Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/821dc2-6766-4988-b777-03532140ef52/1/sTkmHjwvTTe9DWaThnRVwWguBCo.roa
File: sTkmHjwvTTe9DWaThnRVwWguBCo.roa (raw, json)
Hash identifier: 5ODXXneKSHRJDgQCK5xrBq7Hj1q6G/VjKid/iMJr/nc=
Subject key identifier: B1:39:26:1E:3C:2F:4D:37:BD:0D:66:93:86:74:55:C1:68:2E:04:2A
Certificate issuer: /CN=7d0213e3e7ebe6170a3600a8e3ae64ed962c0e36
Certificate serial: 0648EE72
Authority key identifier: 7D:02:13:E3:E7:EB:E6:17:0A:36:00:A8:E3:AE:64:ED:96:2C:0E:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQIT4-fr5hcKNgCo465k7ZYsDjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/821dc2-6766-4988-b777-03532140ef52/1/sTkmHjwvTTe9DWaThnRVwWguBCo.roa
Signing time: Sat 01 Jan 2022 11:00:52 +0000
ROA not before: Sat 01 Jan 2022 11:00:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204099
IP address blocks: 185.29.90.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105442930 (0x648ee72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d0213e3e7ebe6170a3600a8e3ae64ed962c0e36
Validity
Not Before: Jan 1 11:00:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b139261e3c2f4d37bd0d6693867455c1682e042a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ce:63:af:6a:ba:0c:1e:46:43:54:e2:34:c9:
9e:81:f2:c5:40:94:85:08:af:6c:62:0e:e1:c2:9f:
6b:4b:c1:89:9b:58:69:cd:be:7f:98:ab:86:b6:27:
f2:47:92:1e:81:c9:68:e3:ab:19:60:d8:83:a2:de:
b0:df:62:70:f1:77:1a:60:3b:a4:80:b0:66:59:bf:
fd:50:8a:5c:e8:ca:b4:d0:07:2c:ab:d2:d0:87:3e:
28:81:1d:03:f9:9a:11:a1:44:6a:c9:80:cc:11:48:
24:c0:b5:96:c0:86:91:c6:32:1b:fb:5b:19:3d:73:
3a:8b:18:98:a2:a9:2e:2d:ae:f5:35:1d:52:b9:bd:
31:b0:7b:3e:74:34:c7:70:71:64:f5:08:37:72:d9:
43:ac:9c:4f:fb:0b:06:ac:af:25:8e:24:bf:db:81:
9f:ac:e9:bd:ad:cc:f2:b8:a4:0b:62:4c:a6:fe:0c:
5a:82:22:68:43:dc:e6:ef:b8:8b:52:49:14:7f:6e:
a1:86:02:b1:44:48:09:94:de:36:a2:9c:37:3e:a2:
c5:36:57:da:f8:1b:84:07:13:3c:aa:be:c7:7b:a4:
bb:30:29:76:c8:75:e4:da:a9:39:dc:36:c9:8c:e9:
2e:94:7c:2e:75:19:5b:ee:1b:5f:b4:78:b2:f6:b0:
07:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:39:26:1E:3C:2F:4D:37:BD:0D:66:93:86:74:55:C1:68:2E:04:2A
X509v3 Authority Key Identifier:
keyid:7D:02:13:E3:E7:EB:E6:17:0A:36:00:A8:E3:AE:64:ED:96:2C:0E:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQIT4-fr5hcKNgCo465k7ZYsDjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/821dc2-6766-4988-b777-03532140ef52/1/sTkmHjwvTTe9DWaThnRVwWguBCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/821dc2-6766-4988-b777-03532140ef52/1/fQIT4-fr5hcKNgCo465k7ZYsDjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.29.90.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:ba:3c:fb:7c:83:ff:62:32:a8:7e:d6:c6:dc:3f:c8:68:4d:
01:18:51:92:b7:ed:23:12:aa:08:2a:94:9d:cf:70:a9:b1:a1:
fb:c3:5b:ce:fd:25:0e:fc:a8:78:4e:b5:04:f1:b0:0c:d6:44:
b7:20:c3:e2:f7:9b:15:54:02:b1:02:e3:dd:47:0a:05:ca:27:
e4:e5:ef:98:f4:b0:15:c8:13:71:fc:b1:41:a2:35:75:91:95:
30:c2:58:27:77:2c:ec:5c:55:43:bf:da:4c:84:9f:0b:c4:82:
a7:bc:d0:b5:66:4b:8c:87:6d:0c:d8:0b:06:33:0f:76:11:99:
7c:7a:ec:45:ed:5b:cd:83:82:15:13:d2:47:65:48:89:ee:be:
6f:74:45:53:de:63:d7:1c:f9:83:b4:34:10:e1:4d:f6:7a:a7:
47:cf:51:01:9d:00:95:6d:67:38:96:d0:d2:22:02:bd:ff:7c:
0f:39:ad:85:ad:aa:3f:c1:f0:1a:59:57:f3:79:f9:d1:ee:41:
08:b4:d2:d2:3d:42:45:84:33:89:4a:e0:1c:8d:98:cf:c1:16:
2f:de:56:3f:0f:d8:cc:99:35:b6:1c:ee:46:74:d8:6c:80:12:
f6:4e:ee:b1:87:af:da:59:b2:83:ae:c7:91:24:8c:4a:59:32:
3e:37:92:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:37 2024 by rpki-client on console-fra.rpki-client.org