Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/iY1O9s2M9-elbW_AqYQfLJtzpnY.roa
File: iY1O9s2M9-elbW_AqYQfLJtzpnY.roa (raw, json)
Hash identifier: Z0nukucgjGWswDX9PpnShjz3DPLjdcX7a+/Mb6pogBA=
Subject key identifier: 89:8D:4E:F6:CD:8C:F7:E7:A5:6D:6F:C0:A9:84:1F:2C:9B:73:A6:76
Certificate issuer: /CN=0a77196340d2144b8ca7b0778984bb04bc1cb378
Certificate serial: 03FA1D22
Authority key identifier: 0A:77:19:63:40:D2:14:4B:8C:A7:B0:77:89:84:BB:04:BC:1C:B3:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CncZY0DSFEuMp7B3iYS7BLwcs3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/iY1O9s2M9-elbW_AqYQfLJtzpnY.roa
Signing time: Sat 01 Jan 2022 11:53:55 +0000
ROA not before: Sat 01 Jan 2022 11:53:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205552
IP address blocks: 185.212.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66723106 (0x3fa1d22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a77196340d2144b8ca7b0778984bb04bc1cb378
Validity
Not Before: Jan 1 11:53:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=898d4ef6cd8cf7e7a56d6fc0a9841f2c9b73a676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b6:b8:6f:ff:a0:9b:0e:88:ef:ce:f7:5b:1b:
68:82:13:ba:c8:5a:17:db:43:c9:28:f5:18:9f:7c:
52:10:0b:fe:ef:24:f3:75:81:5a:be:3f:6d:00:19:
e9:99:da:2a:41:e6:9c:5c:16:46:65:44:d1:62:f9:
fc:ed:b1:cb:55:00:eb:4f:43:64:8b:41:ec:35:52:
99:c1:4b:d2:0d:18:67:1f:4e:03:e5:8f:7d:73:91:
d0:b3:9e:67:ec:a9:90:3f:39:4e:39:b4:a4:a8:46:
0a:49:50:00:e8:25:ff:13:22:bf:00:82:0d:fe:2d:
0a:a0:6a:cd:e3:69:0c:a3:9f:d5:fd:23:14:33:3c:
f0:79:bb:6c:9e:aa:eb:42:53:e8:0f:0f:57:86:2b:
39:96:0b:5a:9e:b1:f1:6e:4e:1f:40:c8:33:bb:62:
8e:fb:5e:1f:ac:cf:36:e4:29:e0:91:84:ce:5b:ee:
c4:f2:95:c3:94:74:12:01:10:a9:a9:63:b9:5d:13:
bf:87:49:a5:81:f6:8c:c4:4f:d4:3e:8b:8f:20:ea:
c2:7e:18:0b:ff:80:f9:b5:b1:e1:a1:9e:ca:06:7f:
3e:a3:6a:d2:44:a9:eb:24:c5:ea:d3:52:43:e5:94:
92:6a:8d:2e:33:4d:71:e9:9a:47:70:6c:77:50:bc:
c8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:8D:4E:F6:CD:8C:F7:E7:A5:6D:6F:C0:A9:84:1F:2C:9B:73:A6:76
X509v3 Authority Key Identifier:
keyid:0A:77:19:63:40:D2:14:4B:8C:A7:B0:77:89:84:BB:04:BC:1C:B3:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CncZY0DSFEuMp7B3iYS7BLwcs3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/iY1O9s2M9-elbW_AqYQfLJtzpnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/CncZY0DSFEuMp7B3iYS7BLwcs3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.91.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:62:77:e3:99:22:1e:ef:98:61:6a:63:f3:df:b7:fa:ff:84:
f1:e2:3d:51:a6:61:2c:62:87:6a:44:65:5a:c0:3d:85:22:30:
1d:a5:c6:3f:c7:2e:e0:a9:ad:ba:34:eb:88:22:e1:7e:a8:8b:
1e:83:c9:eb:fb:d6:58:14:3a:9b:65:06:be:01:1d:4f:45:65:
f6:fd:53:31:84:a2:35:45:74:ed:b2:7d:7e:34:c9:d0:d3:2d:
97:74:cd:73:01:43:b2:dd:16:5e:c2:e3:f2:40:38:2d:8b:e2:
53:ff:a1:c6:b6:31:4e:fd:81:09:c8:fd:48:1d:52:ff:3c:e3:
32:1e:36:65:d2:a8:33:d9:ab:71:a9:82:59:76:dc:15:ff:84:
1d:ce:74:f4:0e:99:25:bc:8f:14:47:da:ce:4a:d7:1e:68:f5:
6a:c0:7a:21:2a:32:04:e6:1e:7c:fa:8f:17:2b:58:bf:f6:94:
59:9a:d4:31:bb:fe:0a:90:a7:b0:bd:e2:c7:47:c8:8e:4f:9a:
7f:62:c7:ce:2a:45:d3:ae:e7:b0:eb:af:da:96:b2:a3:75:8b:
f5:3c:35:f3:ac:ba:c2:1e:54:ba:90:f1:11:32:ae:ff:fe:ca:
7e:cd:72:6e:7e:ae:03:f8:00:0f:b6:7b:46:8c:04:d7:0f:a6:
73:3a:1f:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:41 2023 by rpki-client on console-ams.rpki-client.org