Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/O9tJrt1YE_6xrjfan9Y0W0uaxzw.roa
File: O9tJrt1YE_6xrjfan9Y0W0uaxzw.roa (raw, json)
Hash identifier: I5QGiJmGuVHFvqGuLOgpoSlykPQJ96SNmZguB+l+MG0=
Subject key identifier: 3B:DB:49:AE:DD:58:13:FE:B1:AE:37:DA:9F:D6:34:5B:4B:9A:C7:3C
Certificate issuer: /CN=4f9ac6fe2031adde03668240e3c5d91ec6711e1e
Certificate serial: 0BF6BE79
Authority key identifier: 4F:9A:C6:FE:20:31:AD:DE:03:66:82:40:E3:C5:D9:1E:C6:71:1E:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5rG_iAxrd4DZoJA48XZHsZxHh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/O9tJrt1YE_6xrjfan9Y0W0uaxzw.roa
Signing time: Thu 05 May 2022 15:45:25 +0000
ROA not before: Thu 05 May 2022 15:45:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34323
IP address blocks: 185.93.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200719993 (0xbf6be79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9ac6fe2031adde03668240e3c5d91ec6711e1e
Validity
Not Before: May 5 15:45:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bdb49aedd5813feb1ae37da9fd6345b4b9ac73c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:87:c1:e9:65:cb:21:0f:64:0d:74:d8:1d:69:
b6:2a:15:9b:8a:b8:2a:1e:f1:d5:90:8f:6b:a0:a8:
15:36:8a:0a:a6:ed:3a:a3:06:36:99:bf:7b:36:88:
73:c3:fd:ed:1b:ae:8e:8f:d0:d7:2c:a4:e8:49:cb:
57:16:52:a2:44:45:ea:f1:55:0c:13:cd:7b:4e:a0:
97:22:23:16:ae:cf:e4:37:96:1c:ae:8f:31:f9:e4:
cc:69:68:92:1c:9b:1a:b9:e0:1b:c5:41:d7:e1:37:
23:a2:88:40:56:bf:f5:cc:fa:6f:a0:ca:9e:52:1e:
25:b8:27:db:fb:16:ba:e7:8a:15:8e:c5:ac:99:e9:
8e:00:22:0a:73:59:64:66:9c:fb:22:5d:69:91:ca:
d7:4f:04:95:44:77:bd:0a:f4:60:0e:2b:47:1f:2e:
c0:96:f2:a6:05:bc:5e:cb:e9:12:da:75:bb:6d:2c:
31:cd:6d:bd:dc:d4:97:8f:56:fe:9a:7e:fb:eb:a4:
00:37:ee:45:3d:72:a2:3e:c7:76:39:d2:a5:93:03:
4e:f0:43:61:0f:81:76:ca:d2:c7:0d:49:0c:5d:8c:
52:fd:6f:2d:f2:37:c0:85:c2:c1:c0:10:ac:13:5a:
1c:15:6b:88:c8:a7:40:67:32:9b:3a:99:96:04:17:
32:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:DB:49:AE:DD:58:13:FE:B1:AE:37:DA:9F:D6:34:5B:4B:9A:C7:3C
X509v3 Authority Key Identifier:
keyid:4F:9A:C6:FE:20:31:AD:DE:03:66:82:40:E3:C5:D9:1E:C6:71:1E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5rG_iAxrd4DZoJA48XZHsZxHh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/O9tJrt1YE_6xrjfan9Y0W0uaxzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/T5rG_iAxrd4DZoJA48XZHsZxHh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.186.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:be:12:26:dd:62:dd:21:eb:35:53:3f:5e:87:1b:6b:d0:16:
36:1d:fc:78:d9:90:9c:50:9a:cb:8f:ee:f1:ac:3d:9c:27:7e:
34:36:5b:64:74:de:ce:07:5e:8c:e9:fd:76:76:15:10:9f:fa:
11:62:aa:c3:98:73:31:31:72:7c:ce:0c:44:66:32:12:9a:91:
61:21:b8:ea:2f:93:fd:b8:b4:3a:e2:9a:7a:1a:28:f0:b8:17:
0a:95:92:7e:41:47:c7:89:f9:31:0b:3c:91:20:6b:dd:65:04:
ec:aa:64:6f:4d:9b:c9:0b:5c:2e:37:f9:ae:1d:79:d3:af:0f:
a7:47:4e:13:c5:37:64:63:f2:4b:70:5a:29:b4:79:c2:23:b0:
6f:62:53:f7:e7:79:3c:2a:58:67:5e:8a:c7:90:52:52:2c:01:
19:2a:8b:ab:3d:ab:1a:fe:5f:71:01:58:40:15:33:2c:d2:4b:
af:4e:6d:31:b9:c7:b6:2a:9e:80:08:1a:19:a7:6f:6d:15:d4:
33:4e:fc:43:cf:ad:e8:cc:d4:7f:6f:b4:d3:ad:f5:2f:dc:1f:
36:8d:ba:bc:03:09:63:75:2c:ee:af:b3:0e:b0:2d:69:f2:b7:
ac:8b:04:9d:cb:e8:ea:3d:cf:4a:18:15:83:12:51:c7:6a:98:
dc:64:71:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:42 2024 by rpki-client on console-fra.rpki-client.org