Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9Sa9y1hXSY3zBVELI6LUJfGQupE.roa
File: 9Sa9y1hXSY3zBVELI6LUJfGQupE.roa (raw, json)
Hash identifier: iKuTuxzxTAM3gSOi8ViC2VH5EsA9r4E2gVbKu57aqCo=
Subject key identifier: F5:26:BD:CB:58:57:49:8D:F3:05:51:0B:23:A2:D4:25:F1:90:BA:91
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 018513B0D1E92C7EF00F5B7F0D28BD28A5BE
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9Sa9y1hXSY3zBVELI6LUJfGQupE.roa
Signing time: Thu 15 Dec 2022 02:50:33 +0000
ROA not before: Thu 15 Dec 2022 02:50:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 185.93.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:13:b0:d1:e9:2c:7e:f0:0f:5b:7f:0d:28:bd:28:a5:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Dec 15 02:50:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f526bdcb5857498df305510b23a2d425f190ba91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3e:5f:1e:d7:ea:a5:72:e2:6c:12:ed:11:16:
be:c8:d4:6f:82:e8:39:76:05:99:77:9b:72:a8:f1:
e5:fd:4a:fb:c4:6b:97:da:e9:ea:e6:1e:42:d4:d5:
f0:57:80:34:bf:3e:fa:09:dd:f6:c5:dc:1e:1b:75:
dc:f3:b8:2b:e3:06:7b:f3:ce:4c:6b:42:5c:6c:14:
7a:fa:5e:75:95:a2:59:f9:aa:80:00:bd:de:de:c3:
c0:a0:29:50:88:6b:e9:61:35:cd:96:c1:af:b6:2b:
17:49:ca:a6:d2:79:86:27:36:1d:13:a7:42:e6:73:
f0:19:e2:82:92:49:09:23:68:6f:c2:dc:ac:85:b9:
ff:e0:74:12:9b:aa:54:46:ca:3f:63:97:83:ce:06:
5d:a4:b0:99:35:37:d3:b9:24:f4:40:5f:19:6a:f8:
80:23:b2:5a:5a:9f:74:6c:84:cf:d1:c8:a1:2e:f8:
da:5b:4f:e9:6d:ec:90:92:10:be:5a:1e:a1:6e:2b:
a2:02:bb:cf:b0:38:3a:4e:c8:b3:79:eb:91:37:c6:
2d:db:a7:2b:6c:4c:be:ca:76:18:61:9c:d3:f0:91:
b4:0d:52:9d:49:cb:ed:37:e1:b6:d9:a2:57:2e:c2:
30:51:c0:c3:67:a7:cc:1f:12:48:eb:96:9d:c7:a6:
2a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:26:BD:CB:58:57:49:8D:F3:05:51:0B:23:A2:D4:25:F1:90:BA:91
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9Sa9y1hXSY3zBVELI6LUJfGQupE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.222.0/24
Signature Algorithm: sha256WithRSAEncryption
99:2c:08:6f:32:3b:80:27:50:8f:1c:a2:cc:f9:ba:f6:1f:d7:
73:79:88:35:cb:00:09:c8:89:85:79:fd:f5:f5:08:8f:7a:2b:
9a:f5:fd:59:7f:67:2c:2d:d0:91:ae:5e:b5:89:f1:06:98:99:
b0:fa:5f:17:c6:2a:c5:60:f1:20:5b:60:b8:3c:c6:fd:a5:78:
6f:9b:60:94:3a:f1:5f:ba:d3:b5:ed:2f:62:be:2e:6e:38:a4:
30:7a:2c:14:aa:d4:18:17:0d:03:d8:5f:a1:81:28:5b:d8:c9:
21:88:48:83:7e:08:5c:4e:99:93:e5:64:7e:66:8c:fb:4a:48:
4c:6e:19:e8:57:14:f2:44:1b:53:33:e6:bd:11:68:7e:a3:6f:
bc:53:9a:96:85:67:8b:24:f4:69:ec:5d:31:53:9f:14:26:ea:
30:dc:96:d0:85:e7:25:5b:20:48:0f:20:b4:6c:b2:64:7f:cc:
02:b2:49:0d:4f:ef:36:0c:85:f6:d0:a7:e0:56:01:d4:8f:1b:
85:ee:49:dc:fe:22:d3:4c:65:72:89:b4:e1:c6:bd:4e:da:e4:
ee:d2:9c:83:d5:90:fb:40:68:21:01:29:65:d5:32:00:ea:3d:
d5:d5:4f:dd:f1:af:8c:3c:61:f2:54:1e:02:db:b7:ba:a1:fc:
9d:6d:7b:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org