Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/CXzTILhDgXtMjSnAu0I7ceTM8vI.roa
File: CXzTILhDgXtMjSnAu0I7ceTM8vI.roa (raw, json)
Hash identifier: CFi/TGPhOqz/03iRvgqTloXiJhxydXIA3j3Pt9mxW4Y=
Subject key identifier: 09:7C:D3:20:B8:43:81:7B:4C:8D:29:C0:BB:42:3B:71:E4:CC:F2:F2
Certificate issuer: /CN=e74c290b5bccdb7de5383ee45ba615d2f306761f
Certificate serial: 04F0C733
Authority key identifier: E7:4C:29:0B:5B:CC:DB:7D:E5:38:3E:E4:5B:A6:15:D2:F3:06:76:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/50wpC1vM233lOD7kW6YV0vMGdh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/CXzTILhDgXtMjSnAu0I7ceTM8vI.roa
Signing time: Sat 01 Jan 2022 02:01:45 +0000
ROA not before: Sat 01 Jan 2022 02:01:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60239
IP address blocks: 185.34.202.0/24 maxlen: 24
2a04:5ec0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82888499 (0x4f0c733)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74c290b5bccdb7de5383ee45ba615d2f306761f
Validity
Not Before: Jan 1 02:01:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=097cd320b843817b4c8d29c0bb423b71e4ccf2f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d2:b3:28:e4:cd:31:bd:69:78:a0:30:70:91:
8a:fc:93:c2:4f:32:e2:cb:0a:6d:d0:1c:2c:8e:58:
62:25:c2:e9:fb:a4:9b:24:c8:af:f7:d6:2d:89:f9:
f7:67:2d:73:21:91:12:a0:df:62:d6:98:8c:92:66:
97:b5:b2:3a:41:6d:be:9d:24:c2:b5:e1:e0:41:1c:
0e:81:8d:7a:bc:9d:15:92:59:86:24:27:19:0d:f5:
92:04:15:06:22:1a:bc:d3:93:68:8a:bd:5b:20:7e:
37:d6:c7:97:4d:39:fb:c3:db:cc:9a:0f:28:d5:50:
72:90:b2:d4:24:b7:0c:d5:73:de:93:a0:0c:e6:fa:
09:9d:11:cb:8b:03:fb:3a:1b:15:a3:e7:79:8f:06:
c0:c1:ae:00:e3:4e:c6:ee:89:4c:6a:d8:20:e7:36:
bc:30:9c:9d:d5:83:46:84:69:b9:70:9b:e0:85:21:
b8:18:9a:fd:97:42:80:29:02:f0:9c:92:ab:84:ae:
d6:85:4d:39:1c:8d:dc:a1:3b:10:c6:e0:92:6e:be:
9c:bd:a9:ea:04:31:26:21:c7:37:0a:f6:1d:32:7c:
0b:fd:a6:ca:c1:9f:1b:a2:90:c0:5e:c1:1a:88:5e:
a2:ed:bf:2f:cd:84:db:04:e4:8b:16:de:60:64:ac:
cf:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:7C:D3:20:B8:43:81:7B:4C:8D:29:C0:BB:42:3B:71:E4:CC:F2:F2
X509v3 Authority Key Identifier:
keyid:E7:4C:29:0B:5B:CC:DB:7D:E5:38:3E:E4:5B:A6:15:D2:F3:06:76:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/50wpC1vM233lOD7kW6YV0vMGdh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/CXzTILhDgXtMjSnAu0I7ceTM8vI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/50wpC1vM233lOD7kW6YV0vMGdh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.202.0/24
IPv6:
2a04:5ec0::/29
Signature Algorithm: sha256WithRSAEncryption
3a:1f:f6:25:37:71:ea:7d:0f:68:e8:02:cb:39:33:fe:f5:9c:
d8:32:38:d6:a5:60:06:b4:95:e1:ba:3a:94:e7:10:66:e3:79:
ad:69:86:f4:bd:ed:43:d7:64:d1:13:44:1d:17:c8:4b:4a:2c:
d4:2a:6a:eb:d9:4b:c7:71:f6:fd:15:b0:f5:fb:3d:6b:fe:ba:
f0:8a:9f:bd:01:40:ea:7c:fd:df:ae:e2:3b:a3:94:72:8e:44:
65:d8:02:f1:15:57:a0:c8:a4:bc:12:19:d3:37:d2:14:34:74:
22:79:ff:ec:28:d7:70:9a:bd:a2:ec:f5:d2:ec:11:c8:5a:51:
9b:1d:19:e5:90:ba:af:62:a7:b3:b9:f8:dd:1a:d4:ba:d8:e6:
68:6a:af:b8:4b:88:8c:00:a3:79:09:cd:3d:f0:d1:8f:b5:3d:
a3:6c:ff:2c:72:bc:19:76:bc:87:c0:56:9c:94:f5:40:04:c8:
fc:32:9f:c0:52:91:a4:1c:c6:c5:32:9a:82:d7:ab:44:a3:d6:
f5:28:b1:f3:3e:6b:8b:e6:29:b7:bd:7b:c3:b9:6e:98:29:cb:
d3:d1:c5:eb:cb:d1:0c:cc:12:93:16:0d:b9:25:eb:e6:62:72:
9e:07:8f:db:64:13:89:0d:4f:d0:e5:14:3b:64:54:be:be:cb:
f0:c0:33:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:01 2024 by rpki-client on console-ams.rpki-client.org