Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/d47909-a560-409c-b839-c5e7821579f1/1/Cs2Q2Yx1qcW494jOgPX7_ZMdGEg.roa
File: Cs2Q2Yx1qcW494jOgPX7_ZMdGEg.roa (raw, json)
Hash identifier: z0+rGuiBhYCjLEuvr+qHK7LCY5LqvGVUH+c7HwUeMSI=
Subject key identifier: 0A:CD:90:D9:8C:75:A9:C5:B8:F7:88:CE:80:F5:FB:FD:93:1D:18:48
Certificate issuer: /CN=90ae538e2a91346f0402598b0ff2fb9a95c07c39
Certificate serial: 1452167B
Authority key identifier: 90:AE:53:8E:2A:91:34:6F:04:02:59:8B:0F:F2:FB:9A:95:C0:7C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kK5TjiqRNG8EAlmLD_L7mpXAfDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/d47909-a560-409c-b839-c5e7821579f1/1/Cs2Q2Yx1qcW494jOgPX7_ZMdGEg.roa
Signing time: Tue 12 Apr 2022 14:24:22 +0000
ROA not before: Tue 12 Apr 2022 14:24:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57129
IP address blocks: 185.202.200.0/22 maxlen: 22
2a06:cd00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 340924027 (0x1452167b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ae538e2a91346f0402598b0ff2fb9a95c07c39
Validity
Not Before: Apr 12 14:24:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0acd90d98c75a9c5b8f788ce80f5fbfd931d1848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4b:f0:ec:74:b3:18:46:de:dd:97:08:c2:34:
81:72:63:7f:6b:98:8c:e6:53:b6:6c:6e:4a:26:16:
d8:23:61:dd:9d:d3:e1:df:52:1f:fe:29:66:69:75:
f9:c0:68:86:55:79:d5:ec:bc:5c:80:a5:f4:99:0f:
f0:bc:89:81:5a:85:45:64:67:08:2f:d0:59:41:03:
23:35:e5:c8:b8:ab:8b:dc:e1:02:2f:b5:05:95:a0:
69:d8:b6:5a:d1:32:27:21:af:95:ca:76:6a:65:02:
6c:ad:0f:92:2b:9b:f8:56:2e:bb:3e:55:a0:74:7f:
2d:b7:ec:24:8e:f1:1b:84:2b:e5:2e:c3:05:3f:af:
9a:57:e6:d0:2d:49:b2:f4:1b:7b:2e:57:40:76:ac:
a6:a4:e6:4e:91:ad:50:f4:ff:94:3b:82:62:28:45:
df:92:36:3f:26:24:4c:fb:dd:ea:bf:3c:01:90:67:
a5:ab:c3:8e:5f:08:d1:6c:31:5a:03:ed:59:b5:59:
e4:53:71:f1:9d:58:5e:88:db:62:0f:50:ee:a5:3d:
b2:03:c5:fa:14:ea:bb:59:b0:9f:4c:26:03:c8:a9:
51:02:0b:fa:8d:cc:0a:bc:a6:f2:c4:b1:f7:56:cb:
37:fc:5d:f0:e0:e6:5d:e3:01:22:ad:6a:cb:64:d5:
c7:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:CD:90:D9:8C:75:A9:C5:B8:F7:88:CE:80:F5:FB:FD:93:1D:18:48
X509v3 Authority Key Identifier:
keyid:90:AE:53:8E:2A:91:34:6F:04:02:59:8B:0F:F2:FB:9A:95:C0:7C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kK5TjiqRNG8EAlmLD_L7mpXAfDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d47909-a560-409c-b839-c5e7821579f1/1/Cs2Q2Yx1qcW494jOgPX7_ZMdGEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d47909-a560-409c-b839-c5e7821579f1/1/kK5TjiqRNG8EAlmLD_L7mpXAfDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.200.0/22
IPv6:
2a06:cd00::/29
Signature Algorithm: sha256WithRSAEncryption
a2:83:b6:07:63:4a:11:78:2a:e5:67:eb:62:f2:20:ec:03:b6:
5f:fe:76:c1:3e:0a:5d:9e:47:3f:71:65:52:54:bf:44:e4:91:
0d:f2:a3:77:14:0b:6d:bf:7d:ac:05:e6:46:95:77:b7:29:4f:
8e:98:c1:35:c8:b3:dc:2f:62:fd:b8:e1:01:3f:57:d1:59:69:
86:7e:8e:a2:08:3c:27:5e:83:b6:ce:ff:ac:8d:83:4a:4d:73:
4b:4e:a5:d3:51:8d:82:dc:f8:87:4a:be:8b:d5:ff:8c:67:82:
4c:cf:f9:56:71:5b:37:64:1f:64:e2:69:a6:5f:57:f3:ac:2b:
82:6a:b3:37:ad:cc:72:7e:77:15:fb:00:bb:5c:f9:9d:71:57:
86:51:c0:ec:44:ad:1d:86:e0:88:f4:6d:23:57:1b:5c:da:2b:
b1:ff:2b:22:cb:c7:65:b8:37:9e:f8:29:47:54:57:63:d8:80:
60:e6:e1:79:29:fd:01:ac:f3:bf:a4:7b:aa:76:27:37:e0:f4:
be:30:87:cc:68:5f:97:cd:fc:d2:27:2b:60:34:ae:37:96:84:
e4:ca:da:19:4c:35:60:e8:d3:de:11:90:99:2c:f3:c1:c8:db:
1b:7e:ee:79:ed:97:c8:85:44:14:39:b1:93:5e:ba:55:79:6f:
20:0f:0b:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:05 2024 by rpki-client on console-fra.rpki-client.org