Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/226be8-c7b7-47f0-b0d5-d14af2cb8fde/1/oVBDK9J6GHF8jRGPzhoUNn_qlFY.roa
File: oVBDK9J6GHF8jRGPzhoUNn_qlFY.roa (raw, json)
Hash identifier: fvy5lWFgfNFlIJ0OzoxhTsIpjQB/3Y0md78nr7sxgKI=
Subject key identifier: A1:50:43:2B:D2:7A:18:71:7C:8D:11:8F:CE:1A:14:36:7F:EA:94:56
Certificate issuer: /CN=49240b59bbf6906a555e1074c5ae73ec62dffc5f
Certificate serial: 1C7E18
Authority key identifier: 49:24:0B:59:BB:F6:90:6A:55:5E:10:74:C5:AE:73:EC:62:DF:FC:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSQLWbv2kGpVXhB0xa5z7GLf_F8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/226be8-c7b7-47f0-b0d5-d14af2cb8fde/1/oVBDK9J6GHF8jRGPzhoUNn_qlFY.roa
Signing time: Sat 01 Jan 2022 02:58:57 +0000
ROA not before: Sat 01 Jan 2022 02:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59708
IP address blocks: 185.4.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1867288 (0x1c7e18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49240b59bbf6906a555e1074c5ae73ec62dffc5f
Validity
Not Before: Jan 1 02:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a150432bd27a18717c8d118fce1a14367fea9456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b6:7b:ba:78:04:fa:e4:4b:14:37:e9:56:70:
11:17:be:5a:5e:de:d6:4d:b5:b8:99:58:dc:8a:db:
15:85:ec:a0:f0:3b:56:63:7f:64:2a:70:ce:12:9b:
0a:f2:c3:69:b2:f5:70:be:88:57:43:46:15:48:3c:
6e:2d:43:94:e4:cc:b1:e9:d6:51:3f:e6:e9:e9:b8:
e1:48:07:74:e8:60:55:dd:ed:54:99:d6:58:9a:42:
44:e8:55:03:ab:71:85:29:42:d6:a6:23:8d:a4:64:
97:c4:33:85:0f:e4:b7:1d:25:cf:7b:81:34:f6:b0:
8c:74:71:6c:7a:0f:cf:69:e8:f7:71:12:d9:c0:cf:
c4:cd:9f:5c:b5:a9:aa:50:50:0d:d5:74:8b:87:9c:
4b:7b:27:e7:24:81:24:de:84:dd:8d:58:1d:9d:1d:
53:5b:a0:28:db:23:b7:bb:3b:66:f0:1f:7b:87:d3:
02:a3:b9:a0:53:f5:5c:1e:38:14:b9:29:56:1a:3f:
b7:97:07:fb:1c:1e:82:22:12:1c:cd:f5:1e:33:99:
bb:ab:1f:98:61:e7:54:f3:b5:3e:cc:5d:97:cf:ba:
e3:9e:89:b3:c3:74:79:31:be:36:9b:ad:41:24:5f:
00:66:b0:bc:81:96:ce:f7:bd:5a:f9:75:33:02:f1:
5d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:50:43:2B:D2:7A:18:71:7C:8D:11:8F:CE:1A:14:36:7F:EA:94:56
X509v3 Authority Key Identifier:
keyid:49:24:0B:59:BB:F6:90:6A:55:5E:10:74:C5:AE:73:EC:62:DF:FC:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSQLWbv2kGpVXhB0xa5z7GLf_F8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/226be8-c7b7-47f0-b0d5-d14af2cb8fde/1/oVBDK9J6GHF8jRGPzhoUNn_qlFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/226be8-c7b7-47f0-b0d5-d14af2cb8fde/1/SSQLWbv2kGpVXhB0xa5z7GLf_F8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.104.0/22
Signature Algorithm: sha256WithRSAEncryption
78:6e:c0:d7:9c:56:31:93:4b:75:72:60:c8:18:ce:34:da:c0:
12:78:27:15:c6:c2:78:61:0c:6c:98:dc:60:c2:cb:77:a8:ff:
48:a9:9d:98:97:c6:ba:18:8a:a2:3c:7f:33:a2:2e:ce:c6:52:
4f:17:4b:a2:01:88:8b:59:ca:36:b8:45:23:bb:10:b8:70:7d:
1d:32:50:8d:af:0f:0a:20:cf:0d:5f:8e:4b:53:d2:a1:40:df:
fc:5c:fa:9b:71:a8:bb:39:b2:63:0d:e4:f8:85:9e:30:a7:77:
49:50:56:48:14:29:b7:1e:d0:2d:75:05:e8:07:39:7b:88:fc:
ae:30:36:b8:8a:f5:2f:6c:09:96:e8:1a:02:41:3c:f4:0e:35:
96:18:f6:46:3d:3f:3e:37:0f:44:6e:49:d4:18:ee:b3:cd:f1:
c0:88:6e:02:58:a5:a4:e2:81:dc:71:82:e8:01:5b:aa:be:e6:
29:73:cd:57:c8:fa:d5:fb:87:8a:b4:78:ed:fe:31:68:f1:9f:
18:36:19:1e:48:e6:dc:01:c8:ad:2c:a9:7f:d1:d4:a9:a6:56:
a3:4d:87:e0:ef:3d:0f:cb:92:04:53:59:d5:50:72:f6:12:2f:
23:55:a0:15:66:93:5e:e1:67:57:25:e3:e7:80:53:67:9a:2e:
6c:34:03:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:10 2024 by rpki-client on console-ams.rpki-client.org