Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/swN5iCJC-jhouUe7MqJJn3_5XkE.roa
File: swN5iCJC-jhouUe7MqJJn3_5XkE.roa (raw, json)
Hash identifier: ms2fRlmF+F0myhoVYtJC82j/Jj9WgVjko/zxHKbpNyw=
Subject key identifier: B3:03:79:88:22:42:FA:38:68:B9:47:BB:32:A2:49:9F:7F:F9:5E:41
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0A23996A
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/swN5iCJC-jhouUe7MqJJn3_5XkE.roa
Signing time: Thu 28 Apr 2022 07:53:09 +0000
ROA not before: Thu 28 Apr 2022 07:53:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198388
IP address blocks: 85.14.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170105194 (0xa23996a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Apr 28 07:53:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b30379882242fa3868b947bb32a2499f7ff95e41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:18:27:98:81:46:64:77:e1:3f:37:95:f7:52:
1a:0a:1f:18:aa:1f:8b:e7:c6:c4:f4:07:80:7e:c0:
4f:17:61:8b:72:04:bb:a7:d9:58:ac:d6:99:1d:e2:
5f:19:a6:89:41:57:37:d8:1a:f6:25:4b:64:89:3a:
d8:bd:96:61:bf:3a:75:16:74:4e:88:af:d9:7b:7f:
b5:2b:9c:b4:2f:ef:8e:f2:e4:e7:07:a4:26:c7:71:
5a:90:df:a8:69:b4:f1:51:0a:81:04:56:70:34:52:
39:8d:76:2a:48:10:c4:a8:75:80:e7:73:c9:91:7b:
b3:3f:d1:d8:7a:f2:73:6e:02:01:f1:22:00:3f:18:
92:89:c3:6c:5a:0a:a2:72:77:ad:cd:40:87:b7:c4:
e2:d4:54:94:a1:ab:d4:08:fa:fa:42:82:de:82:8a:
8c:a0:3a:47:57:d1:df:46:9f:61:67:c2:1b:8e:00:
c4:1c:0d:b7:e6:40:36:e1:96:a7:12:67:3e:48:d9:
ef:95:fd:46:12:6d:7a:9a:9c:02:63:e0:1f:e6:67:
36:21:2c:74:11:87:f5:30:a4:63:46:42:98:0f:0d:
52:29:14:63:fc:03:d4:c3:2c:b1:b5:39:5d:fc:23:
0d:ef:de:05:50:d1:80:63:b0:0b:4d:88:87:fe:af:
ad:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:03:79:88:22:42:FA:38:68:B9:47:BB:32:A2:49:9F:7F:F9:5E:41
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/swN5iCJC-jhouUe7MqJJn3_5XkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.14.29.0/24
Signature Algorithm: sha256WithRSAEncryption
53:3f:46:46:27:27:ca:95:2e:0d:eb:c8:ed:47:db:28:a1:89:
64:2d:f0:20:65:e2:66:ed:09:cf:1e:19:7a:01:90:d8:37:4d:
7f:3c:a9:3f:eb:4a:7e:d0:7e:92:35:d5:77:f6:d3:2e:51:5d:
9e:df:70:6b:6b:fd:14:a3:ba:6b:e6:3c:4a:d5:ee:d3:ea:10:
7f:2a:87:30:50:39:8d:9d:64:c3:90:b5:25:a9:86:be:3c:75:
9e:d8:2c:94:d2:18:2d:28:c8:62:a2:1b:33:88:5f:7f:1e:92:
53:66:a2:7b:f1:5d:a9:9a:29:a5:4b:ea:d3:04:59:54:1c:ae:
13:b0:1c:87:62:c5:f5:48:f5:32:cf:37:51:d4:c0:d1:67:73:
8e:66:e7:da:2b:ce:33:4b:44:e8:68:63:86:20:b3:aa:ce:cd:
00:9f:88:be:d9:3b:fd:79:f5:c6:cc:1d:82:f7:a3:e3:c8:46:
48:3d:02:c0:06:ba:cd:f0:29:ee:bd:98:0b:08:d0:ab:e3:8f:
b9:90:64:a3:ea:0e:4b:fc:14:82:3d:11:aa:63:58:6d:c3:5b:
50:d0:53:f0:e4:d7:da:35:ef:db:1d:47:dc:d4:a0:1b:5f:8c:
9f:81:6c:98:9d:0f:12:3c:64:c6:b6:1d:8e:87:b9:7b:82:90:
71:b1:87:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:19 2024 by rpki-client on console-ams.rpki-client.org