Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c32598-2a95-43c4-9b6a-0166532dac56/1/9KlCybMITG0lD1zCHEi_4EMydeQ.roa
File: 9KlCybMITG0lD1zCHEi_4EMydeQ.roa (raw, json)
Hash identifier: Fvr1MsDq5kk+h9p5+w0OoMKAY/zWfAWnTaH6Kh8MJIY=
Subject key identifier: F4:A9:42:C9:B3:08:4C:6D:25:0F:5C:C2:1C:48:BF:E0:43:32:75:E4
Certificate issuer: /CN=47f29d2bd15e024bb97e72b21242b523dc915181
Certificate serial: 0DABEBDB
Authority key identifier: 47:F2:9D:2B:D1:5E:02:4B:B9:7E:72:B2:12:42:B5:23:DC:91:51:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R_KdK9FeAku5fnKyEkK1I9yRUYE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c32598-2a95-43c4-9b6a-0166532dac56/1/9KlCybMITG0lD1zCHEi_4EMydeQ.roa
Signing time: Sat 01 Jan 2022 06:57:38 +0000
ROA not before: Sat 01 Jan 2022 06:57:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42473
IP address blocks: 185.53.108.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229370843 (0xdabebdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47f29d2bd15e024bb97e72b21242b523dc915181
Validity
Not Before: Jan 1 06:57:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4a942c9b3084c6d250f5cc21c48bfe0433275e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:43:1e:4d:d0:1a:f6:3e:74:5b:5a:d5:b6:e1:
4a:1a:26:ac:14:46:36:f3:db:48:77:8c:ae:f7:11:
d9:8d:2e:cf:0d:ec:86:47:a5:26:69:d6:60:46:1b:
47:80:d6:b8:5f:9c:2f:87:16:b6:aa:22:54:3a:cd:
1f:01:1f:f2:e8:ec:2e:9e:b0:23:c9:50:6f:98:9c:
e2:2e:02:36:17:c5:55:1b:27:ef:12:1c:81:9d:15:
af:9b:33:95:24:9e:c0:04:66:73:b3:a1:1a:aa:74:
08:bb:b9:96:92:ac:09:52:12:ad:f6:24:fd:3a:bb:
ed:0a:0a:95:e0:fc:b0:01:37:47:5a:5e:09:34:3a:
87:73:45:a2:21:1b:8c:f3:d7:97:7b:2c:e9:78:94:
fa:6e:00:f5:ff:64:c7:62:65:27:e8:7c:c3:b7:b4:
12:64:4f:1e:1f:d1:ea:9c:87:f8:2f:4c:b6:b6:d5:
d6:4d:33:80:d1:59:1f:8b:43:9d:d1:c6:d4:c3:21:
ac:1b:ae:cd:95:bd:d1:35:4c:b1:64:58:7a:cf:83:
e0:eb:fb:1a:84:33:53:d7:02:67:62:62:73:37:e7:
d6:2e:76:93:91:6c:f4:a8:91:b4:8b:ec:b0:e3:d3:
db:d3:c5:6e:6c:82:dc:ad:6c:a0:16:0f:82:c8:6e:
ab:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A9:42:C9:B3:08:4C:6D:25:0F:5C:C2:1C:48:BF:E0:43:32:75:E4
X509v3 Authority Key Identifier:
keyid:47:F2:9D:2B:D1:5E:02:4B:B9:7E:72:B2:12:42:B5:23:DC:91:51:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R_KdK9FeAku5fnKyEkK1I9yRUYE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c32598-2a95-43c4-9b6a-0166532dac56/1/9KlCybMITG0lD1zCHEi_4EMydeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c32598-2a95-43c4-9b6a-0166532dac56/1/R_KdK9FeAku5fnKyEkK1I9yRUYE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.108.0/22
Signature Algorithm: sha256WithRSAEncryption
86:28:2f:07:27:e0:01:f2:3c:6e:44:55:75:1f:f6:6e:c6:f3:
02:00:6c:3a:36:2c:4b:7d:19:ac:3c:48:3b:e7:3d:a4:89:1e:
6c:1f:f4:a5:d8:09:5b:a0:f5:72:55:34:21:f3:e5:4d:64:72:
24:06:85:ba:0b:3b:ea:bf:c8:15:6c:6f:ac:f6:10:2b:3b:d7:
c3:38:c0:97:47:16:ef:22:02:83:62:11:ed:88:5a:63:f0:d5:
c0:4c:a3:90:d3:94:03:08:91:38:ba:5d:16:2f:90:e5:dd:6f:
41:ac:9d:c9:c0:17:62:38:2f:14:7e:00:a4:8e:2f:0f:cf:3c:
45:65:f2:55:f6:b1:b0:b3:69:5e:32:1d:2d:aa:cc:4c:dd:e5:
2c:11:d2:61:17:9c:2f:e9:15:d7:fa:b5:96:dd:6f:13:3a:c4:
75:bf:34:f2:3d:fd:5c:39:5b:2d:e5:8e:77:6c:41:41:a1:35:
34:08:6e:45:69:e8:8b:fa:aa:c6:99:fb:8c:8c:c9:94:e0:97:
97:ac:1d:17:0c:6d:1b:ce:d4:39:c8:a5:22:cb:4d:d2:9a:fc:
e8:79:a4:df:77:c1:ea:a0:28:7a:fe:b3:3e:31:9d:46:6a:7a:
e0:78:58:0e:92:1a:6d:d9:d7:a2:04:59:b6:50:79:33:f8:51:
aa:e0:32:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:50 2024 by rpki-client on console-fra.rpki-client.org