Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/o4-fsmGN47Xw-LyxzUAwgzPv4PA.roa
File: o4-fsmGN47Xw-LyxzUAwgzPv4PA.roa (raw, json)
Hash identifier: bvfcwBt2dj3/M22Ncy/mpDv5XKyBDlDGILYB2kzj6U4=
Subject key identifier: A3:8F:9F:B2:61:8D:E3:B5:F0:F8:BC:B1:CD:40:30:83:33:EF:E0:F0
Certificate issuer: /CN=5ce1aae0c93ad04b7298082b68bf6a54fa68bcf0
Certificate serial: 0E7FC236
Authority key identifier: 5C:E1:AA:E0:C9:3A:D0:4B:72:98:08:2B:68:BF:6A:54:FA:68:BC:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOGq4Mk60EtymAgraL9qVPpovPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/o4-fsmGN47Xw-LyxzUAwgzPv4PA.roa
Signing time: Sat 01 Jan 2022 12:54:32 +0000
ROA not before: Sat 01 Jan 2022 12:54:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12703
IP address blocks: 185.196.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 243253814 (0xe7fc236)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ce1aae0c93ad04b7298082b68bf6a54fa68bcf0
Validity
Not Before: Jan 1 12:54:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a38f9fb2618de3b5f0f8bcb1cd40308333efe0f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:00:42:86:13:80:e0:6c:9b:f1:97:64:d7:25:
03:cb:3b:9b:60:32:32:89:04:a5:c7:50:34:ab:6f:
1d:2d:80:38:ff:0f:c4:23:2c:1d:52:60:4b:aa:7e:
1f:a6:f4:fa:34:2a:19:03:f8:95:9e:8f:c8:4e:6c:
47:7b:75:02:d4:34:bd:e0:9b:d3:bc:33:95:33:76:
14:4c:71:31:67:f2:ba:63:28:9e:93:ee:ca:32:61:
d5:e2:93:d8:64:09:e8:8d:c7:17:d6:a0:8d:5c:f9:
b7:5b:a5:b6:ad:41:a6:dc:4b:c5:6a:27:de:0f:5b:
a6:c8:84:01:50:26:f3:b4:84:50:f3:a2:f2:19:69:
17:0e:77:6c:ce:5b:2b:30:06:f6:0f:cd:77:f4:10:
4f:71:3c:80:06:00:14:3b:e4:80:6d:27:8b:20:ca:
9b:f1:bb:87:cf:dd:fc:96:37:9c:1b:36:2d:f3:95:
38:42:ab:7a:a4:0b:3d:ec:4a:19:06:0e:d8:42:34:
0e:98:81:df:79:d5:ab:a4:17:e1:0f:e2:6a:c0:07:
14:fd:1e:6e:a6:c7:f7:8b:58:ad:45:38:ac:17:40:
73:9e:05:3e:a1:96:74:fd:4c:38:39:18:89:98:a5:
52:4f:59:e2:26:01:4f:33:a7:f1:7e:1d:7c:e4:6f:
31:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:8F:9F:B2:61:8D:E3:B5:F0:F8:BC:B1:CD:40:30:83:33:EF:E0:F0
X509v3 Authority Key Identifier:
keyid:5C:E1:AA:E0:C9:3A:D0:4B:72:98:08:2B:68:BF:6A:54:FA:68:BC:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOGq4Mk60EtymAgraL9qVPpovPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/o4-fsmGN47Xw-LyxzUAwgzPv4PA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/XOGq4Mk60EtymAgraL9qVPpovPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.100.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:17:b2:9c:35:a1:11:48:0a:b7:0c:b6:98:97:60:96:33:ba:
c6:86:0b:31:0a:c5:86:2b:2f:0a:c5:4a:69:cc:02:cb:af:7d:
d2:bc:3b:fa:d9:57:0b:88:44:01:31:8d:00:2a:87:02:64:8c:
f1:bf:ec:27:74:48:bc:9f:32:fe:15:14:92:83:06:56:24:87:
27:5d:dc:23:be:28:1e:e9:85:ec:55:9b:46:e6:0e:c4:de:89:
55:45:1f:4c:58:9d:09:ce:16:60:ff:3c:c1:b4:5d:c0:18:da:
a7:75:ec:45:b6:e3:f9:ba:58:ac:f8:b0:f5:63:67:43:f5:e0:
cf:a9:c8:91:77:14:66:6a:a2:e4:d6:42:17:de:3f:72:3e:2e:
8b:7e:fe:8f:43:4f:e4:9e:52:25:3f:a7:81:61:4e:1b:5f:0c:
00:1e:4b:ac:f1:6b:48:69:9f:3b:62:99:37:7f:b1:1b:2f:06:
a0:b0:a9:72:61:4a:2e:cd:c4:d5:a8:3d:4a:20:fc:5f:f0:c5:
81:42:d1:f0:ef:5e:02:f4:6a:ae:97:13:c7:d1:ea:c4:d3:40:
40:69:bf:8f:94:09:8b:40:b3:bc:b2:ae:13:3c:4b:b5:11:9d:
59:41:7d:d1:07:80:99:62:24:d6:54:2c:4a:cd:8d:db:1a:7e:
66:68:c0:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:59 2024 by rpki-client on console-ams.rpki-client.org