Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/L1TszmzU1rBMEUicL7E53NzCbFM.roa
File: L1TszmzU1rBMEUicL7E53NzCbFM.roa (raw, json)
Hash identifier: +5mI0AW1ypdf1uJPOLaFhoosWcAHh3NVJnRjFxK3z70=
Subject key identifier: 2F:54:EC:CE:6C:D4:D6:B0:4C:11:48:9C:2F:B1:39:DC:DC:C2:6C:53
Certificate issuer: /CN=ed800950a31dcdacaac56adb936a42beb845e24b
Certificate serial: 09FDCD93
Authority key identifier: ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/L1TszmzU1rBMEUicL7E53NzCbFM.roa
Signing time: Sat 01 Jan 2022 02:54:43 +0000
ROA not before: Sat 01 Jan 2022 02:54:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19437
IP address blocks: 185.221.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167628179 (0x9fdcd93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed800950a31dcdacaac56adb936a42beb845e24b
Validity
Not Before: Jan 1 02:54:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f54ecce6cd4d6b04c11489c2fb139dcdcc26c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c3:7c:b1:c2:d6:72:90:99:2b:1b:b4:31:99:
61:5d:c1:4c:c4:4a:57:4d:c7:c9:4f:28:b4:ad:15:
8c:d1:56:80:32:30:08:0e:d7:a1:ad:44:d1:33:24:
70:34:ce:34:0f:ab:79:58:de:f4:ea:df:b3:b4:b2:
9a:04:49:0a:8f:b8:82:e6:9e:52:ed:fa:7a:45:e3:
f3:f1:a2:5f:ee:8f:cd:5f:63:31:43:29:82:cc:b7:
09:a0:16:09:ff:6a:7b:90:37:46:66:69:d9:71:3b:
65:b9:1e:fb:d7:21:28:3b:0a:a2:d1:f6:dd:d7:f0:
8a:c4:30:c5:1d:01:0b:25:af:a7:3b:ce:99:f6:ed:
88:36:c0:bf:86:4b:e0:22:ba:1d:e7:6a:34:6e:97:
d4:55:c5:77:e3:79:94:64:89:ea:82:7f:82:36:37:
05:44:52:2d:6a:e4:8e:a8:b9:73:fd:33:1d:dc:75:
62:cf:ae:ee:2c:f0:b1:8e:70:ee:e5:6d:e5:ca:45:
00:ea:f9:22:db:cb:6d:e3:33:9b:45:3d:77:64:4c:
23:0c:9d:c8:e9:94:9b:ef:54:a9:18:76:7a:37:e6:
d7:33:f1:b5:21:ed:5a:04:fc:40:cb:1a:3c:b6:cb:
d9:82:2f:88:e5:a5:d6:4f:3c:55:96:b5:65:6f:3f:
46:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:54:EC:CE:6C:D4:D6:B0:4C:11:48:9C:2F:B1:39:DC:DC:C2:6C:53
X509v3 Authority Key Identifier:
keyid:ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/L1TszmzU1rBMEUicL7E53NzCbFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/7YAJUKMdzayqxWrbk2pCvrhF4ks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.219.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:66:17:82:af:5e:d6:e8:24:ed:fe:12:e5:41:cd:27:4e:78:
cf:71:56:f8:a8:ef:ae:2b:de:80:15:5b:ff:c9:8f:1d:4a:79:
7f:6f:0a:ca:68:a9:40:16:18:58:8e:f9:ab:9a:84:57:90:f2:
f8:e7:5f:c4:49:77:6e:ed:c5:8d:31:8b:87:ba:8d:b6:68:0a:
0f:36:a2:d6:19:00:76:b1:ae:70:c6:dc:84:26:17:ca:d1:fd:
48:ab:4c:49:de:a1:b2:41:53:73:5a:54:c8:6d:aa:d8:39:ff:
a4:a9:77:e2:67:37:50:51:5a:42:47:48:23:6e:46:a4:30:63:
5b:c3:0e:3e:3f:9d:ad:ab:a0:78:7b:2d:44:1e:0d:a5:63:a3:
b6:ff:8a:84:85:56:97:4f:26:0a:cd:c5:6b:8a:e5:01:de:db:
09:b1:33:ce:78:80:7d:c1:b5:76:95:4c:50:9b:68:d1:03:12:
55:96:36:61:f9:84:2a:2c:8f:21:33:6e:a1:73:6a:7b:e3:79:
03:5f:ee:fa:0c:4a:87:1e:3e:5a:93:96:93:dc:cf:72:34:46:
ca:7b:a1:16:23:5a:c9:ed:6b:72:c5:d7:d4:36:19:38:2b:d2:
2a:67:0c:24:7b:29:55:63:30:ba:72:2f:39:59:d8:d8:cd:68:
1d:a4:81:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:07 2024 by rpki-client on console-ams.rpki-client.org