Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/kRYs9UEH9GiMJbJBtNF4zV2pyvI.roa
File: kRYs9UEH9GiMJbJBtNF4zV2pyvI.roa (raw, json)
Hash identifier: CEuofWozoK89/6IsWC1PD9STf4pca/3ePY86xdueOnE=
Subject key identifier: 91:16:2C:F5:41:07:F4:68:8C:25:B2:41:B4:D1:78:CD:5D:A9:CA:F2
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A7EB256
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/kRYs9UEH9GiMJbJBtNF4zV2pyvI.roa
Signing time: Sat 01 Jan 2022 16:07:09 +0000
ROA not before: Sat 01 Jan 2022 16:07:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49658
IP address blocks: 185.236.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176075350 (0xa7eb256)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91162cf54107f4688c25b241b4d178cd5da9caf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:28:b8:7f:95:1b:b1:2b:3c:87:4e:ba:7d:4d:
ba:37:1d:2c:13:da:b9:c2:6b:c0:b5:3f:68:61:c9:
04:7c:b2:fa:c1:95:b2:ca:fe:2e:28:92:2c:50:eb:
08:49:45:bd:4f:6c:3a:fa:4c:5e:a7:e1:58:63:63:
6e:04:ab:6e:c3:6b:b7:9e:22:f1:d2:a5:9a:35:b6:
7d:ee:a6:73:f1:84:71:b9:14:d5:7b:61:17:00:5d:
22:54:f0:f2:92:5d:3c:a6:bc:2e:58:79:0b:a4:42:
d9:be:a3:9b:21:ee:1a:a9:b3:e4:3a:32:54:ce:3e:
fd:36:96:df:65:5d:f6:e0:a6:c5:47:17:e5:ff:78:
ed:87:ef:73:fc:9b:c2:94:b4:5a:0e:90:56:a5:c5:
69:db:67:fa:4a:67:17:6b:2a:d4:44:f9:0b:59:6d:
19:8b:c8:27:85:6b:92:0a:a2:e5:91:01:63:f3:01:
6d:69:8f:62:b3:ac:e1:35:d6:80:cf:dc:f4:db:29:
83:7c:68:f0:a3:0f:aa:e3:23:93:a9:17:fd:c9:6e:
a0:df:da:88:96:d7:4e:e8:56:c6:02:3a:ce:54:17:
22:1d:91:08:bd:6d:a1:d0:fb:4f:f3:51:40:1b:9e:
7a:f4:c9:4d:c6:43:fd:2c:59:b8:cb:db:21:b4:dd:
47:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:16:2C:F5:41:07:F4:68:8C:25:B2:41:B4:D1:78:CD:5D:A9:CA:F2
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/kRYs9UEH9GiMJbJBtNF4zV2pyvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.236.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:ef:b4:1c:54:d2:a2:bb:73:3e:c1:7a:64:ae:1f:35:f7:4d:
ee:47:18:9a:f6:7f:46:dc:5b:85:17:82:70:ed:da:d6:b8:f5:
17:a0:19:02:7c:f0:c0:41:e8:80:ab:7e:d0:46:a2:c8:d9:5b:
b0:ad:e9:97:29:e2:e7:89:26:fb:dd:3a:40:85:ce:78:46:10:
fb:1e:0e:b1:1a:99:d5:e0:b9:d7:ff:ed:68:42:3a:6f:92:44:
6e:e0:9d:14:ae:4d:cd:e7:be:37:18:bc:99:5d:d6:02:b2:0d:
6f:73:34:0c:c0:96:bd:1c:de:c4:5d:9b:a0:4c:a7:72:06:90:
4d:5b:07:ca:fc:f8:fe:ee:87:3d:da:a1:04:81:3f:8f:67:51:
ab:c4:e5:29:c0:f1:98:29:a3:36:a2:6e:fe:44:82:31:10:59:
bb:d0:56:08:1a:41:da:8d:b6:bc:b1:94:4e:86:f7:c8:f7:d9:
8c:89:e6:5f:c8:8b:67:d1:29:8b:18:f4:51:ad:de:14:b3:8e:
aa:f4:3a:d0:1f:6b:62:72:30:bf:f7:06:6e:23:29:3c:d9:c3:
dd:1f:c4:9b:c3:81:ce:4b:80:95:8c:d8:51:58:19:1d:21:b4:
4f:6b:18:03:2c:31:92:09:9f:eb:fb:5e:80:6b:d3:9d:8d:3a:
fc:36:2a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org