Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/sV5srC2oXUIVsWQ0qTTMkJeGQ0A.roa
File: sV5srC2oXUIVsWQ0qTTMkJeGQ0A.roa (raw, json)
Hash identifier: PQpTzvBZxQq0JDoJQCcndauxVdBlNo7VcvcUyG9rhQU=
Subject key identifier: B1:5E:6C:AC:2D:A8:5D:42:15:B1:64:34:A9:34:CC:90:97:86:43:40
Certificate issuer: /CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Certificate serial: 0AF3A121
Authority key identifier: 9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/sV5srC2oXUIVsWQ0qTTMkJeGQ0A.roa
Signing time: Sat 01 Jan 2022 15:03:16 +0000
ROA not before: Sat 01 Jan 2022 15:03:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 185.91.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183738657 (0xaf3a121)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Validity
Not Before: Jan 1 15:03:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b15e6cac2da85d4215b16434a934cc9097864340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:31:10:e9:f9:d4:46:5f:c4:c7:6a:0e:ed:81:
ee:fe:e8:96:70:2a:9d:a0:fb:92:c2:06:9c:e1:7b:
99:5b:fe:c3:da:da:98:83:22:08:40:7e:a7:74:51:
53:ec:ee:9c:df:4b:61:30:07:9b:ed:0b:41:4c:8f:
09:23:f6:61:d9:6f:9a:d6:de:39:d2:c7:db:de:dc:
99:d8:0d:a2:cc:98:1d:17:40:5a:00:60:ca:b9:23:
2a:d9:9f:d0:fc:08:39:8b:f4:0a:c7:ff:e5:c3:36:
01:66:a9:27:02:e4:3e:af:75:81:b2:89:54:d5:9c:
5f:52:76:0d:5b:66:ea:f5:d2:34:ec:66:13:c0:ce:
8a:48:d9:0b:8d:41:1c:96:d5:df:60:da:0b:aa:cd:
d5:48:a3:5b:50:e7:b0:81:16:35:2d:45:0e:39:ea:
fd:35:bb:1e:89:ef:6c:0a:08:76:98:62:71:eb:53:
2c:c7:57:a2:cb:5c:bd:38:c5:d8:5d:20:cc:db:d9:
00:40:b5:09:75:60:98:62:c0:b6:b3:13:51:d7:c3:
b3:27:9a:99:dc:d4:ba:74:68:7b:e2:95:2a:72:b8:
52:57:ed:d0:db:e8:96:07:4e:f5:d5:86:78:65:56:
4c:53:b9:9c:c7:db:c7:71:25:61:e8:0e:48:50:52:
c7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5E:6C:AC:2D:A8:5D:42:15:B1:64:34:A9:34:CC:90:97:86:43:40
X509v3 Authority Key Identifier:
keyid:9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/sV5srC2oXUIVsWQ0qTTMkJeGQ0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/n68L-T_EOB__fnqoa0B2wDMkL_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.204.0/22
Signature Algorithm: sha256WithRSAEncryption
70:07:10:94:21:09:aa:e8:4b:a9:50:3e:c8:98:94:93:58:72:
d4:8e:6e:07:ba:c0:24:72:56:8f:46:2e:e3:21:ac:aa:1f:62:
5a:f5:b7:51:c4:20:28:8c:6d:31:79:fb:2c:9b:96:ef:dd:f0:
3a:55:6b:bb:d8:57:eb:6d:0c:99:8e:c4:7b:ab:a5:b9:83:92:
cd:7c:b4:05:af:a5:33:98:d8:ce:19:0a:dd:25:e4:c9:a1:27:
e0:96:9b:57:f4:50:78:ad:a3:5e:46:3c:af:e7:d0:5e:53:51:
d8:0d:40:a9:0f:19:ec:2f:c4:08:0d:4b:10:7b:d5:e0:3b:15:
1e:75:fe:68:37:9c:86:75:8d:e2:c9:12:a0:af:e4:8e:19:71:
f0:63:cc:c0:68:36:f4:8a:44:db:80:ec:4c:28:a7:8f:7a:0b:
f3:03:b9:09:c8:07:00:d1:a3:c7:e1:0a:a0:14:a8:51:80:9a:
4e:6b:7a:75:62:cb:14:52:c0:ee:22:f1:79:26:9f:3e:44:e7:
4b:9a:52:0b:46:86:bb:c8:2b:d4:0c:22:ca:79:66:12:44:b4:
5b:f2:e0:8a:51:e9:ec:31:12:c1:2f:7b:cf:e2:43:71:96:a0:
67:6a:f8:57:16:10:8e:22:c8:54:49:4c:ba:46:46:af:29:40:
09:bb:5b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:47 2024 by rpki-client on console-ams.rpki-client.org