Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/IJYf7S2ufWaH6NgcozH39ixBYLY.roa
File: IJYf7S2ufWaH6NgcozH39ixBYLY.roa (raw, json)
Hash identifier: OoOVEb0YP68VlMI6dDnr0r1KWMDenscE6SxNz6J00TI=
Subject key identifier: 20:96:1F:ED:2D:AE:7D:66:87:E8:D8:1C:A3:31:F7:F6:2C:41:60:B6
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 018404DD22E70B78602C4603C22D3EEF56C2
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/IJYf7S2ufWaH6NgcozH39ixBYLY.roa
Signing time: Sun 23 Oct 2022 12:41:52 +0000
ROA not before: Sun 23 Oct 2022 12:41:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400536
IP address blocks: 92.53.184.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:04:dd:22:e7:0b:78:60:2c:46:03:c2:2d:3e:ef:56:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Oct 23 12:41:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20961fed2dae7d6687e8d81ca331f7f62c4160b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e2:c0:3e:c8:b6:28:25:a1:3c:2c:d3:75:b0:
c3:25:95:e4:1c:e5:82:5f:27:45:c7:fb:4e:e1:3b:
97:28:94:65:5c:14:4b:dd:59:f7:89:e0:58:46:38:
7c:01:d5:75:b8:81:70:76:be:97:21:ec:51:8b:10:
c7:fe:ca:27:84:53:0e:f7:8f:30:e9:47:c3:33:c4:
69:ab:b7:a6:55:7e:f4:0f:3b:21:00:a9:20:5a:96:
36:b4:81:5b:67:5d:fe:ef:df:72:48:84:0b:ae:a1:
e4:b5:e0:24:b1:1d:16:ae:5a:2f:f9:78:08:07:a4:
5f:b9:2c:a9:ea:29:02:40:68:da:ee:cf:59:7e:f3:
df:d9:1e:8f:cf:1f:80:88:4a:ed:4c:75:45:47:0a:
3b:ab:60:91:dc:d0:54:a4:fd:7c:27:85:5d:43:60:
d2:41:63:9f:5e:1c:d2:35:41:69:df:cd:40:58:78:
69:50:a4:55:f2:b9:13:d6:b9:db:1a:27:0b:66:d6:
d8:e0:ad:90:8c:86:0f:12:31:39:8e:3a:b2:53:c0:
b6:ec:91:7f:eb:f3:61:69:37:5f:48:b3:6d:81:84:
1b:6c:42:dd:66:e8:4d:02:7a:e3:9e:95:16:39:df:
04:a5:54:bd:5f:56:b7:3b:eb:8d:73:7d:39:92:c4:
a9:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:96:1F:ED:2D:AE:7D:66:87:E8:D8:1C:A3:31:F7:F6:2C:41:60:B6
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/IJYf7S2ufWaH6NgcozH39ixBYLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.184.0/22
Signature Algorithm: sha256WithRSAEncryption
11:c6:fa:59:d1:77:7a:20:95:cf:5a:23:bc:10:aa:e4:68:7e:
74:4f:cd:4c:0e:9b:4c:19:bc:66:49:b0:c7:f0:b9:ed:de:33:
d6:65:51:ec:8e:cc:24:ba:21:44:cd:3c:a2:90:e6:8f:4d:eb:
07:0f:e3:e5:de:60:ba:c4:b2:eb:f5:c7:3a:65:98:5a:54:ea:
2c:4d:de:cf:85:10:a0:0a:7b:42:c0:3c:63:1c:5e:2e:3f:ec:
9d:33:28:58:c0:72:87:ff:38:80:db:e3:a4:fe:74:cb:d9:9c:
a9:b0:e5:b3:40:e4:37:75:8f:24:31:64:65:79:50:30:e0:6d:
b1:ed:3d:9e:55:dc:10:ce:1f:42:5b:ae:a2:d0:90:1b:49:3d:
65:00:34:f6:ba:96:a8:14:af:79:bf:c2:d6:f9:60:53:2d:10:
5d:c7:67:93:7d:b4:15:e3:65:fc:c0:78:11:63:79:e8:c3:4d:
11:ce:9a:18:8c:84:ca:81:9d:fd:c2:81:d5:d3:8b:65:2a:06:
33:36:87:af:9d:cf:50:25:18:10:81:59:29:d0:81:63:09:a8:
59:5b:f9:a0:35:6b:05:a4:d5:6b:ea:00:0b:12:57:4f:34:36:
96:80:e5:cf:e5:a7:2f:94:6d:f5:92:69:0c:78:92:95:68:fc:
0b:1e:b2:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:04 2024 by rpki-client on console-ams.rpki-client.org