Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/n2mJEA85xSM5u7JuF08RoOHlc4E.roa
File: n2mJEA85xSM5u7JuF08RoOHlc4E.roa (raw, json)
Hash identifier: 0FZyYQL8bl7iHBt9DaRgECO+/gO8ZeBjutmTecChfGc=
Subject key identifier: 9F:69:89:10:0F:39:C5:23:39:BB:B2:6E:17:4F:11:A0:E1:E5:73:81
Certificate issuer: /CN=374e2729b17369890a1512f643cd08e4ba2ff414
Certificate serial: 0182CB99E112167DF4DE6D9E4FAE0958C5F1
Authority key identifier: 37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/n2mJEA85xSM5u7JuF08RoOHlc4E.roa
Signing time: Tue 23 Aug 2022 16:47:15 +0000
ROA not before: Tue 23 Aug 2022 16:47:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 185.101.21.0/24 maxlen: 24
185.101.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:cb:99:e1:12:16:7d:f4:de:6d:9e:4f:ae:09:58:c5:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374e2729b17369890a1512f643cd08e4ba2ff414
Validity
Not Before: Aug 23 16:47:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f6989100f39c52339bbb26e174f11a0e1e57381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:15:8a:e8:f6:1d:a7:ed:d0:59:17:42:1b:a5:
10:de:fa:88:2c:df:7f:d8:5e:63:82:2c:a9:b6:86:
da:77:db:80:8e:c3:f8:fa:53:27:7f:ae:37:78:6a:
cd:b8:6a:af:75:79:f5:af:c4:f6:56:7b:1a:64:a8:
e5:b5:79:5e:3f:b8:a1:f8:df:ff:cc:6d:78:81:ef:
2c:2f:0f:09:e8:16:29:f8:2e:c2:58:ed:5a:0f:f9:
51:76:59:7d:1e:c7:34:92:7a:7a:5e:45:17:20:f5:
d4:b5:e3:f5:72:82:e3:3e:d3:27:e3:65:8b:5a:17:
dd:3d:3f:1d:f2:74:f3:c8:ad:8d:b0:76:c1:7c:60:
fa:77:af:37:ee:5d:68:46:a7:28:56:b8:fd:b4:bf:
29:8b:ce:72:62:ba:b2:ec:39:b7:67:d0:25:14:18:
a8:5c:d3:5e:94:d4:40:0d:fd:96:d7:46:0a:13:52:
96:aa:26:d9:9f:76:8b:5f:94:d9:8f:31:3d:4b:f9:
18:7e:da:b5:4b:cc:8b:d7:a2:5e:69:d5:02:ef:33:
5b:25:6d:28:fc:19:69:d3:7c:dd:94:c3:94:a6:98:
8f:16:57:ff:df:4d:1f:44:d3:25:35:f3:71:16:38:
94:23:e9:d5:5f:9c:5f:4e:66:cb:6e:09:db:10:43:
1b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:69:89:10:0F:39:C5:23:39:BB:B2:6E:17:4F:11:A0:E1:E5:73:81
X509v3 Authority Key Identifier:
keyid:37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/n2mJEA85xSM5u7JuF08RoOHlc4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/N04nKbFzaYkKFRL2Q80I5Lov9BQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.20.0/23
Signature Algorithm: sha256WithRSAEncryption
68:a0:26:db:54:0c:dd:3a:84:15:3a:24:1e:3e:c2:76:6c:f9:
9d:21:75:41:9f:da:ab:e5:8c:e1:01:0a:c7:43:69:5a:c7:8a:
17:0f:40:28:3b:bc:45:ed:7f:b1:5d:fc:d4:a5:fe:42:47:be:
5d:65:93:f1:93:9a:17:51:86:ee:e8:a0:ac:71:3b:46:e0:4c:
5f:3e:60:fa:51:17:42:3d:af:46:f2:8c:7d:c6:44:dc:c0:4c:
34:04:dd:18:ba:b8:3a:09:a8:c2:be:9e:a4:e9:fe:5f:25:07:
b2:fb:00:95:5b:d2:4f:92:c3:7b:44:8c:d9:7b:2d:fb:a1:c5:
22:c3:76:a5:d5:9c:ae:d5:ce:5a:ae:40:7b:72:93:57:c0:36:
80:0b:24:65:a9:77:46:76:b0:cf:47:14:2e:90:1e:e5:ed:e4:
85:68:ad:ac:65:da:30:e6:7c:c2:67:46:7b:d8:73:6b:26:07:
44:4a:0c:4c:ac:49:dc:9f:52:2b:30:dc:76:b1:e5:f6:43:76:
c7:1f:da:cb:b8:e7:f3:e9:ed:ac:2b:21:dc:06:9a:a1:a5:df:
62:8a:99:b7:56:85:9e:53:0c:b8:4f:20:4c:20:f9:73:e2:71:
56:82:f8:a4:0e:2c:7f:ec:a6:2f:df:e9:d5:43:04:4e:fe:db:
38:35:d8:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:57 2024 by rpki-client on console-ams.rpki-client.org