Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/SQBO5AGj2sen8xltlHMHJaAT2kM.roa
File: SQBO5AGj2sen8xltlHMHJaAT2kM.roa (raw, json)
Hash identifier: rdTY5vSrtdzw6I4IbNfXExcSb2p9WRD5zt7fxJcmPz0=
Subject key identifier: 49:00:4E:E4:01:A3:DA:C7:A7:F3:19:6D:94:73:07:25:A0:13:DA:43
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A76642F
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/SQBO5AGj2sen8xltlHMHJaAT2kM.roa
Signing time: Sat 01 Jan 2022 16:07:06 +0000
ROA not before: Sat 01 Jan 2022 16:07:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42049
IP address blocks: 85.187.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175531055 (0xa76642f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49004ee401a3dac7a7f3196d94730725a013da43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:11:0b:39:1c:35:75:b4:db:d7:be:0a:c2:0d:
a6:2c:bd:48:3f:51:3b:2e:23:86:f1:2b:35:12:b6:
3e:9b:a9:d2:1e:66:e3:17:7f:38:38:b1:ef:80:f4:
dc:48:9d:47:e0:fa:49:a7:c8:bf:84:d5:60:83:a8:
e1:f6:0a:90:91:32:99:d3:d7:45:2b:be:15:18:0e:
3d:b3:a3:ac:31:c3:e1:1a:84:43:bb:a5:4e:e9:b3:
f8:b4:d8:a9:17:f5:db:4e:3f:84:e1:fc:51:de:37:
cc:9f:97:cc:8f:b6:74:d6:9a:ec:d2:9d:72:39:78:
71:16:44:7d:75:f8:54:aa:47:46:af:20:27:8c:3a:
0f:d2:46:6c:6d:d1:f2:4f:ae:bd:d3:d4:83:0e:d5:
f1:a4:0a:04:cc:de:59:e5:3b:9b:70:ea:75:ce:1b:
ac:aa:15:35:cf:35:7d:90:bd:ae:5b:ed:32:3d:8b:
fd:e7:4d:26:7a:38:76:f6:78:22:e1:75:3f:36:4a:
58:de:1b:ae:44:92:d1:f6:0d:fc:2c:01:3d:0b:5d:
13:78:09:f9:8d:77:19:1e:56:db:95:7b:a1:90:d8:
90:f3:d9:bd:74:30:ea:1b:ed:81:d2:b1:74:85:1e:
bc:c0:52:ac:d7:3a:ed:0a:43:2d:3d:51:41:65:5c:
38:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:00:4E:E4:01:A3:DA:C7:A7:F3:19:6D:94:73:07:25:A0:13:DA:43
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/SQBO5AGj2sen8xltlHMHJaAT2kM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.41.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:0e:e0:50:fb:a2:0b:61:bc:82:aa:af:84:8e:4b:a1:08:04:
88:c7:bc:73:44:f8:31:6d:a2:87:e0:f7:b7:14:5e:1f:b7:c6:
2b:c3:74:fb:b1:6d:63:e2:f9:36:da:2e:d2:7f:fb:53:f2:96:
bf:06:6d:78:79:55:40:6b:85:d6:3d:4b:46:1a:bf:5f:b6:fa:
85:93:57:38:08:8c:e5:c9:1c:fc:cf:f3:15:a3:05:3c:70:d8:
58:6a:0b:ed:90:67:ca:46:2b:3d:4e:46:63:c0:7e:c9:b6:0a:
e5:69:61:14:5b:7f:18:31:96:77:f4:bf:54:0d:7e:5f:57:bc:
cc:a8:39:2c:a1:4b:b5:c5:94:ad:ad:1b:f8:28:b0:5c:96:bd:
49:c3:c2:77:0e:0e:c4:e9:67:10:1f:84:48:66:0a:9f:d9:93:
a0:d7:40:3d:29:1f:da:17:44:41:3b:cf:d8:e1:9c:6c:4a:5e:
1c:95:d9:6b:2e:ef:a6:f2:53:9b:8a:f2:24:b6:aa:e9:0f:0b:
43:f7:fb:d7:ce:aa:a3:86:e9:03:9c:cb:74:34:00:3d:39:27:
db:78:50:01:2d:bb:c0:16:c5:9a:d8:b5:45:c5:7c:eb:d4:f0:
67:02:d2:61:bd:fb:e7:77:00:92:6b:c3:32:bb:64:45:90:4e:
08:5f:96:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org