Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/64df8e-4b04-4223-8467-9939df1d0d09/1/k00xuEJxzKBfzKth6aMUenSDCqE.roa
File: k00xuEJxzKBfzKth6aMUenSDCqE.roa (raw, json)
Hash identifier: lm6aCikVBviXRXJ1z/r5+ZhHQrhSspDMUfuVtgx5zSE=
Subject key identifier: 93:4D:31:B8:42:71:CC:A0:5F:CC:AB:61:E9:A3:14:7A:74:83:0A:A1
Certificate issuer: /CN=14fb7c3336acd4189d3fac639a280d9b0020f298
Certificate serial: 057E7AE7
Authority key identifier: 14:FB:7C:33:36:AC:D4:18:9D:3F:AC:63:9A:28:0D:9B:00:20:F2:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FPt8Mzas1BidP6xjmigNmwAg8pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/64df8e-4b04-4223-8467-9939df1d0d09/1/k00xuEJxzKBfzKth6aMUenSDCqE.roa
Signing time: Sat 01 Jan 2022 12:56:26 +0000
ROA not before: Sat 01 Jan 2022 12:56:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.90.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92175079 (0x57e7ae7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14fb7c3336acd4189d3fac639a280d9b0020f298
Validity
Not Before: Jan 1 12:56:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=934d31b84271cca05fccab61e9a3147a74830aa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:15:ff:bf:c4:94:0a:4d:2a:ed:da:1b:69:e8:
8d:4b:7e:07:d3:f2:5b:4c:f8:ed:88:b4:02:ba:06:
ba:da:5b:23:e0:6e:2a:6e:c2:42:2d:36:90:c5:ef:
7a:2c:5f:d0:9e:e9:0f:a2:ef:3d:ec:19:ca:4e:ca:
99:97:b8:46:00:28:a2:1b:b2:81:c1:e5:4b:de:64:
c9:c6:69:c0:58:53:0c:9e:e5:ee:9c:6c:c9:ea:4c:
a7:37:1b:61:09:1a:f5:71:4c:08:6c:4e:b0:5a:6e:
43:e3:bc:58:cb:3f:74:13:81:af:26:a8:67:f2:17:
31:e6:4a:56:cf:e3:04:ec:1e:19:c6:a4:11:37:31:
fb:c4:aa:4d:70:3d:1f:2f:fb:b7:84:2a:8d:16:6e:
eb:8f:8b:a4:be:00:0e:7f:9b:57:2a:2c:13:d1:a9:
91:7e:37:20:af:89:0e:f9:7a:5d:2e:16:99:aa:b3:
7e:29:a5:d8:da:db:c4:50:77:a4:e0:6c:f5:f4:fd:
82:11:71:4e:0b:dd:9c:76:f2:0a:87:21:3a:38:4e:
56:fd:b0:88:8f:bf:2a:bd:61:25:9b:6b:11:02:78:
a4:37:90:bd:bb:c8:80:bb:b4:de:52:7f:6d:76:e2:
36:f6:c6:18:07:d8:e6:4c:89:86:47:94:b2:8e:bf:
f6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:4D:31:B8:42:71:CC:A0:5F:CC:AB:61:E9:A3:14:7A:74:83:0A:A1
X509v3 Authority Key Identifier:
keyid:14:FB:7C:33:36:AC:D4:18:9D:3F:AC:63:9A:28:0D:9B:00:20:F2:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FPt8Mzas1BidP6xjmigNmwAg8pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/64df8e-4b04-4223-8467-9939df1d0d09/1/k00xuEJxzKBfzKth6aMUenSDCqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/64df8e-4b04-4223-8467-9939df1d0d09/1/FPt8Mzas1BidP6xjmigNmwAg8pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.119.0/24
Signature Algorithm: sha256WithRSAEncryption
26:8c:d5:95:6a:d2:70:1e:4f:c9:5c:e0:13:bb:83:5a:a2:ce:
7b:7e:df:5e:22:1d:a9:4f:59:c9:c3:02:58:66:cf:19:fd:e6:
60:a4:fc:c8:b9:8b:26:81:b0:2e:d4:41:a1:31:2a:51:5b:d7:
e2:10:0f:06:3f:7d:b2:b8:6b:76:c8:b9:0b:e0:7b:98:b2:47:
d2:1c:4b:f0:a3:46:ea:b5:ef:84:06:2c:17:b1:6f:d7:a3:70:
02:c3:d8:a6:b0:30:9a:82:2e:6d:69:4c:e6:f3:1c:59:f8:7b:
93:d8:b2:ae:c8:9c:e5:81:f0:69:0d:c4:fc:70:06:17:a6:1b:
45:f2:4e:0d:11:3b:87:f9:16:30:bd:46:f2:4e:23:99:23:64:
25:c2:d1:c8:e0:eb:e7:99:e8:0a:b6:25:f7:97:fc:2f:95:42:
c2:fc:60:bb:1f:eb:9b:4f:d6:73:ce:97:ab:8e:de:aa:24:d2:
a9:e6:cd:df:cd:36:26:1f:8c:21:4f:49:aa:e3:20:fc:00:9a:
0b:0c:88:47:22:29:15:25:35:8c:3c:e3:b4:97:65:60:33:72:
30:4a:a2:c6:b3:bf:be:e6:6e:72:14:57:f4:4f:75:67:bb:07:
6d:d9:32:3f:06:38:ff:c0:9a:03:0a:95:b1:9b:f8:d7:c0:98:
01:5e:04:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:46 2024 by rpki-client on console-ams.rpki-client.org