Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/a0d674-87b6-4318-bed2-267547ea1e35/1/IomRIa3N986gzGzgTN5a-dRPVF0.roa
File: IomRIa3N986gzGzgTN5a-dRPVF0.roa (raw, json)
Hash identifier: tD9kobk0TAeEnw9X3CyXqKvfLDIPzJF6IcZtZrPASck=
Subject key identifier: 22:89:91:21:AD:CD:F7:CE:A0:CC:6C:E0:4C:DE:5A:F9:D4:4F:54:5D
Certificate issuer: /CN=28b0ff7998ca8854ce7c475a972ed1d52a5c60cd
Certificate serial: 03A4F782
Authority key identifier: 28:B0:FF:79:98:CA:88:54:CE:7C:47:5A:97:2E:D1:D5:2A:5C:60:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KLD_eZjKiFTOfEdaly7R1SpcYM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/a0d674-87b6-4318-bed2-267547ea1e35/1/IomRIa3N986gzGzgTN5a-dRPVF0.roa
Signing time: Sat 01 Jan 2022 04:56:29 +0000
ROA not before: Sat 01 Jan 2022 04:56:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203923
IP address blocks: 185.119.220.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61142914 (0x3a4f782)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28b0ff7998ca8854ce7c475a972ed1d52a5c60cd
Validity
Not Before: Jan 1 04:56:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22899121adcdf7cea0cc6ce04cde5af9d44f545d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:99:43:48:ae:e9:ea:9b:62:cc:92:f8:50:8a:
4f:da:ce:07:b9:20:ec:09:ab:9d:06:c3:7f:49:fa:
ce:9e:30:4e:fc:db:0c:0f:15:f9:3c:74:bb:84:24:
05:16:dd:e2:71:44:6b:ef:cb:64:a7:b5:80:53:f7:
32:e7:a5:ce:94:6d:8e:84:89:40:a1:65:99:52:ca:
de:44:f8:59:89:5b:3b:43:3e:d0:67:12:5f:0c:7c:
ed:21:36:00:4f:58:7b:da:fb:e4:a3:08:35:30:0e:
72:a2:d2:07:92:38:eb:9c:2e:a0:16:da:4b:1a:4e:
40:60:52:45:44:b7:90:9b:8a:96:bc:0d:c9:e7:cc:
ae:1f:c7:33:50:21:77:08:37:a5:60:c0:41:40:b3:
65:8c:53:54:dd:75:22:3e:97:13:a1:28:6b:63:ee:
5f:58:e5:dc:c4:df:b0:bd:3d:a4:e5:44:44:7c:ec:
0e:48:11:60:e3:28:fb:ad:73:32:9d:99:0f:78:40:
94:32:30:17:83:ad:a3:b9:5c:9a:57:1d:e5:7c:6d:
69:25:d8:d1:4c:33:3a:e1:16:32:a9:a4:c2:14:40:
cc:2b:a4:78:55:1e:99:aa:54:61:e7:d4:9f:c0:17:
a2:3d:47:fc:d2:c1:a4:d1:00:fe:e7:01:fd:02:0c:
74:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:89:91:21:AD:CD:F7:CE:A0:CC:6C:E0:4C:DE:5A:F9:D4:4F:54:5D
X509v3 Authority Key Identifier:
keyid:28:B0:FF:79:98:CA:88:54:CE:7C:47:5A:97:2E:D1:D5:2A:5C:60:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KLD_eZjKiFTOfEdaly7R1SpcYM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/a0d674-87b6-4318-bed2-267547ea1e35/1/IomRIa3N986gzGzgTN5a-dRPVF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/a0d674-87b6-4318-bed2-267547ea1e35/1/KLD_eZjKiFTOfEdaly7R1SpcYM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.220.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:c2:d6:3c:6b:d9:d9:4f:e1:1d:4b:8f:d2:e1:27:5a:9b:39:
46:6d:98:06:6a:e8:0a:f4:8c:17:c1:9c:2b:ad:38:7b:e5:bf:
7f:65:c2:ca:2d:c3:23:74:d1:ee:e9:76:85:17:f5:73:f8:14:
8b:cb:4a:10:17:19:bc:c5:81:68:e7:77:7d:34:f1:d4:8b:67:
72:f0:9a:92:84:38:9e:24:f3:51:28:c1:7e:8c:10:3e:4a:ec:
d9:73:f0:d5:64:93:a8:c6:57:2d:a8:4b:7b:9f:8e:1e:75:bf:
bb:b0:54:0c:1f:13:f1:6a:56:1f:54:16:d3:26:f9:1b:95:4b:
5d:e3:df:a6:9a:a9:e3:8e:95:41:c2:2e:e0:70:21:21:51:2a:
2a:4e:86:5b:96:5b:f5:41:02:0a:e5:76:2b:60:96:61:f1:8f:
71:67:7b:70:d3:0c:5c:db:27:33:de:36:de:13:55:2a:a1:e2:
65:30:6f:2d:5b:66:a9:d9:3c:fa:13:60:61:64:e9:30:2b:3e:
ba:6c:b8:4b:da:0e:05:ec:6a:5a:f1:d1:e0:b7:41:d8:3d:1d:
53:a4:1c:ad:62:05:d8:74:b6:6e:03:d7:0d:53:31:8c:94:be:
ff:79:79:e2:57:35:b9:6e:f5:05:35:77:d7:06:de:5f:57:fc:
83:73:bb:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:56 2024 by rpki-client on console-fra.rpki-client.org