Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/346966-069a-40b0-b143-41eaa1fde11b/1/sNGbELXosCz4WMzpUX6htYiP2vo.roa
File: sNGbELXosCz4WMzpUX6htYiP2vo.roa (raw, json)
Hash identifier: 6fNF2fyviirUAULfz57BobobJ/13HwtUSNzyE0TmQNM=
Subject key identifier: B0:D1:9B:10:B5:E8:B0:2C:F8:58:CC:E9:51:7E:A1:B5:88:8F:DA:FA
Certificate issuer: /CN=6689c3995e2461d5a52fd4f1000782f99a4d4822
Certificate serial: 02CF66EF
Authority key identifier: 66:89:C3:99:5E:24:61:D5:A5:2F:D4:F1:00:07:82:F9:9A:4D:48:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZonDmV4kYdWlL9TxAAeC-ZpNSCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/346966-069a-40b0-b143-41eaa1fde11b/1/sNGbELXosCz4WMzpUX6htYiP2vo.roa
Signing time: Sat 01 Jan 2022 05:57:55 +0000
ROA not before: Sat 01 Jan 2022 05:57:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24577
IP address blocks: 185.108.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47146735 (0x2cf66ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6689c3995e2461d5a52fd4f1000782f99a4d4822
Validity
Not Before: Jan 1 05:57:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0d19b10b5e8b02cf858cce9517ea1b5888fdafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a0:03:34:c2:48:19:25:f7:d5:1e:65:92:cd:
ea:73:4e:6d:95:d5:91:97:76:d9:47:76:cd:df:d1:
50:88:7c:f3:df:fd:77:88:14:8a:26:36:5f:68:51:
fa:d6:f3:46:fa:15:f5:1c:96:a6:0a:74:e0:85:4e:
e2:b4:6a:29:ea:f8:f4:d0:41:d1:66:28:b9:ee:43:
25:2e:0a:04:b9:f4:64:0c:f8:53:a1:03:79:b6:7a:
d8:1f:d1:0e:c3:83:f5:1a:50:9a:fa:af:4e:38:64:
52:e8:b8:03:42:c7:22:66:9d:cf:a1:37:7c:88:53:
c4:fb:42:ce:83:f6:0c:48:c2:e3:6d:d5:71:55:e3:
57:f7:a4:aa:d6:ab:c0:8c:90:c5:ed:9b:fb:f5:df:
4b:28:5b:c9:56:11:d1:c3:a8:4e:2d:16:f0:a9:63:
e9:94:cd:ab:22:b7:c0:b8:14:a1:6a:51:90:41:67:
bc:b5:0a:34:b1:c8:37:75:30:3e:b1:c4:76:5e:e3:
f3:a2:66:48:7c:00:91:b3:b5:b0:60:96:5d:4c:c5:
59:ec:03:80:7a:c6:21:f8:3c:af:b9:9b:8f:cc:2d:
b2:b3:51:96:f5:51:d9:c8:c1:f5:fd:85:6e:99:37:
ad:0c:f3:15:97:df:e9:78:f5:49:d2:ee:ed:ff:41:
8d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D1:9B:10:B5:E8:B0:2C:F8:58:CC:E9:51:7E:A1:B5:88:8F:DA:FA
X509v3 Authority Key Identifier:
keyid:66:89:C3:99:5E:24:61:D5:A5:2F:D4:F1:00:07:82:F9:9A:4D:48:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZonDmV4kYdWlL9TxAAeC-ZpNSCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/346966-069a-40b0-b143-41eaa1fde11b/1/sNGbELXosCz4WMzpUX6htYiP2vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/346966-069a-40b0-b143-41eaa1fde11b/1/ZonDmV4kYdWlL9TxAAeC-ZpNSCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.68.0/22
Signature Algorithm: sha256WithRSAEncryption
14:8a:81:96:b2:bc:c1:87:00:c8:37:0f:27:12:ae:0c:c0:46:
d9:e3:d3:30:b7:ec:24:e5:07:a3:c9:ee:f3:20:c4:b2:5d:94:
88:fc:61:a2:42:8d:57:9b:a4:fa:f6:3b:fd:84:dc:18:9c:7d:
e8:af:0f:f3:a5:3b:48:fc:5a:ce:39:8c:8e:b5:59:12:07:9d:
36:a1:0f:3f:9c:6b:8e:6a:4c:56:d1:f3:06:f7:98:f4:59:e3:
9d:ca:55:ec:34:ca:2c:1e:3b:4a:ba:c9:38:6c:f1:14:56:3a:
74:39:43:a1:0b:69:af:c5:93:11:72:74:52:b3:c5:8a:19:10:
bc:1f:61:c4:60:3b:26:95:4c:73:da:c0:a8:b7:88:4f:c4:68:
f2:0d:2a:10:fa:5d:fc:fb:ac:1f:f0:b6:0e:2d:e1:90:6d:78:
0d:40:99:07:5a:6e:1b:7d:a9:03:bc:78:85:cb:22:3f:b2:1a:
ea:9c:1b:8f:74:96:a6:81:b3:1e:2f:ab:f8:57:e4:61:aa:a7:
e9:67:1a:08:ae:38:9a:27:48:03:ce:63:ea:08:14:2e:20:1c:
60:a7:50:d7:f7:61:dd:68:a1:ee:5f:bc:c0:e1:53:ca:d3:31:
90:08:75:fb:4a:86:89:77:dc:0a:d0:6d:fc:72:64:63:e7:52:
7c:a5:e3:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:01 2024 by rpki-client on console-fra.rpki-client.org