8f:18:78:2b:2d:01:9a:9f:69:0c:6b:c2:
75:27:f5:22:7b:14:0c:6c:61:a9:c6:0a:91:ec:61:
cd:c3:19:8f:f9:01:84:84:4c:5d:18:a8:a2:61:a0:
16:74:c3:e4:b8:b9:fb:34:14:05:bb:2e:ac:2c:aa:
7c:a3:bc:f8:96:be:bb:0d:bd:0a:e6:5f:d7:5d:49:
54:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B3:48:66:A0:59:41:AF:E1:2F:49:BD:72:61:1A:4A:F4:26:63:62
X509v3 Authority Key Identifier:
keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/b7NIZqBZQa_hL0m9cmEaSvQmY2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.4.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:c6:a9:ed:57:59:80:e4:1e:de:8b:1b:3d:ea:40:50:da:0e:
fb:e6:5a:bb:05:26:1b:11:93:85:d0:f4:fc:88:7e:62:88:5d:
de:cd:3f:07:76:17:37:7e:1b:66:a7:d0:7c:c8:81:d5:96:19:
cc:97:96:19:ee:17:0e:af:d9:cc:af:a6:40:4c:ee:3e:7e:85:
54:f1:0a:c0:e4:1b:4d:56:d7:35:f3:09:64:bb:7d:b5:14:b3:
2b:6b:cb:91:e6:6d:41:ff:f9:d9:cc:31:57:47:70:2b:14:25:
43:be:c9:91:02:b1:17:c7:3f:4b:84:d8:e3:32:5b:55:d9:4f:
03:7e:f1:f6:5a:bb:8a:27:df:f1:58:9a:89:bc:5c:d1:73:ea:
fe:f9:70:de:93:e5:5a:05:c6:a9:08:b9:bf:d4:42:e7:77:39:
68:5f:e5:9d:28:4a:49:f8:a5:27:41:5a:d0:58:73:00:d4:80:
a6:75:b6:b8:cf:6c:64:b5:af:c6:6a:05:da:8a:98:ca:9a:10:
bc:02:0f:7f:da:57:68:a0:36:0c:97:26:51:8b:76:80:65:35:
28:4b:43:66:d8:bb:46:4e:96:cf:6c:83:a7:5e:68:0f:ec:a9:
3d:ee:b2:48:43:3a:e8:de:3a:60:79:97:3a:99:0e:4a:b1:d5:
12:d7:32:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:32 2024 by rpki-client on console-ams.rpki-client.org