Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/9NMQvT92Tk4OL4v6mF5aFl5eZok.roa
File: 9NMQvT92Tk4OL4v6mF5aFl5eZok.roa (raw, json)
Hash identifier: Ayofj5+agMNmrKCpaiuITzWg+RR1x7Agn6KbivKwmsI=
Subject key identifier: F4:D3:10:BD:3F:76:4E:4E:0E:2F:8B:FA:98:5E:5A:16:5E:5E:66:89
Certificate issuer: /CN=4f9ac6fe2031adde03668240e3c5d91ec6711e1e
Certificate serial: 0AFE281C
Authority key identifier: 4F:9A:C6:FE:20:31:AD:DE:03:66:82:40:E3:C5:D9:1E:C6:71:1E:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5rG_iAxrd4DZoJA48XZHsZxHh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/9NMQvT92Tk4OL4v6mF5aFl5eZok.roa
Signing time: Wed 12 Jan 2022 15:26:42 +0000
ROA not before: Wed 12 Jan 2022 15:26:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210069
IP address blocks: 185.93.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184428572 (0xafe281c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9ac6fe2031adde03668240e3c5d91ec6711e1e
Validity
Not Before: Jan 12 15:26:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4d310bd3f764e4e0e2f8bfa985e5a165e5e6689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:97:17:33:cd:89:28:6f:31:89:1e:dc:14:f4:
c5:bc:eb:e6:9d:8e:0e:f0:f6:90:21:f4:ae:d8:50:
56:7e:6d:d3:55:c2:0b:aa:6a:73:7c:e6:2a:6e:5a:
81:4a:31:21:bb:8b:cf:da:be:b9:b9:73:5d:f6:20:
9d:f9:9d:78:6b:c8:13:fa:42:35:1d:65:4e:43:9c:
2e:50:e6:ea:0a:07:05:0b:34:d9:6b:4b:5a:6d:e6:
85:ec:7f:4b:24:b0:70:55:b0:a8:b0:e5:68:02:05:
fe:7c:33:a1:e5:01:69:d7:6e:24:a4:86:8c:66:59:
81:2a:06:70:d6:0e:d7:d5:08:35:50:e5:5b:23:09:
85:24:27:4c:a2:55:02:bb:34:9d:0b:bb:f8:d6:b4:
64:2b:2a:be:1c:5f:17:3d:fa:19:72:4f:8d:05:01:
58:ac:7f:cb:8c:7a:a0:4b:2d:62:09:2d:29:01:78:
e0:b9:57:d9:28:f7:e4:76:aa:82:31:12:16:51:f8:
b9:78:44:e7:59:2e:fe:81:cc:24:5e:fa:5e:8b:7b:
6d:16:d5:62:9a:b6:99:b5:9a:cb:2d:fd:ad:e4:bb:
8a:bc:f7:76:14:77:19:a6:b7:fb:67:a1:0f:0d:97:
56:56:b4:bc:b8:08:24:c5:4e:70:9d:92:0b:28:4c:
71:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D3:10:BD:3F:76:4E:4E:0E:2F:8B:FA:98:5E:5A:16:5E:5E:66:89
X509v3 Authority Key Identifier:
keyid:4F:9A:C6:FE:20:31:AD:DE:03:66:82:40:E3:C5:D9:1E:C6:71:1E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5rG_iAxrd4DZoJA48XZHsZxHh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/9NMQvT92Tk4OL4v6mF5aFl5eZok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/T5rG_iAxrd4DZoJA48XZHsZxHh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.187.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:e4:b0:3c:5f:6e:b7:4c:aa:8b:56:52:c5:e3:df:7e:d5:de:
13:de:5d:91:4c:dc:ad:3d:83:c8:91:48:35:bb:33:f5:27:03:
c7:e5:4a:0f:b5:cb:34:92:4b:fa:34:12:f6:b8:7a:5b:b9:d1:
5f:2a:98:aa:da:ee:f3:ff:5e:69:a8:64:92:07:ee:23:4a:92:
e4:d7:a4:90:18:60:57:8e:c6:eb:a8:d8:ba:96:5a:7a:9b:76:
cf:b7:f0:cf:b4:be:86:93:df:33:5f:1c:36:df:9d:80:06:58:
73:2f:4d:8d:0b:b5:df:d9:47:f6:91:50:5e:30:11:8a:89:60:
6e:9b:92:9c:af:ed:8d:fa:a1:fc:2e:cb:38:7d:cf:ef:3b:78:
19:fb:a8:13:ef:f0:18:cf:96:d3:4f:5a:1d:66:32:dc:c8:d4:
07:dc:a8:6a:7f:c4:19:99:76:0f:38:0f:39:80:58:34:0f:a1:
49:14:94:8c:30:02:44:60:41:ee:e0:17:c0:5a:d4:be:67:2a:
17:01:a2:d9:80:e3:0e:b6:40:06:16:86:6e:ad:00:41:c9:7f:
49:b8:4d:40:00:ca:c2:2d:ea:c8:d3:26:e7:6d:27:60:ec:77:
63:f8:15:1b:b8:09:e6:e6:11:68:b0:86:1e:e3:89:c7:d4:e6:
c1:ba:44:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:33 2024 by rpki-client on console-ams.rpki-client.org