Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/73db77-0a6b-4f9b-a8e8-eaedb709efbf/1/xJNAF6uEAXDLmnXvdUCdY6vkgC0.roa
File: xJNAF6uEAXDLmnXvdUCdY6vkgC0.roa (raw, json)
Hash identifier: ikQo7+yLliB+rR1YAoZQKc9fGPQDEWbMaKbdBKr6Kl4=
Subject key identifier: C4:93:40:17:AB:84:01:70:CB:9A:75:EF:75:40:9D:63:AB:E4:80:2D
Certificate issuer: /CN=f8e826de1070d9d79daa9e415fc432613cc57e57
Certificate serial: 12A52546
Authority key identifier: F8:E8:26:DE:10:70:D9:D7:9D:AA:9E:41:5F:C4:32:61:3C:C5:7E:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Ogm3hBw2dedqp5BX8QyYTzFflc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/73db77-0a6b-4f9b-a8e8-eaedb709efbf/1/xJNAF6uEAXDLmnXvdUCdY6vkgC0.roa
Signing time: Sat 01 Jan 2022 09:55:11 +0000
ROA not before: Sat 01 Jan 2022 09:55:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5580
IP address blocks: 185.47.227.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 312812870 (0x12a52546)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e826de1070d9d79daa9e415fc432613cc57e57
Validity
Not Before: Jan 1 09:55:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4934017ab840170cb9a75ef75409d63abe4802d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:aa:e6:4f:49:2e:38:a7:02:b4:71:e0:fa:af:
b4:a3:1b:24:f0:2f:e2:40:35:08:c3:8b:4e:04:19:
ed:8f:74:8b:b5:28:31:a2:75:f3:99:0f:04:a6:d1:
f6:54:91:53:e1:9a:41:f8:19:4d:14:6e:a9:4d:9c:
ed:15:7a:cb:4f:1c:ff:f5:68:6f:84:f7:f3:1f:96:
d1:eb:7e:db:96:8f:d6:b8:87:da:50:bf:0a:a8:29:
01:9a:63:a6:5e:0c:29:c2:a8:99:44:ab:3e:9f:70:
9c:12:31:95:1a:f2:9f:28:59:ea:4c:ab:ed:52:ae:
ad:43:8e:15:2d:ff:26:fb:5c:01:4b:a7:bc:2a:f2:
66:f3:e5:b3:8b:3d:a6:f3:5f:07:ce:48:21:24:e6:
4f:b1:4c:85:18:a5:17:d5:67:c8:0f:61:eb:5e:e5:
5a:2a:d4:7b:fe:17:dc:36:79:98:d5:82:b3:ce:7f:
48:02:30:bc:27:96:67:fe:0b:1a:b2:ec:aa:d6:d9:
9f:5b:87:a7:60:5a:3b:cf:32:af:85:7e:63:b4:b9:
13:ef:0b:11:f3:d5:b8:13:bc:64:bf:83:dd:24:55:
88:a8:7d:c8:27:98:a5:52:cb:57:2a:74:69:91:83:
5d:8c:b3:18:31:9e:a2:b1:1e:47:f8:ed:60:e3:d7:
4f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:93:40:17:AB:84:01:70:CB:9A:75:EF:75:40:9D:63:AB:E4:80:2D
X509v3 Authority Key Identifier:
keyid:F8:E8:26:DE:10:70:D9:D7:9D:AA:9E:41:5F:C4:32:61:3C:C5:7E:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Ogm3hBw2dedqp5BX8QyYTzFflc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/73db77-0a6b-4f9b-a8e8-eaedb709efbf/1/xJNAF6uEAXDLmnXvdUCdY6vkgC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/73db77-0a6b-4f9b-a8e8-eaedb709efbf/1/1-Ogm3hBw2dedqp5BX8QyYTzFflc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.227.0/24
Signature Algorithm: sha256WithRSAEncryption
94:dc:e4:1c:ea:87:ac:4d:1e:db:ce:11:13:d8:58:02:6c:0f:
c5:3e:fb:a7:ee:ea:65:49:cd:2a:fb:89:24:e4:66:93:eb:45:
fd:a5:2e:e1:10:42:9a:bb:69:d3:1c:f1:12:2b:92:a9:67:74:
49:e8:14:20:8b:bb:b6:6a:05:07:1a:19:2b:7b:2b:cb:36:6b:
52:9c:df:0e:10:f3:34:4f:08:ad:b8:b0:15:74:8a:54:45:53:
93:86:dd:78:5e:ff:aa:49:87:fe:15:1d:0c:35:a3:a6:c4:22:
c0:69:5a:f8:2a:0d:e0:11:1b:af:10:03:0b:b6:f3:05:33:81:
ce:8a:da:fe:33:1e:24:2d:28:0e:0d:4e:e1:93:86:9e:8a:f5:
84:d8:2e:2b:1a:6c:17:90:1d:d7:80:fc:8f:94:d1:cc:0d:12:
58:2a:1b:c9:7f:37:90:4f:ad:92:2b:4f:0c:9a:43:65:83:8f:
35:b0:9a:18:7e:78:4c:3d:36:61:80:96:23:e8:19:b0:d3:da:
52:b7:b9:fc:48:0f:2f:44:b6:12:89:91:db:9d:37:0a:ff:ec:
f9:f8:9c:7a:ea:78:d9:c3:a6:2e:1a:a2:e4:c7:f3:58:1d:f9:
6e:a2:c0:6e:4c:40:1c:95:b5:f9:a5:15:48:e5:b7:d6:fd:f5:
62:33:3b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:49 2023 by rpki-client on console-ams.rpki-client.org