Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/6db52b-ce95-4a3b-a963-484c24ed52ae/1/pXyQiGVd5tY4SINfwhlOHa9W7R0.roa
File: pXyQiGVd5tY4SINfwhlOHa9W7R0.roa (raw, json)
Hash identifier: T+OihFbWNh7724tz8X6rmWvqypa1HKvGBQ0bjvE5FGQ=
Subject key identifier: A5:7C:90:88:65:5D:E6:D6:38:48:83:5F:C2:19:4E:1D:AF:56:ED:1D
Certificate issuer: /CN=f4ba7c145898b8ae3d2b3a1c71c50ab19a93f647
Certificate serial: 06C289
Authority key identifier: F4:BA:7C:14:58:98:B8:AE:3D:2B:3A:1C:71:C5:0A:B1:9A:93:F6:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Lp8FFiYuK49KzocccUKsZqT9kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/6db52b-ce95-4a3b-a963-484c24ed52ae/1/pXyQiGVd5tY4SINfwhlOHa9W7R0.roa
Signing time: Thu 27 Jan 2022 10:22:54 +0000
ROA not before: Thu 27 Jan 2022 10:22:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.94.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 443017 (0x6c289)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4ba7c145898b8ae3d2b3a1c71c50ab19a93f647
Validity
Not Before: Jan 27 10:22:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a57c9088655de6d63848835fc2194e1daf56ed1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8f:18:a6:77:df:45:96:69:a7:eb:49:ec:e1:
85:87:74:55:b4:9b:73:3f:d3:b9:7d:19:33:07:df:
ac:e3:64:ca:0a:c3:52:9a:fa:cb:30:b2:ec:cb:7c:
f2:d1:e2:46:e7:cf:70:4f:8d:24:33:24:a9:43:e3:
56:33:2b:e9:7e:36:06:05:e1:e5:18:1b:0a:a2:10:
6a:c2:b1:96:50:60:47:b4:38:8b:c8:71:ff:12:a0:
f4:c2:fb:98:31:cf:31:94:07:23:5c:ec:23:a0:b8:
ff:1e:25:18:67:c9:5b:3a:0d:fe:5c:e0:f6:d8:16:
3a:ca:db:4d:b4:9e:2d:8e:e7:c2:37:d1:20:78:5d:
5a:14:95:89:69:3a:45:7c:89:99:70:eb:b4:43:a2:
54:67:b3:b7:83:b4:fe:f6:6a:92:f3:0a:e1:4a:25:
2d:d2:55:2e:9f:a5:ef:39:7f:e7:da:b1:ce:8a:06:
63:67:28:c3:dc:41:5d:bd:94:da:15:f4:ef:39:04:
e4:ff:d9:1f:59:37:e1:1e:57:d3:8c:46:1c:3d:0a:
36:6b:9b:0e:7b:02:eb:86:6e:b3:e5:90:0d:75:4f:
6b:9a:86:79:51:8e:f7:0b:73:ae:29:4d:de:13:55:
3a:0c:82:b8:77:c3:ab:71:63:74:2b:b9:7d:09:eb:
71:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:7C:90:88:65:5D:E6:D6:38:48:83:5F:C2:19:4E:1D:AF:56:ED:1D
X509v3 Authority Key Identifier:
keyid:F4:BA:7C:14:58:98:B8:AE:3D:2B:3A:1C:71:C5:0A:B1:9A:93:F6:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Lp8FFiYuK49KzocccUKsZqT9kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6db52b-ce95-4a3b-a963-484c24ed52ae/1/pXyQiGVd5tY4SINfwhlOHa9W7R0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6db52b-ce95-4a3b-a963-484c24ed52ae/1/9Lp8FFiYuK49KzocccUKsZqT9kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.64.0/24
Signature Algorithm: sha256WithRSAEncryption
12:bc:dc:29:22:62:ea:c8:bd:d1:3e:b7:ab:c9:37:fc:a6:74:
85:cd:f8:c0:bc:54:29:43:22:5d:99:69:d1:c2:38:a3:09:64:
9c:6b:85:ac:6a:80:ca:ca:33:6d:8c:66:01:b8:60:70:75:85:
82:cc:9b:0b:2a:9c:a9:01:10:66:c3:be:3d:a1:b7:59:7a:e2:
c2:a0:05:bb:3b:a3:1f:b1:a6:27:e9:db:80:7b:25:50:05:2a:
44:99:4b:40:30:2e:88:6e:8a:0b:a9:ac:d2:c9:2e:84:7a:d8:
97:94:28:71:9b:f1:dc:49:e0:6e:1d:69:19:76:7e:b6:36:b6:
e6:95:09:61:37:2c:ce:9e:ba:c2:17:9d:1b:08:de:69:64:f0:
26:3c:82:06:e3:f0:57:dc:fd:3a:59:c5:d5:10:63:fa:38:8f:
f2:e7:49:21:5f:4e:c1:cc:ec:17:6e:56:b3:06:4f:83:35:89:
1e:3f:cb:23:dd:51:a3:61:c4:05:81:85:47:87:e8:3a:f4:8d:
33:f5:07:4e:34:ba:f4:20:81:47:26:27:bc:42:27:af:11:43:
16:00:ab:f4:ff:43:15:ed:c6:a4:b7:f2:3a:eb:a6:8a:2e:7e:
b7:7d:0e:2a:c2:4d:9b:6b:fb:7a:eb:34:43:82:1d:43:40:71:
30:44:1a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:02 2023 by rpki-client on console-fra.rpki-client.org