Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/T49fBsmhWkR539fGED_GXZgp1Mw.roa
File: T49fBsmhWkR539fGED_GXZgp1Mw.roa (raw, json)
Hash identifier: w4aESRNTPH7XrFh6xkBNj4kWhw2jBk28ENPLz40QDl0=
Subject key identifier: 4F:8F:5F:06:C9:A1:5A:44:79:DF:D7:C6:10:3F:C6:5D:98:29:D4:CC
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0C9CB0A9
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/T49fBsmhWkR539fGED_GXZgp1Mw.roa
Signing time: Mon 04 Jul 2022 20:04:25 +0000
ROA not before: Mon 04 Jul 2022 20:04:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213107
IP address blocks: 185.86.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211595433 (0xc9cb0a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jul 4 20:04:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f8f5f06c9a15a4479dfd7c6103fc65d9829d4cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:bb:aa:cd:42:e7:88:fa:8f:c5:6c:af:10:9f:
ca:ad:ad:81:bd:46:51:be:a7:5f:07:ab:ff:7e:f9:
d3:50:33:72:1e:21:18:80:64:ee:de:f4:f1:5d:b7:
44:94:47:de:98:63:10:17:75:aa:9a:9c:f8:2d:09:
8a:e9:b4:7c:6a:cd:62:f5:8c:49:75:fb:4d:e4:1b:
aa:80:ff:2a:b8:ff:f0:91:8e:5e:d6:88:07:8d:b9:
6f:e0:37:2b:f1:d6:8c:f5:5a:c7:bc:ca:f3:0e:c2:
d9:df:96:d7:98:0d:1a:9a:ff:79:c5:f4:19:21:c4:
3f:5b:91:5a:62:d8:f1:20:4f:aa:d4:af:1f:8a:de:
49:a3:4c:32:2a:15:1b:95:46:58:3b:3f:b2:4f:b9:
2f:86:e2:49:96:24:25:b5:c3:52:63:b7:eb:94:43:
e7:5b:db:33:72:9d:1c:4a:dd:9f:a4:2a:51:6d:8b:
c1:2a:74:3e:ae:4c:67:38:1f:81:54:70:08:b3:2b:
2a:3e:2f:44:fa:b8:c8:f6:58:ee:a1:4a:f3:c8:7b:
a0:65:e2:6d:7a:62:cb:ae:5a:fd:83:a3:c6:40:ca:
14:06:5e:54:49:5f:6c:52:15:72:fb:6a:71:29:e1:
83:de:e4:e8:4f:9e:3e:6d:33:86:9f:58:43:cc:b9:
47:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:8F:5F:06:C9:A1:5A:44:79:DF:D7:C6:10:3F:C6:5D:98:29:D4:CC
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/T49fBsmhWkR539fGED_GXZgp1Mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.14.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:43:00:17:fc:20:4c:44:a6:cd:c5:8f:15:64:4b:78:09:80:
59:39:73:a7:25:04:df:cc:f2:c2:e4:24:51:b9:cd:b0:4b:ba:
0f:73:4c:8c:61:1a:49:c7:57:2a:b3:c3:48:f9:14:2f:53:62:
fb:78:f6:2c:34:1e:1d:36:0c:15:01:f0:d1:b8:6f:c5:e3:a4:
4f:77:43:bf:91:b0:04:84:59:a5:55:e8:ca:f4:39:74:38:fb:
be:f3:c9:cd:ac:e2:64:92:af:ba:5a:12:75:36:51:48:18:b4:
af:2a:ec:c4:82:69:b3:72:1b:88:c1:06:ee:7e:52:a7:69:ba:
e9:ac:f6:a5:df:99:50:a4:f2:04:f3:4c:13:6b:0e:d4:5c:c5:
ae:72:92:7a:97:42:cd:76:c6:78:e5:cb:f8:bf:db:89:2d:df:
7d:5b:80:a8:16:ba:04:4a:75:7a:6d:d8:11:b3:d5:d0:45:46:
6a:05:cc:dd:95:f3:9b:30:45:25:f9:b6:f0:2f:a4:09:d8:f5:
34:86:ef:3f:1d:74:c9:dc:02:2f:a9:ea:4a:c5:72:35:e3:a2:
a2:64:1d:7c:58:e2:1a:b5:87:38:89:1e:f0:63:a8:51:14:de:
5b:6f:53:08:b9:89:dc:37:95:29:fb:10:43:3b:17:75:27:c6:
c5:bf:ee:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org