Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/149cf6-611d-4e03-a660-dce1127ab223/1/nSCI5hA819tyDBbYkmTCM-WswwQ.roa
File: nSCI5hA819tyDBbYkmTCM-WswwQ.roa (raw, json)
Hash identifier: 3UgV3ubOC9GTk/2E86EUl+H0fMSFElOi0/Xkwpq7+ic=
Subject key identifier: 9D:20:88:E6:10:3C:D7:DB:72:0C:16:D8:92:64:C2:33:E5:AC:C3:04
Certificate issuer: /CN=70cbeb388f5902c16160bbed0962cb622b2bb832
Certificate serial: 0181D787CB8312414F5B0FD4F3360821FC92
Authority key identifier: 70:CB:EB:38:8F:59:02:C1:61:60:BB:ED:09:62:CB:62:2B:2B:B8:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvrOI9ZAsFhYLvtCWLLYisruDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/149cf6-611d-4e03-a660-dce1127ab223/1/nSCI5hA819tyDBbYkmTCM-WswwQ.roa
Signing time: Thu 07 Jul 2022 07:20:09 +0000
ROA not before: Thu 07 Jul 2022 07:20:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34702
IP address blocks: 185.46.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d7:87:cb:83:12:41:4f:5b:0f:d4:f3:36:08:21:fc:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbeb388f5902c16160bbed0962cb622b2bb832
Validity
Not Before: Jul 7 07:20:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d2088e6103cd7db720c16d89264c233e5acc304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f6:16:07:83:95:18:c8:7a:85:be:73:3a:f4:
76:2f:c7:04:a9:77:c3:d7:eb:ef:3d:b7:95:59:e0:
84:30:52:a6:70:b3:7a:d1:74:fd:71:a8:95:43:0c:
83:82:94:4c:76:aa:a2:3b:1a:2c:cb:15:f7:75:58:
ab:bb:7a:fb:da:78:0b:70:ec:d6:5f:8f:6b:47:cb:
ac:41:5b:fa:2b:4a:16:b3:54:bc:95:a6:d7:50:05:
b7:cb:f3:90:2e:1a:d3:a7:65:02:94:a1:bd:61:a2:
6f:90:55:15:f0:ff:7f:7d:35:d8:8d:d7:5b:e1:ef:
05:cb:c6:e7:aa:f6:e2:da:c3:c3:3d:4c:c8:ed:69:
fd:30:ba:7f:5b:d4:14:79:55:f6:9b:0f:44:35:c1:
fe:ac:a1:aa:b9:cf:79:24:5f:c2:5f:c8:37:f1:ac:
c5:89:9e:5a:7c:f7:e0:a6:f3:00:8c:77:98:bb:26:
34:ed:87:50:8e:43:4c:f5:df:7a:00:d2:48:da:38:
f5:ad:f2:ce:c2:4c:e5:62:05:4b:87:de:3b:7f:76:
fb:59:3a:8f:61:fa:7e:c5:aa:9b:0c:39:48:c7:b6:
37:de:de:90:d6:4f:c1:cc:eb:a3:5b:b8:dc:0a:40:
60:cb:d3:ec:bd:fa:4b:d3:42:10:04:84:19:19:f2:
77:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:20:88:E6:10:3C:D7:DB:72:0C:16:D8:92:64:C2:33:E5:AC:C3:04
X509v3 Authority Key Identifier:
keyid:70:CB:EB:38:8F:59:02:C1:61:60:BB:ED:09:62:CB:62:2B:2B:B8:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvrOI9ZAsFhYLvtCWLLYisruDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/149cf6-611d-4e03-a660-dce1127ab223/1/nSCI5hA819tyDBbYkmTCM-WswwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/149cf6-611d-4e03-a660-dce1127ab223/1/cMvrOI9ZAsFhYLvtCWLLYisruDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.20.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:5d:fb:d6:37:1b:26:a2:29:5e:4a:1c:5a:d9:ce:eb:a7:01:
b7:19:40:7e:8e:2b:ae:58:fd:b8:75:b0:d1:dd:48:a7:2c:f7:
7e:80:fd:19:3c:40:79:64:b1:fe:1b:f7:80:45:8f:4a:c2:63:
1f:d1:ef:ca:bc:7a:60:04:79:8e:2e:ef:da:e4:d8:2e:63:f9:
bc:97:71:d9:d9:8f:d2:09:b1:b8:4f:5e:fd:df:13:c3:e1:ae:
ca:fb:8c:75:02:9b:fa:bc:12:db:bd:e9:27:eb:0a:39:49:3e:
36:e3:b6:48:7f:3a:d1:a5:59:c1:0e:ef:a4:43:60:69:5b:52:
67:75:15:83:b0:6c:47:6b:5c:3c:db:a4:4a:b6:ad:01:ab:f4:
64:9a:d0:7b:71:66:d8:f9:12:95:99:99:8f:6a:6c:f5:94:41:
6e:d1:0b:21:15:76:29:cd:a8:d5:ea:05:2a:cb:c1:9b:bc:dd:
98:52:63:a8:2e:4b:83:a2:71:1a:88:cd:56:9e:79:20:a1:84:
c9:27:a7:48:e1:67:74:3b:25:4b:3b:31:26:62:2a:a7:a3:dc:
51:59:ba:0c:b6:1e:c8:be:cf:a0:d8:0f:ee:ec:10:0a:ee:f6:
67:c2:97:7d:9b:44:d7:93:8c:97:aa:71:5e:0f:e7:7a:68:53:
7b:63:e9:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:39 2024 by rpki-client on console-fra.rpki-client.org