Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/37ac59-8529-4ac9-ba4e-3bf7d77749ab/1/bQxtgMb0SXauQ-PT0Jlc1Q5ejK4.roa
File: bQxtgMb0SXauQ-PT0Jlc1Q5ejK4.roa (raw, json)
Hash identifier: Z4FQ358mKUGMuGahvZ3QSZxMmlJBuFSawhjB6I7qUNw=
Subject key identifier: 6D:0C:6D:80:C6:F4:49:76:AE:43:E3:D3:D0:99:5C:D5:0E:5E:8C:AE
Certificate issuer: /CN=9194b857c037a7d7cb0575e35823e5e28032bda3
Certificate serial: 13AB6380
Authority key identifier: 91:94:B8:57:C0:37:A7:D7:CB:05:75:E3:58:23:E5:E2:80:32:BD:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kZS4V8A3p9fLBXXjWCPl4oAyvaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/37ac59-8529-4ac9-ba4e-3bf7d77749ab/1/bQxtgMb0SXauQ-PT0Jlc1Q5ejK4.roa
Signing time: Sat 01 Jan 2022 04:01:28 +0000
ROA not before: Sat 01 Jan 2022 04:01:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200977
IP address blocks: 185.90.240.0/24 maxlen: 24
185.90.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329999232 (0x13ab6380)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9194b857c037a7d7cb0575e35823e5e28032bda3
Validity
Not Before: Jan 1 04:01:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d0c6d80c6f44976ae43e3d3d0995cd50e5e8cae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c5:b3:09:b9:33:e0:7d:ba:cd:39:62:4a:58:
16:ee:87:9c:a0:81:16:e3:b8:e3:d0:f5:b2:08:b2:
fd:f0:d2:77:52:f4:25:cd:65:db:7e:0a:a7:65:25:
b9:40:45:e0:57:cb:bb:38:5a:93:3a:25:95:89:5a:
00:86:93:84:0a:0c:94:34:31:e8:00:d8:02:e0:c7:
0d:bc:85:31:14:72:b2:26:78:2c:ef:78:d8:c1:29:
14:36:23:45:e1:1b:1b:46:1b:de:25:a7:dc:b4:1f:
b6:dc:c4:0c:17:16:33:62:17:0a:97:46:8c:6c:69:
fb:6d:51:bb:51:11:97:49:f1:4a:83:17:20:e8:4f:
62:51:cf:93:3f:ea:65:f6:90:c0:ab:a6:36:8c:67:
9b:d3:bf:eb:fe:cf:cf:43:a8:1a:7d:ec:3d:0f:7d:
16:86:ef:24:a2:7f:e4:97:21:fb:4b:b2:07:39:27:
bc:56:28:29:8b:0d:97:9c:5b:bb:75:7e:64:e5:65:
4f:1d:c1:00:32:d9:4b:52:40:da:46:50:cc:82:7f:
10:43:51:23:dc:03:6f:92:9b:42:70:d4:7a:98:50:
34:7e:a3:d0:ed:67:91:28:1c:eb:3b:bf:b1:2c:09:
c5:62:77:4a:2b:3d:6a:3c:01:38:6e:3f:42:a3:05:
d9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:0C:6D:80:C6:F4:49:76:AE:43:E3:D3:D0:99:5C:D5:0E:5E:8C:AE
X509v3 Authority Key Identifier:
keyid:91:94:B8:57:C0:37:A7:D7:CB:05:75:E3:58:23:E5:E2:80:32:BD:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kZS4V8A3p9fLBXXjWCPl4oAyvaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/37ac59-8529-4ac9-ba4e-3bf7d77749ab/1/bQxtgMb0SXauQ-PT0Jlc1Q5ejK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/37ac59-8529-4ac9-ba4e-3bf7d77749ab/1/kZS4V8A3p9fLBXXjWCPl4oAyvaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.240.0/23
Signature Algorithm: sha256WithRSAEncryption
d9:c0:9c:5f:82:7f:15:63:03:dd:a6:df:85:58:f7:c4:57:c2:
68:01:5c:07:3e:ce:3c:3b:51:6e:17:3f:4a:ec:7e:ac:a3:72:
3d:49:8a:cc:fa:e1:a8:86:15:04:36:62:67:3b:ba:c9:f3:38:
a9:66:95:26:41:4d:96:2c:81:27:d1:89:75:da:94:52:76:87:
29:ba:54:21:54:08:1a:2d:56:09:10:75:2d:14:96:39:1d:51:
77:35:9c:94:6f:c0:e8:85:67:9b:af:e8:a1:f0:c3:3f:e2:4f:
f2:0d:68:8c:15:8b:f5:05:e3:39:25:de:de:39:26:b9:5d:23:
ac:ad:ad:53:6d:29:85:76:52:7a:dc:cd:fe:35:75:41:71:9d:
65:76:80:ff:51:1e:51:a2:5a:b4:e8:c9:08:a6:0c:66:04:19:
22:8f:58:e6:b7:c4:aa:d0:47:8e:5d:6f:89:0c:1b:09:61:7e:
3c:51:03:41:1c:7b:be:f3:7a:56:10:56:af:d2:14:d3:d8:54:
be:d3:23:ad:0b:7e:c0:40:91:ce:e7:6f:71:64:c6:38:77:aa:
6e:92:5c:fd:a3:c7:6e:0e:54:d3:74:d3:79:c0:f7:cd:a6:c2:
42:95:65:d3:6d:00:4a:cc:28:14:4b:92:37:02:65:80:81:38:
75:27:f8:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:36 2023 by rpki-client on console-ams.rpki-client.org