Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/ad050f-a22d-4a77-958c-357a61361dcb/1/imn0Q6lmfFmwjL_SuEf6jQxnZdQ.roa
File: imn0Q6lmfFmwjL_SuEf6jQxnZdQ.roa (raw, json)
Hash identifier: FMZscA0mpJzbQ6pja5A3OC3JMkU1+YmOIeEiQj618Aw=
Subject key identifier: 8A:69:F4:43:A9:66:7C:59:B0:8C:BF:D2:B8:47:FA:8D:0C:67:65:D4
Certificate issuer: /CN=33cfbfbf2eccd393aa30c221369965b847192da8
Certificate serial: 027263A9
Authority key identifier: 33:CF:BF:BF:2E:CC:D3:93:AA:30:C2:21:36:99:65:B8:47:19:2D:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8-_vy7M05OqMMIhNplluEcZLag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/ad050f-a22d-4a77-958c-357a61361dcb/1/imn0Q6lmfFmwjL_SuEf6jQxnZdQ.roa
Signing time: Sat 01 Jan 2022 05:04:43 +0000
ROA not before: Sat 01 Jan 2022 05:04:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21277
IP address blocks: 185.38.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41051049 (0x27263a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33cfbfbf2eccd393aa30c221369965b847192da8
Validity
Not Before: Jan 1 05:04:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a69f443a9667c59b08cbfd2b847fa8d0c6765d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d5:42:b1:55:22:5e:9e:d0:73:14:c4:6f:c7:
c7:80:23:56:86:50:e2:6a:47:a2:f0:9f:52:e3:3f:
9f:a2:80:00:13:57:f6:74:f3:cb:9b:ca:1f:a8:11:
a0:68:86:73:6e:d2:b4:08:2b:08:c7:8a:0a:bd:ab:
f2:e1:7d:fd:bd:54:1f:26:ab:cd:6a:37:f8:58:dd:
07:11:80:17:bd:59:0a:db:92:33:18:db:7e:ca:73:
ee:31:35:06:65:cc:6b:1d:7f:37:7d:45:96:7d:6c:
8a:1e:c8:b9:60:44:9a:d6:b5:46:df:b1:22:23:50:
0a:6f:2a:fb:2a:48:14:b9:59:f9:aa:43:de:73:d8:
c4:d7:54:e9:10:d9:59:da:26:30:64:a4:71:e0:33:
b9:a8:97:fa:4d:d0:17:97:c6:74:c5:21:e4:03:8f:
08:38:7e:4b:0c:bc:1d:eb:bf:28:d2:7c:92:0f:54:
32:0c:1a:de:9d:34:ba:ce:c0:54:ce:30:da:29:8b:
c4:59:f9:3e:f3:b0:e7:7b:49:4f:1a:cc:d4:91:72:
11:20:3d:80:4e:af:c0:e7:0d:24:f6:ac:c3:a8:40:
87:d0:24:f5:1b:ae:92:46:63:e0:b1:e8:10:1f:e7:
9b:d4:de:92:7b:4d:aa:44:aa:1f:2b:8d:c8:13:f7:
79:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:69:F4:43:A9:66:7C:59:B0:8C:BF:D2:B8:47:FA:8D:0C:67:65:D4
X509v3 Authority Key Identifier:
keyid:33:CF:BF:BF:2E:CC:D3:93:AA:30:C2:21:36:99:65:B8:47:19:2D:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8-_vy7M05OqMMIhNplluEcZLag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ad050f-a22d-4a77-958c-357a61361dcb/1/imn0Q6lmfFmwjL_SuEf6jQxnZdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ad050f-a22d-4a77-958c-357a61361dcb/1/M8-_vy7M05OqMMIhNplluEcZLag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.212.0/22
Signature Algorithm: sha256WithRSAEncryption
46:58:f4:55:03:9a:f2:b6:d6:57:cd:5d:40:bb:aa:6b:fd:0d:
67:22:8c:a5:db:a9:5b:08:73:46:38:31:a1:3a:f9:bd:b7:40:
8c:27:39:12:56:20:b8:23:06:23:b1:48:6a:64:2a:36:e8:cf:
42:29:1c:2b:f7:db:e0:a5:55:67:fc:10:fb:cc:a1:31:d8:b8:
15:86:cf:92:4a:95:28:6c:98:4b:01:da:f1:c1:e6:f6:e1:11:
3e:86:ea:56:ab:1e:a4:ee:7c:e9:e9:a5:a6:e0:e8:74:95:6c:
e0:90:f0:ff:92:da:df:75:67:df:4b:2f:74:58:0e:98:c0:33:
09:e2:8b:4a:3e:7a:d2:63:ce:8d:a8:c6:ec:6c:20:57:9f:9e:
e0:75:dd:92:76:30:55:cb:75:41:3f:49:49:be:69:9a:d5:08:
e6:1f:dc:a5:a2:ba:88:0e:62:6b:84:c2:50:a8:6d:1e:5a:b1:
12:8a:0c:16:7f:47:a1:c1:c9:83:cb:c3:37:dc:a9:07:6f:68:
ff:63:f6:15:e8:3d:e2:39:d9:81:ac:7f:4f:f4:7b:6f:95:29:
0a:8b:e1:45:4e:fe:91:d8:60:76:c0:3c:06:fa:11:e7:fc:1c:
dd:8d:1b:f4:5d:c0:54:fa:5a:9f:09:c7:97:34:f9:14:d4:f1:
c4:b7:24:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:42 2024 by rpki-client on console-fra.rpki-client.org