Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/c087e9-d11d-44a6-8c4d-2857f17037a1/1/OSx9hYCPvAO6XNLuwhko_nS49wg.roa
File: OSx9hYCPvAO6XNLuwhko_nS49wg.roa (raw, json)
Hash identifier: BTUDj3/uMMM+ME07+EhJ8q0GJMoOrlThvh8jwyz9l7o=
Subject key identifier: 39:2C:7D:85:80:8F:BC:03:BA:5C:D2:EE:C2:19:28:FE:74:B8:F7:08
Certificate issuer: /CN=cd1e56e4c4c4a518f2388a5acb5af0452cc2a595
Certificate serial: AEEA
Authority key identifier: CD:1E:56:E4:C4:C4:A5:18:F2:38:8A:5A:CB:5A:F0:45:2C:C2:A5:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zR5W5MTEpRjyOIpay1rwRSzCpZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/c087e9-d11d-44a6-8c4d-2857f17037a1/1/OSx9hYCPvAO6XNLuwhko_nS49wg.roa
Signing time: Wed 09 Feb 2022 08:00:08 +0000
ROA not before: Wed 09 Feb 2022 08:00:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61246
IP address blocks: 185.14.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44778 (0xaeea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd1e56e4c4c4a518f2388a5acb5af0452cc2a595
Validity
Not Before: Feb 9 08:00:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=392c7d85808fbc03ba5cd2eec21928fe74b8f708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1a:7b:00:e6:1e:94:66:5a:47:1b:6a:42:5f:
37:1f:f5:02:f8:7b:56:2f:7a:e5:4e:9f:d3:ae:54:
54:dd:ab:f2:3d:95:a4:6e:37:a8:aa:1c:4e:8a:83:
63:5e:dd:20:7b:e8:b1:33:74:57:20:ad:0e:d5:9a:
4e:31:59:0f:29:dc:a1:f6:27:58:cd:f3:45:af:58:
7c:1b:e8:b5:ab:0c:36:0e:dc:29:af:4b:32:13:35:
cc:2b:52:95:4b:b3:1a:58:29:fc:24:2b:54:d0:34:
50:e9:c8:07:72:ea:5e:8e:4c:55:5b:b5:9e:6c:7e:
43:2f:ed:82:bc:e9:e2:5d:eb:81:2c:11:40:e3:dd:
4a:3b:9f:4f:fa:8d:64:4f:2c:91:c3:7a:1e:32:03:
96:77:61:4c:a1:9f:fd:02:01:ee:51:1f:0f:5c:e7:
2f:7d:69:fe:6a:38:96:e6:17:53:89:f9:61:8c:ea:
94:42:79:14:fb:c7:a9:a9:4b:68:96:e2:62:78:4e:
1b:4e:40:aa:9b:33:5c:16:f7:c9:0e:19:de:12:e7:
75:72:51:9a:dc:79:f2:a1:08:af:b7:a6:20:23:fd:
2a:2c:b4:04:49:b3:31:b7:e7:91:0b:5f:1f:be:3b:
d1:49:4d:a1:47:23:7f:2d:2a:61:36:8b:48:35:05:
60:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:2C:7D:85:80:8F:BC:03:BA:5C:D2:EE:C2:19:28:FE:74:B8:F7:08
X509v3 Authority Key Identifier:
keyid:CD:1E:56:E4:C4:C4:A5:18:F2:38:8A:5A:CB:5A:F0:45:2C:C2:A5:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zR5W5MTEpRjyOIpay1rwRSzCpZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/c087e9-d11d-44a6-8c4d-2857f17037a1/1/OSx9hYCPvAO6XNLuwhko_nS49wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/c087e9-d11d-44a6-8c4d-2857f17037a1/1/zR5W5MTEpRjyOIpay1rwRSzCpZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.80.0/22
Signature Algorithm: sha256WithRSAEncryption
44:f8:0d:32:35:76:b6:dd:6d:b1:dd:4f:18:5e:bf:77:b8:41:
04:a2:c0:d8:c3:0a:4a:68:ae:1f:4a:48:d1:72:85:e6:4f:3a:
f3:e5:e7:76:a5:cc:bd:18:9b:55:31:ec:2d:f9:82:93:6f:86:
59:e4:11:38:a9:00:da:53:2d:5f:17:0b:96:0c:37:7d:de:29:
65:2d:7c:90:9d:25:1b:a2:1e:ab:76:ef:1a:e6:26:29:3a:a2:
28:65:40:4c:01:64:53:ad:2b:87:84:df:ca:e1:06:50:ff:d5:
49:bb:5e:8d:69:89:74:bf:62:5d:b9:73:a9:62:df:3e:6a:7d:
e7:12:b6:03:72:c3:8a:8f:9c:bb:0c:6d:42:9e:78:c4:2c:7a:
0c:e3:38:b8:c2:ea:7e:56:ef:9c:32:75:b0:9d:18:fd:46:71:
25:02:fc:9e:b9:09:c3:49:49:d0:6c:a7:01:33:22:de:19:d1:
92:45:06:a9:21:5b:86:5c:13:1d:69:f6:12:c1:37:50:28:f2:
b1:16:d2:9f:56:61:49:75:11:0c:33:74:10:a3:5d:7f:5f:5a:
4f:58:55:c5:69:87:95:10:47:32:4e:00:b1:e2:94:a0:a2:8a:
87:74:51:1e:98:bd:2a:0a:c8:e1:c8:c8:10:ef:d6:3a:4a:8a:
3d:c6:1f:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:10 2024 by rpki-client on console-fra.rpki-client.org