Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/sXqxfLMqSJWOwbWhsPjx6s8hf2k.roa
File: sXqxfLMqSJWOwbWhsPjx6s8hf2k.roa (raw, json)
Hash identifier: QXCrX/Flnnmo7JpGguwa9sW8fnrODeQKpGZLyqdekZI=
Subject key identifier: B1:7A:B1:7C:B3:2A:48:95:8E:C1:B5:A1:B0:F8:F1:EA:CF:21:7F:69
Certificate issuer: /CN=070483d3d62f19c0835746dcb721c8832c3b7926
Certificate serial: 02FF2930
Authority key identifier: 07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/sXqxfLMqSJWOwbWhsPjx6s8hf2k.roa
Signing time: Wed 16 Feb 2022 07:12:32 +0000
ROA not before: Wed 16 Feb 2022 07:12:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60619
IP address blocks: 185.249.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50276656 (0x2ff2930)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=070483d3d62f19c0835746dcb721c8832c3b7926
Validity
Not Before: Feb 16 07:12:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b17ab17cb32a48958ec1b5a1b0f8f1eacf217f69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d9:ff:8a:ec:31:94:b4:f7:f3:f1:96:fe:3a:
58:ee:d0:84:14:ec:03:f7:c0:be:0b:0e:37:4a:ad:
4c:f4:2c:8e:d6:19:bb:d4:ac:2d:1e:f5:6a:e5:b9:
2d:b7:18:cc:62:02:4a:97:26:39:40:40:59:2f:19:
b1:26:3b:66:34:dc:9b:42:2c:e2:9e:95:1a:a1:1b:
45:02:70:e2:de:77:29:ef:22:1f:57:2c:ab:de:46:
f5:c6:63:f6:3b:37:71:1a:4e:63:19:da:c1:f7:cd:
b2:9d:3a:41:0e:c5:2c:83:ec:84:26:1c:e4:b0:ba:
25:7c:e0:35:eb:33:f6:3a:c3:77:c2:a6:f6:1a:2b:
79:d7:73:a0:c4:b8:ef:1b:98:56:f0:14:a0:29:e7:
5d:0c:6e:3c:97:8b:6e:8e:f0:ce:cc:21:82:71:68:
cd:1e:f4:98:f7:d4:ee:ad:e0:d6:c3:44:9e:d8:c6:
45:e1:b3:cb:48:43:d6:95:ca:20:ea:db:68:8c:d4:
47:5f:b1:fd:70:e4:e5:ab:32:48:2d:7b:05:09:ef:
e4:eb:76:5a:e2:67:05:06:0a:7f:8f:38:1d:7c:be:
40:be:c9:02:22:c7:ea:9d:ee:ed:e5:ad:63:3b:65:
f8:7d:a0:ce:95:11:76:52:7c:00:0a:3f:75:53:73:
6a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:7A:B1:7C:B3:2A:48:95:8E:C1:B5:A1:B0:F8:F1:EA:CF:21:7F:69
X509v3 Authority Key Identifier:
keyid:07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/sXqxfLMqSJWOwbWhsPjx6s8hf2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/BwSD09YvGcCDV0bctyHIgyw7eSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.144.0/22
Signature Algorithm: sha256WithRSAEncryption
74:a9:af:9f:af:b3:45:53:d4:82:b0:f8:85:77:9d:39:e1:fb:
4b:9c:77:9f:30:a0:10:6b:bb:51:fe:5c:7f:71:06:c9:93:ba:
f3:a1:26:6a:39:b3:a7:a5:42:ef:c5:84:b0:21:ea:3e:64:63:
d9:8e:0c:b0:99:89:c5:8e:61:b0:6e:a6:22:73:53:37:0c:01:
c5:e9:45:40:5e:3e:ef:9b:9f:99:af:a4:51:b8:2f:b5:ee:79:
9b:cc:fa:75:fe:bd:f1:44:a2:79:ac:a1:2e:56:78:d7:5b:bd:
75:34:9b:7d:0c:d1:76:e3:2f:3e:e0:5c:ae:68:71:34:5c:61:
7c:29:74:a2:5b:3b:37:ef:55:e6:bf:77:88:f9:fe:97:38:a6:
45:94:96:e1:62:ea:12:4e:46:3a:4a:2f:dd:c7:a1:13:4a:0d:
a4:d3:33:9a:05:c3:c2:36:29:64:d0:5c:1f:be:1c:15:d9:53:
12:5a:05:1b:ec:cc:97:31:1f:41:06:63:5d:35:46:c8:ca:b8:
41:74:26:15:67:e4:0c:2c:4f:56:15:38:73:86:40:50:45:5c:
74:ba:cf:75:5c:5b:a2:dc:e3:de:ca:16:39:27:74:15:b3:4a:
17:56:c6:7a:61:81:bc:1d:20:19:80:88:93:dc:16:5a:43:cf:
8c:1b:c3:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:03 2024 by rpki-client on console-fra.rpki-client.org