Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/sNeupbaEBtxMrUVeQyWCrNOcCwc.roa
File: sNeupbaEBtxMrUVeQyWCrNOcCwc.roa (raw, json)
Hash identifier: rbHJDoOL/NRh+EH8SWTHT/qluJ8y/HnxcG3GIQfNZTQ=
Subject key identifier: B0:D7:AE:A5:B6:84:06:DC:4C:AD:45:5E:43:25:82:AC:D3:9C:0B:07
Certificate issuer: /CN=fa2e72abf7b1728fda6aa0b0413d8854812ea361
Certificate serial: 06F146F8
Authority key identifier: FA:2E:72:AB:F7:B1:72:8F:DA:6A:A0:B0:41:3D:88:54:81:2E:A3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-i5yq_exco_aaqCwQT2IVIEuo2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/sNeupbaEBtxMrUVeQyWCrNOcCwc.roa
Signing time: Sat 01 Jan 2022 12:01:11 +0000
ROA not before: Sat 01 Jan 2022 12:01:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24961
IP address blocks: 185.231.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116475640 (0x6f146f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa2e72abf7b1728fda6aa0b0413d8854812ea361
Validity
Not Before: Jan 1 12:01:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0d7aea5b68406dc4cad455e432582acd39c0b07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c6:a8:0b:4f:96:28:58:9f:20:c0:0a:fa:d4:
5c:54:9c:17:eb:59:ad:e0:41:28:af:94:37:32:f1:
f6:d2:53:0c:60:db:9c:f5:a3:37:02:02:25:e5:2c:
69:1d:c8:17:d5:6b:b1:0a:6d:fb:fb:ff:fb:8e:f9:
d0:70:5d:1d:e6:bc:26:38:15:f5:ec:88:57:8e:ca:
d3:f2:8f:75:b0:62:bb:74:ed:fb:32:14:2f:b0:34:
ad:ac:2f:01:8a:9c:12:8e:f9:d6:90:37:ef:b6:1b:
5f:81:80:9d:cf:b0:17:a6:a3:00:27:e4:41:03:87:
d7:a3:14:01:e0:fc:f1:38:6e:a3:6a:db:17:db:1e:
e2:82:31:f7:1a:92:6b:32:93:6b:d2:ac:17:53:9b:
75:4c:45:87:63:0e:88:b2:13:86:3f:a8:77:c4:e4:
3a:63:a3:1c:8f:2b:13:a2:c0:8d:ae:24:b1:7d:e4:
1b:00:77:25:41:64:7f:39:a7:a7:cb:2b:83:55:b3:
cb:84:bb:7c:c6:21:8b:20:4c:f4:45:cc:86:c5:2d:
c4:7e:16:32:f6:02:ab:e4:59:ed:da:77:ac:a9:f8:
4e:88:35:bc:58:b5:98:51:a9:21:56:ea:79:11:2d:
a1:60:99:da:ae:7e:10:8c:cc:b8:64:0b:7d:ed:b0:
db:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D7:AE:A5:B6:84:06:DC:4C:AD:45:5E:43:25:82:AC:D3:9C:0B:07
X509v3 Authority Key Identifier:
keyid:FA:2E:72:AB:F7:B1:72:8F:DA:6A:A0:B0:41:3D:88:54:81:2E:A3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-i5yq_exco_aaqCwQT2IVIEuo2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/sNeupbaEBtxMrUVeQyWCrNOcCwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/1-i5yq_exco_aaqCwQT2IVIEuo2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.220.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:ef:c4:38:60:5b:f6:e7:02:11:4c:7e:99:31:24:9c:2d:be:
82:a3:94:7f:9e:01:13:29:07:48:78:d0:52:ec:f9:ae:d4:7e:
8a:bf:00:30:77:2a:b4:79:a2:bc:e0:b1:b7:78:17:07:c7:75:
5c:88:20:68:a9:e8:96:ab:28:ea:3b:c4:ca:5a:70:9a:e6:de:
f8:21:16:97:f6:28:bb:a0:0e:9f:7f:07:52:1e:66:15:cf:dc:
c4:de:61:f7:23:59:08:58:0c:36:4d:5e:d2:da:7c:a7:b7:e2:
d8:f1:f4:ee:96:93:f9:4e:6d:fa:7a:72:6b:bc:9a:0a:47:7c:
f1:0e:f5:36:9c:9f:5b:2f:67:64:85:10:a9:37:cc:45:b3:33:
59:d8:9b:11:29:cb:56:7e:8b:58:e5:86:0f:66:1b:4f:c4:b8:
db:e6:80:79:b5:2d:79:e4:f5:0a:77:84:c4:d0:fa:ec:6c:5a:
d8:62:3e:55:54:01:55:e5:c1:61:39:49:3a:ab:7c:6c:e0:73:
13:b5:dc:65:cc:87:a4:08:4f:22:70:9f:9c:cb:24:e1:2e:b1:
76:4d:0d:1a:a0:8b:78:67:ba:9b:d4:86:32:7d:e0:f3:fb:cf:
e0:16:df:bd:a2:5d:cb:6f:97:1f:22:0c:e2:d2:2b:b2:11:c2:
8e:34:9b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:11 2024 by rpki-client on console-ams.rpki-client.org