Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/7d0353-3a62-4c39-bd3a-c3a3521e8f70/1/I_NgUNHZK4yzjmHYzHSBo881oBA.roa
File: I_NgUNHZK4yzjmHYzHSBo881oBA.roa (raw, json)
Hash identifier: WWaR92HtgF1AxxlmgTLiHCaFpjazXsxOOjxnWT0Cx+E=
Subject key identifier: 23:F3:60:50:D1:D9:2B:8C:B3:8E:61:D8:CC:74:81:A3:CF:35:A0:10
Certificate issuer: /CN=523881993cf0db674e89db5815e6f189a6c60d1f
Certificate serial: 01D268
Authority key identifier: 52:38:81:99:3C:F0:DB:67:4E:89:DB:58:15:E6:F1:89:A6:C6:0D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjiBmTzw22dOidtYFebxiabGDR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/7d0353-3a62-4c39-bd3a-c3a3521e8f70/1/I_NgUNHZK4yzjmHYzHSBo881oBA.roa
Signing time: Mon 02 May 2022 13:22:13 +0000
ROA not before: Mon 02 May 2022 13:22:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206234
IP address blocks: 185.192.121.0/24 maxlen: 24
185.192.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119400 (0x1d268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=523881993cf0db674e89db5815e6f189a6c60d1f
Validity
Not Before: May 2 13:22:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23f36050d1d92b8cb38e61d8cc7481a3cf35a010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:68:64:ce:34:a7:d0:7c:0a:9f:f4:44:0b:08:
ab:43:52:d4:44:05:c5:aa:1d:69:e7:a9:4e:a6:a4:
5d:49:b7:6d:90:4e:c1:26:da:83:1b:71:15:fa:8b:
67:09:39:51:62:a4:a1:97:51:dd:56:cd:dc:cb:a6:
e0:bb:06:0b:22:85:05:46:46:0d:6f:3c:b2:fd:36:
2f:73:45:13:30:a5:db:78:77:e5:52:0e:0e:0c:09:
94:e0:a7:1a:af:59:62:9b:8c:ae:9f:7a:50:5e:c9:
98:de:9e:ff:b9:d6:79:72:b2:b4:e5:b4:f5:e8:0a:
c7:67:05:34:48:8b:a9:32:74:46:57:5b:1a:87:2a:
15:cc:95:8b:57:62:4b:c7:d5:f5:2b:a8:a6:5b:be:
54:ac:ad:75:03:3d:51:44:cd:47:4c:31:5e:f3:b3:
c7:9f:f9:58:7d:ea:15:72:43:11:5d:7a:77:14:de:
48:48:27:41:4d:06:4a:cc:ea:d0:37:db:aa:36:f3:
b7:de:e8:01:0b:71:84:7c:04:70:a3:84:fe:18:3d:
04:16:32:9d:16:f9:70:27:2b:27:4e:0a:84:62:f9:
1f:5e:3d:94:10:10:ca:64:c1:c3:18:35:1a:aa:21:
e8:8e:e8:f0:66:15:a9:c3:be:e3:c5:11:ef:9a:97:
e5:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F3:60:50:D1:D9:2B:8C:B3:8E:61:D8:CC:74:81:A3:CF:35:A0:10
X509v3 Authority Key Identifier:
keyid:52:38:81:99:3C:F0:DB:67:4E:89:DB:58:15:E6:F1:89:A6:C6:0D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjiBmTzw22dOidtYFebxiabGDR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/7d0353-3a62-4c39-bd3a-c3a3521e8f70/1/I_NgUNHZK4yzjmHYzHSBo881oBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/7d0353-3a62-4c39-bd3a-c3a3521e8f70/1/UjiBmTzw22dOidtYFebxiabGDR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.120.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:9b:f2:06:c1:ce:18:76:b3:a4:71:20:be:77:e2:04:a9:f6:
ab:13:79:ef:ee:6d:26:6a:bc:ef:cc:f2:77:96:a4:e2:12:b8:
5b:8a:c4:30:38:ee:7f:92:99:df:c1:32:57:dc:89:77:3d:3c:
cd:3f:71:ea:6b:b6:b0:63:00:4e:7b:84:3e:fa:ec:5b:8e:8e:
7a:49:21:6a:14:c9:f1:67:c6:ef:82:87:f4:51:a8:f6:9e:bb:
5b:6c:35:a6:fd:e2:a4:60:0a:99:df:85:af:7d:ee:fb:4f:c5:
a9:e4:93:6b:08:81:66:89:51:7a:f8:cb:e8:9d:3c:bf:5b:65:
a0:e3:79:e4:a9:d6:7a:20:90:ad:f9:3c:99:39:1a:40:63:e7:
b1:83:0b:97:25:0f:5c:e5:a2:af:55:81:70:45:2a:eb:46:52:
77:0b:7b:cb:8a:63:3f:e4:5c:f9:13:f5:e3:9a:c5:86:e0:bd:
39:41:e9:89:2a:0c:43:5f:6b:11:86:e1:e4:d3:4a:35:51:93:
c8:57:29:75:22:58:c8:21:79:8b:76:64:0f:ce:98:0a:8a:7b:
e6:31:12:e9:e5:3d:56:1f:b8:54:22:32:02:71:3a:67:6d:ab:
c4:99:68:02:10:30:ff:61:76:b9:9a:5a:81:de:4a:08:61:24:
d0:56:46:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:38 2024 by rpki-client on console-fra.rpki-client.org