Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/SBVKGElIFJJDJ8kLXa422RaO7tM.roa
File: SBVKGElIFJJDJ8kLXa422RaO7tM.roa (raw, json)
Hash identifier: iGldbSxBLIXfu9QX3qJbq7krfdW9FHwJd5HOg/XYYCk=
Subject key identifier: 48:15:4A:18:49:48:14:92:43:27:C9:0B:5D:AE:36:D9:16:8E:EE:D3
Certificate issuer: /CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Certificate serial: 0E1F8BBF
Authority key identifier: 43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/SBVKGElIFJJDJ8kLXa422RaO7tM.roa
Signing time: Sat 01 Jan 2022 08:56:44 +0000
ROA not before: Sat 01 Jan 2022 08:56:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199244
IP address blocks: 185.3.192.0/22 maxlen: 22
2a02:5f40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 236948415 (0xe1f8bbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Validity
Not Before: Jan 1 08:56:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48154a18494814924327c90b5dae36d9168eeed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:62:4e:93:7a:5f:45:9d:ec:2c:e8:f6:8e:3e:
b6:90:5c:3b:82:41:85:fa:18:b6:70:31:e2:fc:19:
3f:cb:bd:87:a9:7e:2c:49:32:4e:f1:f8:58:df:ff:
18:1b:d4:e8:49:3f:44:89:6d:98:2b:a6:52:5e:f9:
85:11:59:cc:86:27:0b:39:b0:5a:79:bb:14:3b:8f:
5b:28:f2:c0:fe:12:57:15:17:5d:f6:c9:41:a6:0d:
d6:6e:0b:e1:97:68:53:b2:14:b0:0f:9f:18:b9:91:
c6:fd:5a:15:0a:71:85:b8:d3:2e:49:64:b7:c0:11:
6e:2a:17:a0:f4:e0:61:00:76:8e:4c:10:25:2c:a7:
bc:b6:37:a4:d9:fd:5f:2d:7c:27:75:59:6d:a2:26:
1d:7e:73:61:0f:a3:55:c2:3c:46:48:9b:6a:cd:0e:
87:8a:c3:89:e1:bb:6a:40:38:fe:d2:76:17:45:b1:
7c:a9:8c:c9:32:8e:b7:58:e9:ef:b5:a7:e4:82:df:
ef:88:7b:ed:98:45:d4:80:27:ac:7e:9e:5f:70:1c:
d9:0b:98:d6:34:9f:54:c8:da:f3:7e:e3:0b:a3:02:
46:da:c8:4d:0c:5b:45:bc:0e:fd:d3:2f:74:1e:ff:
4c:8f:2e:bb:b3:e0:cc:13:40:02:f3:32:9a:1f:62:
18:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:15:4A:18:49:48:14:92:43:27:C9:0B:5D:AE:36:D9:16:8E:EE:D3
X509v3 Authority Key Identifier:
keyid:43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/SBVKGElIFJJDJ8kLXa422RaO7tM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.3.192.0/22
IPv6:
2a02:5f40::/32
Signature Algorithm: sha256WithRSAEncryption
4c:31:1d:62:24:17:94:e7:ce:5e:87:aa:b7:37:b2:e8:d3:6f:
e6:2e:b0:88:be:a8:32:49:2f:82:7d:94:f9:69:3e:ca:c5:e3:
26:79:f0:ab:6c:8c:b1:6c:53:ea:c9:71:88:74:e3:e2:11:a9:
2f:c6:26:79:3e:74:51:c7:5d:20:a0:89:a9:11:9c:3c:c2:b5:
29:bd:93:2c:3c:11:13:ff:56:b9:8f:56:e4:af:c3:d2:e1:0b:
21:7b:c5:f0:79:fd:f5:c7:fc:f2:7a:95:fc:c7:d9:b4:62:14:
51:b2:0d:4f:97:77:12:55:1c:54:4c:c1:6f:7d:90:b7:72:fd:
b4:f9:52:22:c2:98:d8:36:41:7a:46:50:43:fe:21:47:d3:c1:
d1:71:02:63:7e:c0:2b:6b:fe:61:8f:3e:b0:e3:c7:30:03:81:
79:7a:0f:08:b3:15:74:1b:e9:4f:4b:ea:27:d7:74:3d:ef:c7:
9a:8a:35:01:fc:f5:ee:6f:67:88:72:ff:64:b4:e6:9f:3c:9d:
7a:d3:d0:8f:85:2e:ab:10:95:5f:aa:4e:ae:b7:d5:7b:e4:95:
2b:83:cd:15:31:f7:77:02:9f:90:5d:71:58:74:d8:9c:52:a5:
98:f1:88:f2:26:27:e5:0a:94:dd:bf:f7:80:ba:7a:7f:f9:88:
34:cc:53:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:04 2024 by rpki-client on console-ams.rpki-client.org