Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/sVhQLmqelPnGGJMjgM9QpCRmIL4.roa
File: sVhQLmqelPnGGJMjgM9QpCRmIL4.roa (raw, json)
Hash identifier: sxxkO2asnoF8x/AG/qMSyocqvk4Ryu9J7fOLJm+7cIc=
Subject key identifier: B1:58:50:2E:6A:9E:94:F9:C6:18:93:23:80:CF:50:A4:24:66:20:BE
Certificate issuer: /CN=cd919eb5c2108360155de7fb4f216a055ae31f09
Certificate serial: 0D8E5EA6
Authority key identifier: CD:91:9E:B5:C2:10:83:60:15:5D:E7:FB:4F:21:6A:05:5A:E3:1F:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZGetcIQg2AVXef7TyFqBVrjHwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/sVhQLmqelPnGGJMjgM9QpCRmIL4.roa
Signing time: Sat 01 Jan 2022 01:51:10 +0000
ROA not before: Sat 01 Jan 2022 01:51:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39180
IP address blocks: 185.191.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227434150 (0xd8e5ea6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd919eb5c2108360155de7fb4f216a055ae31f09
Validity
Not Before: Jan 1 01:51:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b158502e6a9e94f9c618932380cf50a4246620be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:43:9c:2d:a5:4d:27:b0:ba:8e:03:85:21:cd:
09:35:8a:c8:fa:03:d8:ee:a3:d6:21:b7:37:32:00:
4a:62:3c:e7:51:de:1c:61:57:d1:b0:6e:3d:bc:da:
40:59:b1:30:47:42:a4:68:06:64:dc:9f:ba:f2:90:
18:a5:45:e1:60:cc:c5:27:e5:e2:29:41:b1:28:01:
e9:cf:3f:d1:8c:07:96:b2:50:a1:42:4e:06:21:71:
27:cf:9d:9c:e2:23:9b:05:3f:d2:95:1b:c7:21:e4:
b1:83:29:9b:aa:53:16:eb:99:40:95:91:4a:09:f0:
46:84:1c:8c:52:ab:1c:c2:0c:e6:5f:87:59:7e:57:
a1:53:5a:4e:de:4a:1a:83:21:de:4c:af:db:14:1b:
60:5d:b2:88:aa:dd:2d:cb:76:36:4c:25:24:4f:1a:
cb:1c:b1:d8:5b:e5:a1:15:94:5e:f5:90:47:4d:31:
36:c0:97:7c:0a:c8:06:e3:4a:3e:ca:8d:16:e0:8e:
be:01:b8:33:dc:01:62:ec:f5:ef:db:53:b2:1f:81:
90:a2:2a:a7:54:5c:fb:1c:eb:75:d4:ed:e4:b6:c0:
bf:4d:53:f6:87:16:01:8b:c7:02:a1:6a:d2:78:94:
26:cb:75:b9:04:d6:4d:6c:e7:83:03:6d:8a:f9:1b:
79:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:58:50:2E:6A:9E:94:F9:C6:18:93:23:80:CF:50:A4:24:66:20:BE
X509v3 Authority Key Identifier:
keyid:CD:91:9E:B5:C2:10:83:60:15:5D:E7:FB:4F:21:6A:05:5A:E3:1F:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZGetcIQg2AVXef7TyFqBVrjHwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/sVhQLmqelPnGGJMjgM9QpCRmIL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/zZGetcIQg2AVXef7TyFqBVrjHwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.201.0/24
Signature Algorithm: sha256WithRSAEncryption
95:ea:a8:92:9e:b8:31:b7:b0:12:58:b5:fd:9a:8e:7b:7f:0c:
e6:db:23:d6:bb:43:7b:39:ed:f0:82:9f:26:1a:10:3d:6b:72:
b6:ba:9e:7a:2c:4b:73:cf:aa:20:99:3c:f0:7e:93:d3:cd:64:
17:a5:35:1b:44:e0:cf:57:39:ac:f9:ca:d9:dd:ea:10:63:48:
a3:c2:19:c7:a9:21:fb:89:a5:4c:f7:cf:1a:22:d5:8c:93:3a:
08:01:a9:5a:e5:0b:34:ae:5d:04:3b:9e:de:49:50:d3:67:d7:
33:fd:87:9f:bc:6e:2c:84:8b:41:18:7b:a9:d9:6d:38:10:b4:
45:19:c0:bb:99:ba:9b:60:fd:1e:18:39:22:f7:6f:e1:3f:59:
96:89:a2:73:f2:ca:c6:5f:28:6a:e3:d3:c4:2b:6c:35:90:6c:
64:05:d1:90:0e:96:db:3e:14:8a:18:54:b7:e6:bd:1b:13:22:
5c:0e:78:88:4d:8c:65:74:e1:dd:ca:30:b2:1a:fb:b0:63:35:
57:78:2f:0b:e0:86:ae:1e:82:a9:15:c8:ee:c9:d1:dd:06:3d:
41:45:56:2e:53:a7:7e:84:80:ad:36:cc:58:ca:4a:fd:44:78:
2f:a0:0e:ac:c4:34:5e:45:34:74:07:49:d3:2d:16:f0:7e:85:
dc:2e:c4:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:00 2024 by rpki-client on console-fra.rpki-client.org