Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/CnIYJ2Ed80gcvEWiT7jyr_0r3V4.roa
File: CnIYJ2Ed80gcvEWiT7jyr_0r3V4.roa (raw, json)
Hash identifier: WQlotqnrFVgT/OT/+2EOqe0glu2LrJrRCzK+Z/WS1AY=
Subject key identifier: 0A:72:18:27:61:1D:F3:48:1C:BC:45:A2:4F:B8:F2:AF:FD:2B:DD:5E
Certificate issuer: /CN=a65fbcb4ea308a98b09397625e63866383c16dd0
Certificate serial: 017AAB10
Authority key identifier: A6:5F:BC:B4:EA:30:8A:98:B0:93:97:62:5E:63:86:63:83:C1:6D:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pl-8tOowipiwk5diXmOGY4PBbdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/CnIYJ2Ed80gcvEWiT7jyr_0r3V4.roa
Signing time: Sat 01 Jan 2022 11:01:18 +0000
ROA not before: Sat 01 Jan 2022 11:01:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 85.92.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24816400 (0x17aab10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a65fbcb4ea308a98b09397625e63866383c16dd0
Validity
Not Before: Jan 1 11:01:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a721827611df3481cbc45a24fb8f2affd2bdd5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:be:76:a1:4a:04:11:0c:2c:c2:17:5e:1c:7c:
02:6c:84:85:40:b1:e6:fc:fd:de:d4:20:08:e5:c4:
e5:3a:7e:e1:db:28:42:35:7f:6e:c8:b0:19:8d:28:
c6:a0:2d:55:85:55:93:ca:61:c5:6a:69:c6:4b:3b:
78:10:5f:3a:44:b5:83:d6:de:bf:04:cd:4c:b9:2f:
ab:3b:fe:82:e6:54:13:2c:81:08:f9:df:8c:bf:54:
e4:0e:ef:80:18:4b:8b:b3:36:b3:0c:ff:11:c0:f7:
8e:44:73:72:1d:11:87:8d:7a:4b:f7:e4:00:9e:23:
19:af:c8:be:db:cb:de:9b:d5:40:60:cc:a1:87:99:
24:56:2e:4f:40:b6:c9:a4:32:da:f5:8a:09:58:89:
15:92:e0:63:99:79:b4:f5:3f:44:60:14:b6:64:4a:
35:b8:c4:42:19:fa:fd:38:14:d4:4a:05:e5:7b:e1:
23:c2:ac:93:09:4f:fc:1e:99:35:b5:97:eb:86:ba:
e3:02:8c:c3:4c:71:a4:c5:e0:7d:ed:6f:f8:e4:76:
95:53:81:a8:cc:54:6e:e7:2c:89:1d:32:f2:f7:ae:
00:78:27:a6:23:5e:1c:36:cd:f6:1f:6c:57:c7:e7:
a0:ee:48:fb:59:62:ae:ff:de:b6:6d:fa:e4:47:ca:
f0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:72:18:27:61:1D:F3:48:1C:BC:45:A2:4F:B8:F2:AF:FD:2B:DD:5E
X509v3 Authority Key Identifier:
keyid:A6:5F:BC:B4:EA:30:8A:98:B0:93:97:62:5E:63:86:63:83:C1:6D:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pl-8tOowipiwk5diXmOGY4PBbdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/CnIYJ2Ed80gcvEWiT7jyr_0r3V4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/pl-8tOowipiwk5diXmOGY4PBbdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.92.101.0/24
Signature Algorithm: sha256WithRSAEncryption
93:1a:36:a4:16:e4:fd:ec:b5:4d:e8:ad:12:b0:13:35:69:7e:
c2:48:88:20:92:a2:32:92:da:a4:3d:b0:24:59:37:9c:25:41:
05:32:39:cd:29:a9:5e:79:5f:80:d6:08:30:b9:72:7b:77:ff:
9a:74:ab:a4:b0:27:5d:20:c6:0d:22:8e:8a:26:73:d7:5b:fd:
66:d4:0e:d7:35:09:57:30:f5:81:e5:16:8d:b8:d9:90:9a:76:
46:1d:7e:c8:57:cc:16:83:97:13:b1:c3:e0:19:5c:c5:4a:04:
a1:5c:c0:ad:73:d3:3d:26:21:b7:73:3c:65:22:0e:66:83:fa:
2e:af:6a:8f:35:66:8e:81:40:d0:da:06:49:a6:1e:09:5f:ec:
08:83:de:e6:de:0a:36:34:b6:de:68:b7:5a:bc:7a:83:81:75:
c0:cd:a9:a6:f0:eb:aa:81:9e:7f:a5:f2:8f:de:26:b2:79:a2:
ef:2c:65:c0:83:7d:96:ad:66:4b:9f:8a:ba:eb:72:ca:35:4b:
7a:f4:cf:7e:7e:a3:f5:a2:1f:74:28:7c:8f:0d:12:cb:79:83:
12:65:68:a6:7f:04:d3:12:5d:01:95:0a:1d:c0:8a:28:49:38:
97:ff:6b:16:8c:b8:87:f3:81:1d:7b:54:83:5f:c9:99:3f:ce:
ca:14:1a:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:51 2024 by rpki-client on console-ams.rpki-client.org