Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/_iC48aRsw4-qkHtQyRjO3HfK0vs.roa
File: _iC48aRsw4-qkHtQyRjO3HfK0vs.roa (raw, json)
Hash identifier: 5hB5PTuarQFeW0ainNNj/Ezq57zZdjcRqB92qnBdo90=
Subject key identifier: FE:20:B8:F1:A4:6C:C3:8F:AA:90:7B:50:C9:18:CE:DC:77:CA:D2:FB
Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Certificate serial: 09A43B26
Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/_iC48aRsw4-qkHtQyRjO3HfK0vs.roa
Signing time: Fri 18 Feb 2022 20:26:51 +0000
ROA not before: Fri 18 Feb 2022 20:26:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 185.193.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161757990 (0x9a43b26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Validity
Not Before: Feb 18 20:26:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe20b8f1a46cc38faa907b50c918cedc77cad2fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:fb:9f:7b:48:f2:7e:ec:b7:72:99:a2:03:7a:
1c:e3:97:2f:e7:d1:73:af:99:2a:71:9b:17:c0:ba:
99:32:4c:0e:f5:7e:91:f9:80:df:e8:73:f0:62:22:
ad:a0:e2:27:0e:c2:7f:a3:89:d0:14:51:2b:e3:af:
72:db:d0:1a:fe:36:25:78:bf:f7:97:4b:fe:35:11:
20:80:b4:7b:ba:df:dd:5d:04:32:97:9d:c3:be:3e:
0d:60:5c:73:4b:57:fd:b9:f3:d1:0f:04:15:82:68:
ed:c7:2a:7f:2b:ec:46:d2:99:25:f8:52:d7:72:d6:
93:b0:f4:16:81:de:5a:99:94:a8:ab:7e:4d:4a:aa:
e5:5b:99:5b:78:ac:c6:bd:35:e0:c9:9f:df:27:cc:
ad:5a:45:c2:7d:e3:7d:8b:5b:1c:21:86:f4:b2:0f:
5c:f3:df:cf:f7:55:43:e1:9b:5d:51:33:4d:47:bc:
4a:38:0f:2e:da:75:c6:ba:2e:c8:c7:64:2d:36:22:
64:4a:ce:24:a5:82:38:ff:ae:b7:02:4a:11:14:13:
39:31:51:f5:14:5a:40:e7:00:81:8b:ed:41:b5:b8:
35:6e:9e:cf:a9:54:7e:68:6d:14:38:7d:a4:7a:9e:
07:c5:50:a3:b8:5c:1f:05:5c:2f:c7:cf:cb:fb:7a:
21:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:20:B8:F1:A4:6C:C3:8F:AA:90:7B:50:C9:18:CE:DC:77:CA:D2:FB
X509v3 Authority Key Identifier:
keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/_iC48aRsw4-qkHtQyRjO3HfK0vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.164.0/24
Signature Algorithm: sha256WithRSAEncryption
41:d1:ff:ce:64:82:8e:bf:37:88:46:6f:f8:3d:f0:15:ca:39:
f6:41:bf:92:10:20:c2:7b:fd:0f:4c:c4:83:32:f1:f1:81:55:
f7:9f:56:cb:93:cf:7c:5a:df:85:69:c4:d0:55:87:4c:3d:4f:
07:23:1c:37:b0:d7:a1:6f:c7:62:c1:5d:27:37:c3:b1:94:3c:
ad:12:41:45:3b:4b:b4:c2:ab:64:75:67:e2:f9:2f:f4:26:e0:
de:2c:55:0a:6f:d1:58:e3:2f:67:ec:b5:96:58:cf:a5:54:10:
57:54:5c:28:bf:78:b1:b5:93:0f:14:c7:f3:06:0a:e1:fb:34:
4f:62:0f:48:b4:17:09:65:9b:2b:ce:90:60:f8:78:ed:71:b6:
45:7d:5d:c9:71:70:80:22:b3:8e:48:8f:4e:a0:59:38:73:aa:
d0:ed:72:a4:03:57:24:1c:cc:7b:5f:bf:05:9f:29:e3:ee:39:
2e:2b:b8:d9:2c:45:e1:51:16:f0:19:2b:e0:86:a9:08:0c:d8:
ab:0c:8b:91:9a:79:28:e3:c9:b4:ad:c9:12:4a:a4:cb:51:11:
c9:2e:bb:30:d9:a4:ea:b8:87:41:34:85:6d:eb:fb:49:e3:10:
c3:66:77:ea:d9:be:68:cd:a5:c5:28:92:6f:9c:07:17:b1:62:
d4:9b:8e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:41 2024 by rpki-client on console-ams.rpki-client.org