Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/7d0353-3a62-4c39-bd3a-c3a3521e8f70/1/SJtc4OQLqJCktMUPyzKX3RtT3P8.roa
File: SJtc4OQLqJCktMUPyzKX3RtT3P8.roa (raw, json)
Hash identifier: KwKFT1sOr0qMEm2DudFSc7S+ukALJ4LH8CrKleXmC+Y=
Subject key identifier: 48:9B:5C:E0:E4:0B:A8:90:A4:B4:C5:0F:CB:32:97:DD:1B:53:DC:FF
Certificate issuer: /CN=523881993cf0db674e89db5815e6f189a6c60d1f
Certificate serial: 065233
Authority key identifier: 52:38:81:99:3C:F0:DB:67:4E:89:DB:58:15:E6:F1:89:A6:C6:0D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjiBmTzw22dOidtYFebxiabGDR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/7d0353-3a62-4c39-bd3a-c3a3521e8f70/1/SJtc4OQLqJCktMUPyzKX3RtT3P8.roa
Signing time: Tue 03 May 2022 07:34:49 +0000
ROA not before: Tue 03 May 2022 07:34:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206234
IP address blocks: 185.192.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 414259 (0x65233)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=523881993cf0db674e89db5815e6f189a6c60d1f
Validity
Not Before: May 3 07:34:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=489b5ce0e40ba890a4b4c50fcb3297dd1b53dcff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:f6:69:d5:6d:2c:31:5c:e5:b9:ca:ff:4e:fe:
47:82:26:13:89:23:be:b4:05:c9:37:48:15:61:b7:
ae:3e:cc:10:33:da:93:71:33:76:a7:b2:b1:ac:d5:
a1:90:da:f5:3e:2e:5f:f6:5e:ea:2d:89:e4:15:13:
21:26:c7:51:ba:e6:32:1b:8a:dc:d2:c8:e3:bb:10:
9c:b4:b2:f4:79:82:1f:c4:db:d3:c2:32:ad:9a:55:
85:45:cf:13:ad:8f:9d:4e:22:2c:72:e2:21:e5:38:
f2:97:2d:4d:9a:5e:e8:81:d6:16:6c:81:eb:91:ee:
33:7e:d9:a6:7d:b1:5e:fe:77:e8:92:1b:75:f6:94:
5d:78:06:5d:96:cc:5c:3e:40:d5:30:ca:17:e1:8d:
8d:f9:9b:c9:e9:d6:e8:94:92:f6:1a:86:bb:9d:2f:
21:f6:c3:c2:36:55:21:e6:10:00:44:a4:2f:fb:f8:
f2:ea:bf:61:c7:bd:14:5d:3f:58:09:c3:d8:d1:40:
1b:36:e6:d8:89:04:c5:aa:7f:c2:12:bb:31:81:b7:
81:1d:25:4a:11:9a:41:95:d8:3c:d5:4f:80:b0:34:
69:78:38:f7:51:01:4c:a9:74:ba:95:bd:d9:5d:ad:
3b:e2:25:82:23:f6:94:c3:5d:15:59:88:e1:a5:33:
c8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:9B:5C:E0:E4:0B:A8:90:A4:B4:C5:0F:CB:32:97:DD:1B:53:DC:FF
X509v3 Authority Key Identifier:
keyid:52:38:81:99:3C:F0:DB:67:4E:89:DB:58:15:E6:F1:89:A6:C6:0D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjiBmTzw22dOidtYFebxiabGDR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/7d0353-3a62-4c39-bd3a-c3a3521e8f70/1/SJtc4OQLqJCktMUPyzKX3RtT3P8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/7d0353-3a62-4c39-bd3a-c3a3521e8f70/1/UjiBmTzw22dOidtYFebxiabGDR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.120.0/24
Signature Algorithm: sha256WithRSAEncryption
11:cb:89:39:11:9b:85:c4:4d:f3:74:29:0a:a6:ad:c0:12:19:
ad:0c:c0:1f:48:1f:cd:50:19:2c:f3:1a:90:98:17:ea:87:d5:
66:6e:c3:cc:e1:8e:08:93:60:5f:da:03:3d:89:1a:45:0a:63:
85:1b:89:10:b2:7e:42:83:d1:20:64:42:cb:0f:f4:de:59:8a:
d8:28:a9:74:81:02:21:61:af:b4:1d:44:01:50:4b:72:b8:dd:
fb:fe:af:e2:db:6e:af:e4:c6:fe:78:b6:66:45:d6:b2:7e:83:
93:b9:25:2c:94:73:70:3f:7e:18:6b:c6:4d:28:02:02:02:c2:
78:ba:a0:4b:55:5b:46:c7:95:d6:b8:d7:b5:b0:ad:ac:38:ee:
33:4b:f6:9f:a9:de:6b:fe:8c:ea:b3:63:4d:a2:65:e5:11:a7:
f1:c2:57:68:e5:17:71:e8:63:64:a5:f6:9b:c0:06:81:4d:1d:
6d:12:fb:fe:3c:45:77:2a:d8:38:0f:e8:58:b1:59:ba:da:a8:
3a:c1:f7:72:78:f2:08:eb:45:04:b9:03:41:96:0c:0c:36:d8:
4c:16:d4:30:11:3a:ab:80:71:f8:0d:ba:b7:34:93:ba:68:55:
bc:1d:be:06:53:76:e0:36:b8:b0:a3:72:72:0f:4b:2b:80:c0:
4b:a9:ec:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:38 2024 by rpki-client on console-fra.rpki-client.org