Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/6dfbcf-313b-47b9-bf8e-a778a0c14859/1/4u9FyZf-5a6vbWAGnsEoD2eYlBI.roa
File: 4u9FyZf-5a6vbWAGnsEoD2eYlBI.roa (raw, json)
Hash identifier: oZ17jl4/M/Ban0tyrkes7eQ6vFNhsxPEVILVQo1p704=
Subject key identifier: E2:EF:45:C9:97:FE:E5:AE:AF:6D:60:06:9E:C1:28:0F:67:98:94:12
Certificate issuer: /CN=4b87033fc6a87d3b8d0cb3ce1ab2babbe52ba311
Certificate serial: 051B3E7D
Authority key identifier: 4B:87:03:3F:C6:A8:7D:3B:8D:0C:B3:CE:1A:B2:BA:BB:E5:2B:A3:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S4cDP8aofTuNDLPOGrK6u-UroxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/6dfbcf-313b-47b9-bf8e-a778a0c14859/1/4u9FyZf-5a6vbWAGnsEoD2eYlBI.roa
Signing time: Sat 01 Jan 2022 05:05:48 +0000
ROA not before: Sat 01 Jan 2022 05:05:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40178
IP address blocks: 188.92.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85671549 (0x51b3e7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b87033fc6a87d3b8d0cb3ce1ab2babbe52ba311
Validity
Not Before: Jan 1 05:05:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2ef45c997fee5aeaf6d60069ec1280f67989412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ed:c0:97:3b:dc:66:64:f6:ec:96:af:28:c3:
14:c3:28:d8:45:6f:c2:87:df:77:f6:16:c0:5d:93:
78:ac:4c:16:73:1a:b7:48:d5:cd:e0:dd:c8:e5:d7:
6b:cb:7f:8a:b2:b4:7f:43:78:ab:e5:dd:28:05:01:
58:92:55:57:53:75:97:23:c6:66:3c:ae:8c:a0:cd:
09:36:be:39:e3:7b:2d:5d:57:ed:92:df:9f:dc:47:
70:59:67:74:f8:66:ef:80:8d:dd:43:65:08:ee:0d:
35:9c:0b:ef:1b:5a:eb:7f:1d:a5:8f:cb:aa:2f:9f:
9d:f3:df:1e:d0:3a:62:f3:89:69:2f:fc:d1:28:96:
8e:5f:23:32:3f:70:68:8d:be:2a:f1:c5:f6:49:ba:
6c:82:88:e4:33:1a:24:1b:f8:4c:df:01:4b:db:37:
62:26:28:e0:43:cf:ef:6d:42:a3:39:18:20:4c:ab:
22:1c:ca:ff:44:30:bd:eb:37:06:73:1a:6e:a9:25:
65:76:7c:57:d3:da:85:1a:68:73:19:3c:2c:f5:61:
fc:34:37:4d:0f:c8:13:84:c6:13:5f:4a:2d:9a:2b:
ae:84:fd:26:20:54:f2:7c:c7:48:0e:39:41:c8:5d:
69:c0:3a:00:ac:7a:92:3c:e9:7a:f3:23:03:d3:c6:
e7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:EF:45:C9:97:FE:E5:AE:AF:6D:60:06:9E:C1:28:0F:67:98:94:12
X509v3 Authority Key Identifier:
keyid:4B:87:03:3F:C6:A8:7D:3B:8D:0C:B3:CE:1A:B2:BA:BB:E5:2B:A3:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S4cDP8aofTuNDLPOGrK6u-UroxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/6dfbcf-313b-47b9-bf8e-a778a0c14859/1/4u9FyZf-5a6vbWAGnsEoD2eYlBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/6dfbcf-313b-47b9-bf8e-a778a0c14859/1/S4cDP8aofTuNDLPOGrK6u-UroxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.92.120.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:04:83:bc:c2:a5:76:54:b2:9b:11:b1:fd:35:7f:af:5c:1e:
e0:ef:87:70:32:43:4b:3d:20:b7:5c:72:d3:81:f0:ed:01:b7:
73:73:55:01:fb:a5:8a:aa:ad:c1:db:e1:bd:60:16:b1:50:e2:
2d:da:3e:ff:be:8c:c5:80:e8:e6:32:20:69:f0:4f:db:97:8a:
72:df:f2:38:07:24:17:45:3a:b4:38:ac:52:6c:40:3e:4e:63:
4c:07:cb:33:70:2e:c0:3b:be:3a:2e:77:0a:24:27:3d:90:03:
66:ca:78:bb:a4:d6:78:9d:8d:ab:76:8a:90:f2:a5:c0:8f:2c:
89:f0:d0:59:bc:77:a2:55:8c:34:94:ac:a5:8b:3c:dd:be:45:
80:22:ce:50:91:01:ef:bd:d7:68:fc:78:fe:6a:64:b8:12:9e:
d7:ff:25:f6:19:c7:d5:e0:00:7a:5d:22:f8:c0:5e:0d:bd:18:
b5:20:74:c8:1c:ce:0c:f3:03:55:cd:5f:76:d1:18:0b:1f:51:
06:8e:90:fa:52:85:1b:e3:e7:d7:a9:f7:8d:07:5c:a6:a0:6d:
4f:4c:e2:ef:b3:68:92:03:93:8e:d1:9c:03:a0:0b:3e:2d:b6:
03:2d:19:38:90:a9:d6:09:6e:5c:ba:d1:a7:8c:0a:bd:17:10:
af:d0:f7:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:24 2023 by rpki-client on console-fra.rpki-client.org