Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/sv_k0kcj8KtQSCb6SKaadWElf6E.roa
File: sv_k0kcj8KtQSCb6SKaadWElf6E.roa (raw, json)
Hash identifier: Rb6naX0u1iPXgigXTVPvQnx6J6pkVSrcr/saT4nd86M=
Subject key identifier: B2:FF:E4:D2:47:23:F0:AB:50:48:26:FA:48:A6:9A:75:61:25:7F:A1
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 1566C87F
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/sv_k0kcj8KtQSCb6SKaadWElf6E.roa
Signing time: Sat 01 Jan 2022 08:04:54 +0000
ROA not before: Sat 01 Jan 2022 08:04:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209181
IP address blocks: 185.89.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359057535 (0x1566c87f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Jan 1 08:04:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2ffe4d24723f0ab504826fa48a69a7561257fa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ef:13:29:a1:12:9d:16:79:8d:c1:20:aa:0a:
dd:b1:91:3f:58:b7:c8:e7:08:1a:a1:1f:9d:56:6c:
9f:ce:c6:f4:fe:be:ee:43:2b:4a:2f:cc:f7:01:4e:
ec:e2:f0:1b:20:5a:21:1c:33:c8:80:06:da:98:8a:
62:6e:d0:24:46:82:a8:09:42:df:a2:67:33:b4:a1:
df:40:d4:03:10:19:d2:1d:58:b4:af:61:8f:c9:59:
cc:92:4e:99:94:ee:59:a2:b3:7d:21:91:98:42:af:
1d:f2:67:e3:48:72:c7:b0:72:38:b2:b1:cb:fd:6d:
88:eb:77:2a:9f:6e:c0:d5:76:b6:23:2a:63:39:35:
1b:0f:b7:b2:b4:f8:cf:dc:bf:ee:99:b0:7a:b4:bf:
59:b8:c8:8f:da:c4:d7:e5:31:9f:f5:2f:0f:63:e9:
17:c9:72:f8:7e:09:66:0f:36:96:f8:5d:a8:9b:48:
b7:37:12:4c:34:7f:c2:e8:72:93:e5:53:a6:97:9a:
61:e3:00:14:61:0a:0f:66:ca:94:3b:fb:4d:ce:22:
a0:bc:fb:48:ee:87:d6:1d:f8:74:e6:f7:2a:bc:52:
43:f2:11:27:5f:63:9b:2f:44:35:a8:a9:17:de:51:
cd:9d:ff:42:d0:55:16:87:a5:2f:db:b8:9f:40:48:
e3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FF:E4:D2:47:23:F0:AB:50:48:26:FA:48:A6:9A:75:61:25:7F:A1
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/sv_k0kcj8KtQSCb6SKaadWElf6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.248.0/24
Signature Algorithm: sha256WithRSAEncryption
89:99:97:af:96:55:b4:37:54:d9:de:71:5c:08:03:83:2a:31:
f8:83:af:e8:9f:f7:f0:54:69:d0:b7:ef:49:55:dd:04:3e:b2:
a2:86:86:99:77:99:23:7b:71:98:89:d7:f8:ba:3c:a4:8f:a0:
9c:8b:d0:9d:60:5a:32:b8:4b:a8:c8:b2:e1:bd:62:9b:78:3a:
bd:f6:c4:ea:98:90:1a:33:8c:ed:65:68:51:25:df:d3:1f:bc:
be:3b:cb:9a:a3:0d:8a:00:74:fc:bf:fc:55:0f:b6:e1:61:ec:
28:10:45:d6:a7:df:49:76:3e:0e:79:5c:e2:48:da:37:58:70:
59:bf:fb:86:6b:36:e8:0b:bf:09:ba:8c:93:0b:26:40:c6:1e:
c5:86:91:15:09:a7:87:3f:91:f8:e9:80:32:bf:f0:78:dd:f4:
63:1b:37:7e:da:25:d3:19:70:4b:98:d8:52:4e:d6:8a:20:b6:
b6:d7:b6:2e:1c:3c:61:fa:45:29:50:4d:08:78:1d:75:b6:19:
96:9a:93:43:60:06:b7:3a:ae:a1:81:0c:91:66:bb:62:bb:13:
8d:b0:a8:89:50:ef:c1:ce:2a:48:94:e2:4d:e5:b7:d9:0a:28:
8c:97:4d:9c:d5:80:7c:2d:74:fd:e4:7f:dd:da:6c:2c:fb:18:
7c:ba:57:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:26 2023 by rpki-client on console-fra.rpki-client.org