Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/64df8e-4b04-4223-8467-9939df1d0d09/1/szVXvClDL653zq65R0Vw6ImsFFs.roa
File: szVXvClDL653zq65R0Vw6ImsFFs.roa (raw, json)
Hash identifier: 8/qIl3V4660LviE24wr3klaS1A9+mBy2WsSLKPbEztk=
Subject key identifier: B3:35:57:BC:29:43:2F:AE:77:CE:AE:B9:47:45:70:E8:89:AC:14:5B
Certificate issuer: /CN=14fb7c3336acd4189d3fac639a280d9b0020f298
Certificate serial: 057EFB6A
Authority key identifier: 14:FB:7C:33:36:AC:D4:18:9D:3F:AC:63:9A:28:0D:9B:00:20:F2:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FPt8Mzas1BidP6xjmigNmwAg8pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/64df8e-4b04-4223-8467-9939df1d0d09/1/szVXvClDL653zq65R0Vw6ImsFFs.roa
Signing time: Sat 01 Jan 2022 12:56:26 +0000
ROA not before: Sat 01 Jan 2022 12:56:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200944
IP address blocks: 185.90.117.0/24 maxlen: 24
185.90.116.0/24 maxlen: 24
185.90.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92207978 (0x57efb6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14fb7c3336acd4189d3fac639a280d9b0020f298
Validity
Not Before: Jan 1 12:56:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b33557bc29432fae77ceaeb9474570e889ac145b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f2:1e:35:db:e0:bb:b0:72:77:18:40:1d:37:
e8:d7:da:a1:f4:eb:04:22:b2:e5:4e:51:fc:e2:a2:
49:6e:6e:60:d0:46:28:29:bd:f4:dd:43:83:dc:d5:
23:4c:5e:01:69:a4:c1:f4:b5:74:44:9b:94:89:dd:
73:bc:c9:35:11:4d:2e:bc:fa:fe:76:2d:6d:75:d4:
54:a7:04:12:17:b7:7a:14:45:29:a6:0f:90:2b:f1:
fb:03:b0:56:c1:4d:9e:66:e6:c6:dc:93:3f:77:a4:
56:b0:aa:22:4b:3a:c3:13:c7:aa:b1:ce:3f:d0:41:
38:d4:f0:52:2d:51:f2:e6:7f:be:33:57:07:17:d5:
e6:7c:59:fd:1b:50:fa:01:79:e5:5e:8c:24:89:8a:
c6:9d:bd:b6:69:8a:48:f0:87:61:22:30:2b:59:80:
f2:81:a2:a5:4f:a5:72:75:33:b1:81:b2:f8:07:7c:
99:70:13:21:01:03:f6:da:f6:6c:78:fb:12:ea:ad:
52:4f:20:e0:f8:f1:c7:91:b9:32:8c:84:ab:3c:d3:
62:76:31:a3:cf:34:60:a8:29:0f:a1:ea:1e:b4:19:
0d:75:2d:29:9b:a4:d3:b1:2d:6c:ec:5e:c8:a2:2f:
b6:29:70:da:9d:f6:33:dd:6c:e6:e2:69:44:86:bc:
13:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:35:57:BC:29:43:2F:AE:77:CE:AE:B9:47:45:70:E8:89:AC:14:5B
X509v3 Authority Key Identifier:
keyid:14:FB:7C:33:36:AC:D4:18:9D:3F:AC:63:9A:28:0D:9B:00:20:F2:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FPt8Mzas1BidP6xjmigNmwAg8pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/64df8e-4b04-4223-8467-9939df1d0d09/1/szVXvClDL653zq65R0Vw6ImsFFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/64df8e-4b04-4223-8467-9939df1d0d09/1/FPt8Mzas1BidP6xjmigNmwAg8pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.116.0-185.90.118.255
Signature Algorithm: sha256WithRSAEncryption
4b:16:2b:a3:05:1f:da:6b:72:2b:1f:d1:05:01:b7:a8:1f:e3:
a0:35:44:bd:b9:73:5a:0c:19:b4:4c:88:16:72:c5:de:13:13:
cd:35:64:21:fd:00:97:b0:e6:9d:49:82:e6:30:a1:75:b7:97:
e4:0c:5f:1b:39:a0:38:97:ed:c7:cb:89:28:81:9d:76:95:fb:
67:82:9e:ca:97:c9:f6:86:df:e6:c4:bc:62:6f:4c:4c:7d:39:
d5:f0:37:96:ab:40:b9:d0:c0:f7:80:ef:c3:50:fa:e4:f5:b3:
55:c9:9e:b5:ed:7f:33:bb:a2:29:64:db:3d:ee:ff:a3:16:b7:
a6:51:0b:9b:f6:08:2a:85:ff:09:8e:c3:02:cb:a4:e0:b4:b4:
24:e4:31:81:49:9e:05:31:8f:b3:70:c0:ed:ca:5d:9c:2f:9f:
96:70:c0:1b:69:ad:0f:7c:99:87:e3:e9:45:f0:0a:29:41:95:
41:b8:39:f4:5e:b8:b8:99:27:18:15:ef:c0:0f:f2:6e:aa:da:
c8:1d:97:4b:ac:79:b8:f6:22:d5:8e:8a:a6:33:a4:7a:1a:3a:
f8:5a:2c:d2:88:2e:80:8f:aa:7d:6a:43:16:00:da:e6:28:f9:
a6:1f:8f:4c:01:f2:67:e7:56:42:48:aa:17:03:c1:de:03:78:
f3:42:d5:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:17 2023 by rpki-client on console-ams.rpki-client.org