Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/LRYfGoo-AODrfzRSBA0hkod-JXc.roa
File: LRYfGoo-AODrfzRSBA0hkod-JXc.roa (raw, json)
Hash identifier: 2S7aZYtgWixMrWhyo02VGhgkwfpaBe6w7JVVXbevf2Y=
Subject key identifier: 2D:16:1F:1A:8A:3E:00:E0:EB:7F:34:52:04:0D:21:92:87:7E:25:77
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 03898B97
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/LRYfGoo-AODrfzRSBA0hkod-JXc.roa
Signing time: Sat 01 Jan 2022 15:57:27 +0000
ROA not before: Sat 01 Jan 2022 15:57:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211293
IP address blocks: 185.93.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59345815 (0x3898b97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Jan 1 15:57:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d161f1a8a3e00e0eb7f3452040d2192877e2577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1f:e7:ea:f9:f5:7f:19:f5:2f:f9:ef:b6:1b:
ce:ce:bf:9f:14:f5:3a:6c:24:1a:f0:6e:ea:7d:bb:
47:7f:00:55:2d:6f:e7:ee:66:7e:77:cb:84:fa:9e:
87:f8:ec:aa:1e:56:fe:10:9e:4e:f1:82:7d:08:96:
ed:57:7b:0b:23:b1:80:3a:9e:bb:d3:77:f8:af:09:
6d:d3:75:76:f4:b0:dd:90:67:f7:a1:f3:54:4f:f8:
67:1e:12:38:50:b0:95:c3:08:23:10:4a:d5:40:7e:
45:a2:17:26:e0:56:c6:e3:06:c1:e5:20:6a:dc:2f:
73:b9:13:5a:e1:76:38:e5:04:d2:1e:a0:a5:64:47:
8c:d4:90:18:f2:07:f5:7c:68:1d:4b:4c:42:a8:98:
ff:ae:81:b4:06:00:be:22:b4:73:0c:2f:f8:23:18:
71:cf:0b:2c:e4:eb:bc:36:95:f4:ee:68:75:6f:0b:
13:7e:33:2e:37:09:47:aa:fe:18:cf:54:4c:5f:e4:
6f:2a:ea:00:28:b4:c1:52:e0:9a:5d:ae:6c:e7:f9:
06:e8:ea:b0:21:1b:45:61:86:43:62:c0:52:cf:bb:
ae:aa:5b:a2:47:46:47:57:9c:d0:fd:4e:b6:f8:67:
6d:38:ac:a4:ea:02:fe:b3:d8:90:28:52:c9:c3:a0:
a4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:16:1F:1A:8A:3E:00:E0:EB:7F:34:52:04:0D:21:92:87:7E:25:77
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/LRYfGoo-AODrfzRSBA0hkod-JXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.220.0/22
Signature Algorithm: sha256WithRSAEncryption
41:e9:15:61:e9:9a:63:b1:01:87:3c:63:bd:63:6a:ae:ba:c3:
3a:5c:ce:a7:9b:72:24:fa:b4:fb:9e:72:18:20:17:cc:40:70:
cf:63:bb:53:7e:e7:b0:45:05:f5:21:4b:f9:16:8d:13:e8:a1:
2a:f5:f7:7c:3a:6c:11:59:44:e4:ba:84:b3:1f:d3:c1:f6:75:
18:7d:5b:f0:9d:a0:a1:10:63:cb:18:37:f1:4c:8c:21:7a:8c:
b9:f6:27:96:e6:75:22:21:a6:61:49:a4:a0:e0:59:26:fb:bd:
fc:5b:26:0a:bb:6e:06:98:9c:9b:fb:37:c6:66:25:f5:af:91:
12:47:1c:14:6f:fd:a7:2e:7f:64:e4:24:d3:87:03:d3:14:3c:
a8:7c:ae:bc:b0:99:76:cc:a0:b0:2d:2a:5d:e2:fb:01:28:34:
fe:15:df:0a:e9:3b:92:ce:5d:fe:77:e1:eb:ba:a4:c6:af:d0:
39:58:12:04:45:9d:3b:12:71:ea:fa:6c:2f:24:d5:c4:15:d2:
0a:68:d8:e3:18:4d:ef:69:59:09:34:dd:0d:98:8c:9f:13:89:
f2:e3:6f:0e:c9:d1:0b:2a:ea:af:00:f6:33:01:d9:bd:23:e0:
d3:a4:5a:95:43:3a:16:4b:86:ca:e1:74:a2:5b:22:82:83:b0:
bf:98:88:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-ams.rpki-client.org