Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/39254c-5286-4b84-b691-4014478bb6c8/1/sFsn-m_pJcfPnQTNDJpiTFnkksQ.roa
File: sFsn-m_pJcfPnQTNDJpiTFnkksQ.roa (raw, json)
Hash identifier: UmcdyoZ4jyjEs4wITW0n8JvX4PDfYxxnVv1Qw+x4XeU=
Subject key identifier: B0:5B:27:FA:6F:E9:25:C7:CF:9D:04:CD:0C:9A:62:4C:59:E4:92:C4
Certificate issuer: /CN=8c810edc51abd61e69f3c69ee49d88e9896a6f09
Certificate serial: 8A1F52
Authority key identifier: 8C:81:0E:DC:51:AB:D6:1E:69:F3:C6:9E:E4:9D:88:E9:89:6A:6F:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jIEO3FGr1h5p88ae5J2I6Ylqbwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/39254c-5286-4b84-b691-4014478bb6c8/1/sFsn-m_pJcfPnQTNDJpiTFnkksQ.roa
Signing time: Fri 17 Jun 2022 08:06:44 +0000
ROA not before: Fri 17 Jun 2022 08:06:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10753
IP address blocks: 185.165.194.0/24 maxlen: 24
83.97.36.0/24 maxlen: 24
2a10:a180::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9051986 (0x8a1f52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c810edc51abd61e69f3c69ee49d88e9896a6f09
Validity
Not Before: Jun 17 08:06:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b05b27fa6fe925c7cf9d04cd0c9a624c59e492c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cd:c0:09:d0:d9:ba:8f:55:6c:4d:71:3a:a9:
04:f5:56:55:ae:92:2f:71:df:75:43:a4:bd:e7:75:
fa:95:ea:61:27:05:cf:22:fb:67:bc:7d:10:a4:b4:
dd:5e:ba:2e:0e:23:c9:2c:48:be:96:bd:88:13:8f:
e5:57:91:35:63:cc:73:d0:13:c1:97:93:1b:8e:92:
b5:f1:78:fe:28:ee:ef:7f:97:aa:35:43:bc:5b:1d:
70:e6:e2:8e:8b:d0:de:3b:0b:a6:6b:43:94:0d:b4:
5a:62:10:c0:30:3c:8c:d2:b4:6c:b2:cd:a6:d0:55:
d2:76:96:e8:ac:66:ae:21:3a:a6:0a:56:8a:a3:8b:
5a:14:0f:55:44:3f:2c:51:20:6d:6b:3a:77:70:50:
23:07:91:56:84:a0:09:2e:c6:95:9f:af:fe:d3:49:
69:d3:91:0d:29:11:9c:5d:9b:89:fb:05:cf:8d:da:
f1:57:9c:9c:b0:3f:2f:8e:64:88:bd:3b:0e:cb:20:
6e:16:22:70:c1:33:d3:de:e5:4d:13:85:29:6e:5f:
8d:f9:ad:43:90:e0:87:1c:73:9d:ad:b2:e9:cc:d3:
2f:3a:d0:4e:84:9a:07:52:44:58:ee:87:1f:1c:04:
28:01:6f:ab:93:c3:b7:f8:96:43:2d:61:f7:46:37:
46:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:5B:27:FA:6F:E9:25:C7:CF:9D:04:CD:0C:9A:62:4C:59:E4:92:C4
X509v3 Authority Key Identifier:
keyid:8C:81:0E:DC:51:AB:D6:1E:69:F3:C6:9E:E4:9D:88:E9:89:6A:6F:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jIEO3FGr1h5p88ae5J2I6Ylqbwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/39254c-5286-4b84-b691-4014478bb6c8/1/sFsn-m_pJcfPnQTNDJpiTFnkksQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/39254c-5286-4b84-b691-4014478bb6c8/1/jIEO3FGr1h5p88ae5J2I6Ylqbwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.36.0/24
185.165.194.0/24
IPv6:
2a10:a180::/30
Signature Algorithm: sha256WithRSAEncryption
80:a1:e4:43:dc:33:0e:70:9c:a2:cd:7a:35:1a:5d:6c:cf:35:
e4:0c:15:63:c1:ac:4a:14:0b:e1:e0:13:e8:46:3a:97:e4:83:
8f:bf:ca:12:56:77:e1:aa:b6:81:de:77:a8:1b:64:ab:5f:01:
6f:1e:c0:a6:73:2c:b6:0d:bc:50:8c:a9:6f:72:e4:88:27:e2:
d2:c3:ed:a6:62:6c:ea:60:fa:f9:a1:1c:03:e3:98:f9:00:da:
bc:f7:c1:ac:00:5c:3c:e9:fc:1a:93:f6:87:c5:40:bf:02:ab:
73:7d:94:61:8c:28:02:87:18:ef:fa:37:76:87:f1:64:14:75:
ba:57:0d:1d:2b:e2:ae:24:ef:cf:f0:82:35:30:7f:cc:c3:7f:
d4:df:f4:ad:86:6f:c3:82:ac:2a:fc:3a:80:76:a6:ad:dc:06:
f0:df:e0:58:04:97:c2:4c:22:4f:50:3c:75:e1:c3:42:38:de:
a2:01:fa:7e:ec:ab:89:16:41:f3:49:2b:dc:42:f8:e5:a7:a7:
63:c1:ad:d5:68:a3:17:b8:e3:8d:27:b4:ba:23:d6:a8:65:52:
24:b4:43:4d:a1:34:b5:e1:6f:9b:58:20:86:0b:5f:b8:8a:78:
3a:bc:6d:dd:65:30:1a:f5:3a:af:c5:31:36:d9:d1:a1:e8:aa:
a1:0d:c4:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:24 2024 by rpki-client on console-fra.rpki-client.org