Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969c12-5263-4026-bfcd-0890b8051d85/1/599398VHoutm-FuqDz_htSonxT8.roa
File: 599398VHoutm-FuqDz_htSonxT8.roa (raw, json)
Hash identifier: iROUnNN9hNuZn4+G7Woukl6A7lURzIuM5mxogNgrKb8=
Subject key identifier: E7:DF:77:F7:C5:47:A2:EB:66:F8:5B:AA:0F:3F:E1:B5:2A:27:C5:3F
Certificate issuer: /CN=f9c4acc67a4b0013557a74ece6641f4f9475ff2d
Certificate serial: 19187F51
Authority key identifier: F9:C4:AC:C6:7A:4B:00:13:55:7A:74:EC:E6:64:1F:4F:94:75:FF:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-cSsxnpLABNVenTs5mQfT5R1_y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969c12-5263-4026-bfcd-0890b8051d85/1/599398VHoutm-FuqDz_htSonxT8.roa
Signing time: Sat 01 Jan 2022 15:05:57 +0000
ROA not before: Sat 01 Jan 2022 15:05:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62099
IP address blocks: 185.47.220.0/22 maxlen: 22
185.91.168.0/22 maxlen: 22
2a01:9420::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 421035857 (0x19187f51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9c4acc67a4b0013557a74ece6641f4f9475ff2d
Validity
Not Before: Jan 1 15:05:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7df77f7c547a2eb66f85baa0f3fe1b52a27c53f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ff:81:06:f1:bb:0d:e2:1b:df:3b:6f:a9:6b:20:
26:e6:58:61:23:7c:ba:e0:2a:91:18:c0:ee:7a:fd:
46:98:a8:5a:06:e0:f7:95:47:34:da:cd:77:0f:cd:
07:57:09:13:b9:77:80:81:5a:b1:b6:93:a8:0b:8d:
5d:53:f1:97:33:db:9d:48:53:c2:8b:41:7a:55:ff:
24:26:b8:23:7d:7f:a7:5b:66:9e:6d:df:91:2c:04:
ff:ce:64:a1:05:6d:90:6a:7f:26:53:ef:53:70:63:
b5:78:07:54:e9:70:e5:41:18:31:e0:5b:56:03:91:
2b:c1:01:3b:64:2b:17:c5:8d:a2:7b:13:89:0c:98:
a0:7d:81:42:30:7a:c7:07:9c:65:6e:28:3b:87:0a:
68:0f:46:cd:a6:72:e7:1a:73:c9:e9:7c:2a:49:c3:
d4:04:77:27:a7:f3:fe:1e:21:f2:90:5e:34:62:3e:
70:51:f4:1f:a2:25:30:fe:85:40:13:d5:91:79:c4:
f6:d4:69:aa:3b:7c:13:42:80:9c:4a:38:55:f9:68:
85:5e:12:bf:c1:af:70:65:e3:2e:af:e4:b2:66:1d:
98:6a:b1:03:91:55:49:13:bd:7a:e1:c0:a8:f7:94:
a9:7e:39:5d:e9:35:16:35:2c:58:c3:38:df:1d:22:
fc:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:DF:77:F7:C5:47:A2:EB:66:F8:5B:AA:0F:3F:E1:B5:2A:27:C5:3F
X509v3 Authority Key Identifier:
keyid:F9:C4:AC:C6:7A:4B:00:13:55:7A:74:EC:E6:64:1F:4F:94:75:FF:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-cSsxnpLABNVenTs5mQfT5R1_y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969c12-5263-4026-bfcd-0890b8051d85/1/599398VHoutm-FuqDz_htSonxT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969c12-5263-4026-bfcd-0890b8051d85/1/1-cSsxnpLABNVenTs5mQfT5R1_y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.220.0/22
185.91.168.0/22
IPv6:
2a01:9420::/32
Signature Algorithm: sha256WithRSAEncryption
23:d5:7b:86:c7:43:f0:30:49:49:95:03:c5:1d:49:de:b5:f7:
d5:5a:c3:a3:db:5a:79:83:11:75:23:3e:3d:6f:52:ca:4f:50:
9c:b4:2a:20:da:ee:de:89:72:63:57:ab:0f:0f:31:b9:0a:65:
b4:81:0a:69:a1:95:ad:d2:66:ee:d8:8d:34:82:37:af:43:2a:
37:a7:48:eb:df:04:65:b3:b6:48:b0:76:66:df:ca:8f:15:a7:
7b:df:37:99:a0:a9:30:cd:66:27:fb:c9:94:ed:ca:d2:95:8f:
e0:4b:19:5a:8c:55:c9:e0:00:01:2e:1c:21:07:26:2a:3c:ca:
80:d3:22:e9:0a:2e:07:0d:73:c0:b5:f3:d3:e7:b0:86:22:3b:
43:36:04:3e:ca:46:1e:37:99:e2:9e:74:ca:32:09:a4:bf:8e:
1b:7c:ba:38:ad:de:d2:da:79:5a:eb:97:f0:02:73:3d:bf:02:
5e:46:e2:31:13:11:db:b7:4b:15:30:8a:9b:e0:d6:a7:e6:19:
9b:db:3e:9a:c1:53:ee:7e:95:aa:4d:48:e0:ec:96:f7:9d:71:
7b:4f:16:00:49:87:32:33:58:0c:f5:ce:da:ee:a2:a0:05:69:
bc:62:e7:95:db:cc:22:4a:1b:8b:c2:ac:1c:3d:19:18:14:bb:
c0:9a:2d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:19 2024 by rpki-client on console-ams.rpki-client.org