Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/swrWLlt-X9xIehHzEqJJ6xHbOUU.roa
File: swrWLlt-X9xIehHzEqJJ6xHbOUU.roa (raw, json)
Hash identifier: QkmuQaxpIFzOoyWYLx7Ah/1OS1+fgXx9DrSeLZSRAg4=
Subject key identifier: B3:0A:D6:2E:5B:7E:5F:DC:48:7A:11:F3:12:A2:49:EB:11:DB:39:45
Certificate issuer: /CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Certificate serial: 01AFC4
Authority key identifier: 3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/swrWLlt-X9xIehHzEqJJ6xHbOUU.roa
Signing time: Fri 14 Jan 2022 15:01:27 +0000
ROA not before: Fri 14 Jan 2022 15:01:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200802
IP address blocks: 185.95.104.0/24 maxlen: 24
185.95.105.0/24 maxlen: 24
185.95.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110532 (0x1afc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Validity
Not Before: Jan 14 15:01:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b30ad62e5b7e5fdc487a11f312a249eb11db3945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9d:78:45:ba:40:da:57:4c:94:de:51:b0:59:
b9:c8:87:a2:71:35:5a:0b:bc:0c:a3:35:41:93:34:
7c:bd:f9:02:98:d7:67:30:4c:bb:89:c6:8f:7d:30:
de:89:7c:ce:ce:a4:c4:03:9c:af:39:7a:67:7e:bc:
c0:50:74:fd:56:e1:ea:a4:df:61:77:f1:36:79:a4:
bd:90:b1:40:e8:a3:82:de:b5:98:83:49:0a:b6:ec:
93:d7:20:34:ff:f8:f2:27:c6:92:4b:73:44:36:fa:
f6:b4:0a:92:21:73:5b:e7:8c:24:0d:66:e2:c1:ca:
28:3d:b9:78:65:28:eb:c8:f8:a7:45:18:e9:ee:bf:
59:e0:cb:f6:1d:4a:81:0d:47:2c:8a:c1:0c:bf:59:
eb:4a:8d:e4:04:6f:3e:01:d6:a7:78:cd:f3:29:cd:
2d:c1:4d:eb:48:62:c6:fd:da:f9:58:b8:45:f5:44:
b1:f7:07:4c:ef:fa:fa:05:8c:66:af:53:65:e8:94:
a0:82:7b:be:59:b4:39:3b:c3:82:1f:3b:73:05:5d:
ab:d7:3e:1b:82:7b:67:4c:c7:28:e1:05:1f:75:88:
dc:27:a9:e4:7b:cc:b0:ea:08:c7:7c:cf:ef:cb:39:
74:c9:f7:7b:6d:4d:2d:1f:c7:87:ec:d6:d5:4a:86:
ca:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:0A:D6:2E:5B:7E:5F:DC:48:7A:11:F3:12:A2:49:EB:11:DB:39:45
X509v3 Authority Key Identifier:
keyid:3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/swrWLlt-X9xIehHzEqJJ6xHbOUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.104.0-185.95.106.255
Signature Algorithm: sha256WithRSAEncryption
3b:3e:bb:44:e7:eb:20:28:b6:15:30:a0:bc:c5:eb:71:62:df:
f9:c9:cc:bd:cb:ab:06:58:f8:55:d0:76:06:08:a5:30:23:5b:
06:2f:35:b7:6a:4a:d2:21:82:99:0d:72:98:8b:9f:7a:60:2f:
46:27:a2:51:fd:25:f2:2b:7b:5b:2c:30:74:b0:0d:76:79:fe:
d4:e6:37:a2:5c:5e:4c:70:08:4b:79:a2:ec:5e:6f:54:da:f0:
7a:88:cd:3d:27:bf:36:f9:a1:c0:1a:4c:25:15:ba:0e:56:57:
c4:00:26:9e:5b:04:04:07:4c:e5:94:84:19:64:89:59:d5:b9:
c0:af:30:a6:14:77:04:9f:55:50:c6:42:67:36:88:95:31:01:
ca:04:31:4e:8d:c6:e7:78:72:6c:33:f9:18:aa:5a:9a:30:d8:
89:a1:7d:f2:c8:78:94:65:4f:9a:af:90:3d:5a:7d:fc:a7:1e:
ca:cc:6b:12:a9:e4:71:5a:fe:f8:b4:9c:1a:90:ab:f1:66:27:
72:ac:cd:40:4f:74:72:47:fd:e2:af:ea:64:58:d7:6e:f1:ca:
e1:87:51:ef:28:0e:41:e4:f5:ad:37:b7:52:e8:5b:d8:78:15:
f4:b8:0e:8e:fb:4c:df:d6:f7:d0:4b:83:07:91:47:04:fc:7f:
49:76:b2:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org