Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/cZlYeFQVSvU5XZ8Nfv8-3DXFM70.roa
File: cZlYeFQVSvU5XZ8Nfv8-3DXFM70.roa (raw, json)
Hash identifier: nE2iWAaEQxLKWqSdhWlJlvY41Uz4XySFL23goFqUWRg=
Subject key identifier: 71:99:58:78:54:15:4A:F5:39:5D:9F:0D:7E:FF:3E:DC:35:C5:33:BD
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 09C64684
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/cZlYeFQVSvU5XZ8Nfv8-3DXFM70.roa
Signing time: Wed 22 Jun 2022 00:21:44 +0000
ROA not before: Wed 22 Jun 2022 00:21:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22653
IP address blocks: 185.230.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163989124 (0x9c64684)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 22 00:21:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7199587854154af5395d9f0d7eff3edc35c533bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:13:3b:76:f8:9e:1d:b3:80:6d:18:9e:c9:09:
e3:e7:92:7b:51:f4:37:a9:fe:de:69:ce:b4:e6:65:
c5:8b:ca:b4:df:d6:3f:4d:82:ef:a6:46:7f:44:4d:
e5:a4:e9:3f:79:21:15:72:19:cc:08:8f:ef:17:89:
f6:a8:3a:ab:66:eb:c4:2d:0d:38:a9:df:85:b5:23:
90:c1:d8:38:b6:da:3b:63:90:12:91:7b:dd:d3:6f:
1e:15:bf:28:18:d4:9c:16:77:ac:42:ee:5d:82:2e:
83:43:34:af:5b:69:75:2b:6d:43:16:22:97:1c:bc:
4b:21:4d:66:2e:38:c2:29:a9:5f:dd:f7:bb:b7:cd:
5b:d3:2b:f8:00:1a:f4:b3:57:cd:f3:2e:18:28:8d:
d6:45:d1:4c:cf:ba:e4:42:ae:ae:2e:e1:c4:70:82:
78:b2:63:49:50:0f:2b:60:1f:0d:69:fa:4a:d4:9b:
4a:4a:5d:8c:d4:6a:a4:60:ce:6b:08:1d:2f:8c:d9:
33:17:91:6b:f4:24:61:f7:1b:8d:65:e7:d7:bd:3c:
8f:23:cf:d7:6a:ad:18:7c:49:d1:e8:26:0e:16:ee:
58:7a:98:3e:72:ae:d4:f8:03:c0:f2:3f:27:6e:41:
fc:e5:37:66:c5:3b:b9:b2:58:58:d2:8c:8b:93:45:
dd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:99:58:78:54:15:4A:F5:39:5D:9F:0D:7E:FF:3E:DC:35:C5:33:BD
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/cZlYeFQVSvU5XZ8Nfv8-3DXFM70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.15.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:13:61:69:94:04:fa:29:8c:5d:60:9b:76:9c:ec:f1:e3:42:
a3:35:34:43:cf:7e:e2:d7:b7:94:ef:d1:5e:a1:3e:4d:31:8b:
11:39:f9:a8:23:60:0d:f6:dc:f6:48:eb:6a:d9:38:07:fd:9a:
2b:78:bf:41:62:77:10:b1:d7:63:28:12:61:3d:25:4f:4b:d0:
5c:9f:b4:b8:79:c1:78:69:b0:c4:79:d0:0a:8f:17:c4:c1:1f:
40:88:b7:98:d9:b7:97:7a:61:94:89:0a:6b:9f:e3:99:fd:2c:
3c:fa:d1:90:21:90:6b:20:0b:92:e0:70:c3:2f:8f:c7:1c:9f:
4d:43:26:39:73:e5:07:9d:b6:d0:15:73:33:9f:bb:13:7a:27:
34:a4:70:70:8d:66:20:36:74:da:17:78:6e:90:9e:22:34:8e:
de:8c:ef:51:f6:7d:25:b1:d5:d8:65:f3:ed:2e:6d:22:ad:b8:
9c:03:4b:94:8a:10:57:42:00:cb:66:b3:3f:4c:56:e0:0e:10:
55:f9:a7:1e:1d:9d:a3:ac:cb:6d:5d:74:a4:10:09:13:23:3c:
8f:09:5d:e1:50:30:cc:19:40:2f:28:04:dc:09:e2:07:8f:2b:
65:50:da:ad:79:b6:0c:e6:c0:1c:dc:b9:42:1e:03:aa:65:1d:
96:a7:60:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:25 2024 by rpki-client on console-ams.rpki-client.org