Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/Ah8NDt0JW1MIwa0eglEyuhVECes.roa
File: Ah8NDt0JW1MIwa0eglEyuhVECes.roa (raw, json)
Hash identifier: azy+c9hg5k1iVHbFCZO0YUblZTVMDW0PBKDT5r/IWO8=
Subject key identifier: 02:1F:0D:0E:DD:09:5B:53:08:C1:AD:1E:82:51:32:BA:15:44:09:EB
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: 0184B819D29AE0C296E50C142FF891866FF7
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/Ah8NDt0JW1MIwa0eglEyuhVECes.roa
Signing time: Sun 27 Nov 2022 08:00:10 +0000
ROA not before: Sun 27 Nov 2022 08:00:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.63.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b8:19:d2:9a:e0:c2:96:e5:0c:14:2f:f8:91:86:6f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: Nov 27 08:00:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=021f0d0edd095b5308c1ad1e825132ba154409eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:38:3f:9c:7e:f4:b4:1f:6a:ec:5a:d6:cc:9d:
a7:7c:68:ba:e7:66:16:98:5f:14:bb:5e:2d:fc:71:
d8:64:e9:06:4b:25:89:c3:ce:79:f8:2c:87:a8:a5:
fa:a1:59:9d:a4:4a:6a:92:d4:fa:89:81:4e:cb:f1:
a9:1c:97:58:71:a5:25:4a:7b:bb:62:b6:bf:23:68:
98:7a:db:a9:b2:6c:9b:c8:77:06:b0:3e:9b:79:4f:
9a:c0:0a:00:bf:24:22:85:ba:a5:fd:ab:c9:b8:f6:
08:06:b4:62:32:a4:21:d5:e2:97:3c:1f:3b:00:78:
40:de:ad:33:be:5b:ca:5b:34:08:07:f6:30:b4:86:
27:ad:a0:ef:d9:90:c8:b6:d6:58:6f:f1:56:9d:77:
6f:be:94:3f:5c:8c:09:40:50:57:2f:74:48:3c:7b:
12:62:25:bb:00:c2:91:eb:8b:01:e0:11:79:88:f2:
79:74:51:46:c2:da:72:c9:e6:80:0a:b1:fa:ae:31:
7a:87:32:54:5d:1a:51:e4:72:b7:28:85:f4:11:b1:
75:60:9f:6e:67:5b:76:4d:27:ab:54:b5:d9:e2:ac:
b4:16:e1:7e:f0:b7:ef:ae:6e:f0:53:c2:95:06:ab:
db:b0:37:19:d2:f9:76:a6:5d:29:e9:b2:00:17:17:
b6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:1F:0D:0E:DD:09:5B:53:08:C1:AD:1E:82:51:32:BA:15:44:09:EB
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/Ah8NDt0JW1MIwa0eglEyuhVECes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.35.0/24
Signature Algorithm: sha256WithRSAEncryption
92:b7:b7:1b:79:90:ae:a1:fd:77:13:ab:29:01:04:50:e2:0d:
48:31:7a:e4:0e:77:dc:ce:cc:07:e1:d8:26:5f:5f:5b:43:00:
58:54:e1:13:48:d8:3a:9a:d3:a3:9e:7a:a7:28:43:ae:75:a6:
35:59:81:f1:5e:7b:51:a0:8c:74:28:66:7f:f8:52:bc:d8:b1:
69:43:37:2b:4f:1f:3b:76:aa:19:85:9b:09:62:6b:f7:66:06:
55:2f:4e:2f:7a:30:b5:f0:4f:4b:c8:ea:83:82:af:f5:2f:98:
1b:d8:71:ca:ca:eb:cc:17:43:c5:90:6c:f8:28:a0:a6:84:af:
3b:d5:9b:d6:8e:c2:7f:0a:d0:e0:46:75:46:3f:5e:3c:58:d5:
05:a5:64:d5:fe:69:d5:b2:d1:92:0f:c7:12:c8:ee:36:f4:fc:
67:1f:50:5c:d1:1e:10:2f:f5:d8:d1:03:67:fc:d4:7a:e0:2c:
f2:fe:a2:1f:ca:d5:57:fe:86:3a:0a:d2:53:38:d5:35:0f:6a:
08:ee:c6:63:1e:a2:3d:f2:02:0d:46:63:7c:b4:1e:7c:4f:60:
21:ab:5f:84:8d:5a:d6:25:42:81:03:66:cb:1b:dd:f1:45:b3:
a7:8a:e1:83:f6:22:05:76:1f:75:8f:30:e0:24:64:d1:6e:7f:
36:6a:42:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:48 2024 by rpki-client on console-fra.rpki-client.org