Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/b459f1-6499-4e14-acfb-ea788ad3296a/1/CdjIiJkBnhzmftrQUUOIt-lG2R0.roa
File: CdjIiJkBnhzmftrQUUOIt-lG2R0.roa (raw, json)
Hash identifier: 2twuBs6V+f3+JkW52wyHoi39lqZdDEn20wTtWwIsyyY=
Subject key identifier: 09:D8:C8:88:99:01:9E:1C:E6:7E:DA:D0:51:43:88:B7:E9:46:D9:1D
Certificate issuer: /CN=7b385e86167d5ccc22fd85892560ae760b5f2898
Certificate serial: 0D536676
Authority key identifier: 7B:38:5E:86:16:7D:5C:CC:22:FD:85:89:25:60:AE:76:0B:5F:28:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ezhehhZ9XMwi_YWJJWCudgtfKJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/b459f1-6499-4e14-acfb-ea788ad3296a/1/CdjIiJkBnhzmftrQUUOIt-lG2R0.roa
Signing time: Sat 01 Jan 2022 01:54:01 +0000
ROA not before: Sat 01 Jan 2022 01:54:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49544
IP address blocks: 185.226.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223569526 (0xd536676)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b385e86167d5ccc22fd85892560ae760b5f2898
Validity
Not Before: Jan 1 01:54:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09d8c88899019e1ce67edad0514388b7e946d91d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:37:e5:e2:d9:72:df:a3:fe:a4:c5:9c:30:d2:
19:7d:db:de:85:02:99:39:f1:fa:ff:ae:70:ec:9b:
ae:3a:a6:58:f2:de:18:c1:00:d6:80:56:18:21:b8:
ac:18:9f:ef:5e:2e:78:97:a0:fa:b7:35:66:a3:09:
a1:72:e5:63:a4:4a:6a:23:62:b7:30:55:2f:20:ac:
7b:ba:e0:30:cf:97:6b:1c:f6:be:5c:67:f3:0f:be:
24:31:1f:ce:86:4c:98:10:0c:69:df:cf:a4:1c:2d:
fe:4c:55:ec:dd:dc:cd:94:47:dd:90:b6:ba:8b:8b:
38:9f:55:67:ef:c2:00:05:10:d1:0d:53:2e:6a:b8:
9b:0e:1a:be:12:05:19:e9:3a:5d:28:1b:23:ae:14:
9f:2e:c0:b3:0a:5b:08:03:73:43:c8:0c:3d:14:8b:
b5:32:2f:f0:3b:05:b8:d2:a9:dd:bb:24:23:9a:72:
aa:7b:c8:79:39:c2:71:a8:23:92:d4:78:ab:62:c4:
b5:33:19:0a:b0:32:7e:0c:fe:72:4b:bc:ba:06:0f:
98:08:e0:3f:f9:22:e9:f9:dd:5f:55:8d:5e:3a:88:
7b:b4:32:91:78:78:00:18:a6:20:8e:81:39:cc:e5:
e0:23:4a:b8:41:ca:64:22:d9:b6:76:ff:98:21:1a:
30:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:D8:C8:88:99:01:9E:1C:E6:7E:DA:D0:51:43:88:B7:E9:46:D9:1D
X509v3 Authority Key Identifier:
keyid:7B:38:5E:86:16:7D:5C:CC:22:FD:85:89:25:60:AE:76:0B:5F:28:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ezhehhZ9XMwi_YWJJWCudgtfKJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/b459f1-6499-4e14-acfb-ea788ad3296a/1/CdjIiJkBnhzmftrQUUOIt-lG2R0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/b459f1-6499-4e14-acfb-ea788ad3296a/1/ezhehhZ9XMwi_YWJJWCudgtfKJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.138.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:e5:f0:60:47:bc:9f:90:47:31:e7:c9:91:e5:83:7d:52:e4:
15:58:90:b9:ed:46:fe:35:54:7e:39:fa:79:44:38:e4:89:8b:
14:e2:ad:c1:d8:cf:4a:05:35:89:34:31:ec:f4:4d:14:62:a0:
ec:d3:b9:5d:4c:f3:f2:73:24:c4:1c:e9:79:4f:62:04:57:5d:
42:f0:f0:2b:c4:df:1c:b5:11:6e:22:31:7a:ac:04:45:ad:c1:
f6:e0:95:08:b0:52:cc:88:7c:e9:d7:52:ca:e5:2c:dd:80:d1:
84:48:94:e9:10:64:37:14:27:0d:6d:75:dd:be:df:6b:b6:e0:
c5:2f:8c:f6:fa:c9:41:eb:5a:44:4d:06:c6:51:31:e6:b6:d6:
65:8d:c9:8b:ec:e9:76:37:10:c9:fb:57:7c:ae:2f:13:93:4c:
71:b9:80:ae:9e:a7:97:0d:d3:38:14:55:42:05:d3:8d:89:b9:
d5:2e:e7:a6:23:1b:9e:e9:ec:f7:15:a9:6c:d8:ba:db:23:c8:
75:f5:85:ea:54:59:b7:12:5b:39:f7:87:6a:0e:c2:9c:c8:79:
6f:c0:6f:99:4e:98:ea:32:4d:29:05:25:39:df:ca:d2:b7:95:
e3:06:56:a0:91:09:34:67:08:eb:c3:ac:31:09:75:7c:f0:40:
b2:95:34:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:44 2024 by rpki-client on console-ams.rpki-client.org