Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/sNTpqBR-bItqSbU0TIjnP2LmpCI.roa
File: sNTpqBR-bItqSbU0TIjnP2LmpCI.roa (raw, json)
Hash identifier: DEJ4U93rW3Y9dD34gGlx+Rx2aOFwcs4QQHwYfHBLyu4=
Subject key identifier: B0:D4:E9:A8:14:7E:6C:8B:6A:49:B5:34:4C:88:E7:3F:62:E6:A4:22
Certificate issuer: /CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Certificate serial: 0FE2B516
Authority key identifier: 6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/sNTpqBR-bItqSbU0TIjnP2LmpCI.roa
Signing time: Sat 01 Jan 2022 12:59:43 +0000
ROA not before: Sat 01 Jan 2022 12:59:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210092
IP address blocks: 185.190.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266515734 (0xfe2b516)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Validity
Not Before: Jan 1 12:59:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0d4e9a8147e6c8b6a49b5344c88e73f62e6a422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a7:57:1c:26:95:ea:9b:b2:49:98:ad:65:d4:
00:27:df:a4:8c:6c:ad:f4:19:5c:88:31:07:85:69:
e2:a3:f3:fd:38:34:52:c5:70:16:f8:be:79:bf:2d:
21:5e:e5:22:dd:31:40:3a:42:bc:c2:18:77:59:94:
60:32:31:f5:5a:88:f3:56:7e:f5:a8:da:22:73:96:
64:8a:c1:ba:a6:96:18:25:4a:94:e1:06:92:36:f1:
ec:7e:7c:0a:24:2f:ea:76:40:a7:dd:4b:d6:83:e8:
2a:d4:1f:24:c2:fb:73:83:a0:9a:5a:09:e9:88:15:
23:4b:a5:d4:7c:6c:86:5d:5e:ba:77:ac:f7:92:ce:
4a:0a:40:22:ec:71:21:1f:b7:8a:7f:91:ef:29:4e:
63:2f:84:3c:56:ea:d1:fc:cb:87:c9:fa:7d:76:90:
03:00:a2:c0:fe:bb:4f:55:e4:b9:54:84:19:dd:99:
00:02:81:cc:c1:50:57:bb:7b:59:d6:f8:5d:97:0d:
fc:5e:77:ae:0e:fb:30:da:e4:7f:18:6c:c7:71:e1:
c1:90:cf:8c:49:38:e0:b0:45:a3:5a:51:37:e1:97:
f7:eb:24:39:9a:17:91:3b:66:ce:fe:55:d6:57:e3:
51:7d:c0:7d:eb:7e:42:a8:19:3a:a7:d0:de:4b:5d:
82:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D4:E9:A8:14:7E:6C:8B:6A:49:B5:34:4C:88:E7:3F:62:E6:A4:22
X509v3 Authority Key Identifier:
keyid:6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/sNTpqBR-bItqSbU0TIjnP2LmpCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.150.0/24
Signature Algorithm: sha256WithRSAEncryption
70:59:1f:64:e6:53:0f:8c:af:ff:e7:f2:7a:1e:4f:f6:77:7c:
18:15:d5:2e:a4:1f:0b:7b:c4:57:21:5d:a4:2a:75:a9:f3:7c:
4f:52:9d:4a:a5:08:e7:a6:4a:68:98:9a:da:40:23:3f:20:f5:
4b:ff:06:5e:cd:f1:2c:32:d8:40:33:1e:9e:d5:5e:e0:6c:d5:
a1:e4:20:62:fe:99:b9:04:c9:9c:78:7d:b3:d5:a3:37:5d:e0:
8a:4a:8f:9e:af:b6:64:6a:77:e1:9a:74:ee:7a:c3:d1:11:b3:
b1:5a:8e:14:cb:dd:08:9e:16:b2:98:7a:70:e3:a5:19:a5:5e:
e7:45:64:8c:29:9b:b5:70:67:7d:82:0d:8d:75:60:dd:58:67:
0d:cc:98:33:85:e5:7e:94:f1:09:21:77:ac:ec:b0:f8:ec:da:
6f:6b:64:27:4a:e3:63:db:ea:c4:4a:2c:3e:63:90:80:87:25:
f1:08:f1:d7:74:3d:8a:57:bb:2a:d5:cb:b0:f7:c3:e8:d5:41:
37:46:cc:81:71:2f:77:cd:ce:d5:5e:cd:a0:90:6e:0b:a3:9e:
f3:91:88:46:ae:f9:1b:55:8b:9f:5e:a0:7c:7c:5f:4b:c9:19:
51:53:ff:82:64:90:c3:13:0a:24:5c:62:c7:da:04:e8:cf:10:
21:a3:aa:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:23 2024 by rpki-client on console-fra.rpki-client.org