Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/678964-d802-48f9-96f1-e3bfa72d7ef8/1/5uYhkD6b34SJHgt-xpwQmI-nL-U.roa
File: 5uYhkD6b34SJHgt-xpwQmI-nL-U.roa (raw, json)
Hash identifier: 3PvCZiYT50YklcsX9BvtJGNvy8emKL6vfcuHo37KKZ4=
Subject key identifier: E6:E6:21:90:3E:9B:DF:84:89:1E:0B:7E:C6:9C:10:98:8F:A7:2F:E5
Certificate issuer: /CN=dedb20030901ff2df4ebd1f49e4891cb28fe0730
Certificate serial: 07C85C7E
Authority key identifier: DE:DB:20:03:09:01:FF:2D:F4:EB:D1:F4:9E:48:91:CB:28:FE:07:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3tsgAwkB_y3069H0nkiRyyj-BzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/678964-d802-48f9-96f1-e3bfa72d7ef8/1/5uYhkD6b34SJHgt-xpwQmI-nL-U.roa
Signing time: Sat 01 Jan 2022 05:06:37 +0000
ROA not before: Sat 01 Jan 2022 05:06:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201364
IP address blocks: 185.92.12.0/24 maxlen: 24
185.92.15.0/24 maxlen: 24
91.244.227.0/24 maxlen: 24
185.92.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130571390 (0x7c85c7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dedb20030901ff2df4ebd1f49e4891cb28fe0730
Validity
Not Before: Jan 1 05:06:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6e621903e9bdf84891e0b7ec69c10988fa72fe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:98:30:56:d1:d2:37:23:2b:47:00:81:88:6c:
66:55:84:85:ac:fd:0f:a2:d0:b0:a8:7c:90:a5:da:
54:b7:2d:33:ef:c3:4d:3a:70:7d:ed:1b:34:dd:99:
82:5a:f1:51:25:6f:ae:58:23:73:05:28:55:2f:95:
8c:a4:dc:16:2c:78:38:c1:3c:d6:ac:ae:48:80:8e:
5b:49:53:e6:3b:3c:68:26:20:b2:05:24:da:e7:b5:
2d:6e:f6:47:5c:95:03:ea:05:2f:71:6f:88:a5:f0:
40:dc:4c:d3:be:db:ed:d6:b3:c4:48:e3:b2:43:3d:
ea:9f:35:59:a6:15:da:58:7c:02:c2:68:7b:7c:2a:
93:c6:b1:e8:a7:69:37:7b:e8:1e:9e:c7:2c:19:62:
59:74:f5:fe:fa:c3:7d:33:80:4d:b0:93:2b:bc:03:
9f:50:b2:ae:3d:52:68:1f:58:52:c6:af:df:d4:aa:
a9:22:7a:d2:68:39:77:61:c6:77:bc:c0:cb:b7:b4:
56:54:f1:be:83:32:9f:a0:4c:8d:34:16:84:b5:90:
17:d5:1c:d2:b2:af:4d:29:4f:4f:41:d1:e5:d1:a7:
ff:01:6f:1c:da:c8:93:0a:50:de:c7:64:16:14:ba:
6f:1b:ab:18:81:2f:9b:42:08:76:90:4e:1e:92:57:
1e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E6:21:90:3E:9B:DF:84:89:1E:0B:7E:C6:9C:10:98:8F:A7:2F:E5
X509v3 Authority Key Identifier:
keyid:DE:DB:20:03:09:01:FF:2D:F4:EB:D1:F4:9E:48:91:CB:28:FE:07:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3tsgAwkB_y3069H0nkiRyyj-BzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/678964-d802-48f9-96f1-e3bfa72d7ef8/1/5uYhkD6b34SJHgt-xpwQmI-nL-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/678964-d802-48f9-96f1-e3bfa72d7ef8/1/3tsgAwkB_y3069H0nkiRyyj-BzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.244.227.0/24
185.92.12.0/24
185.92.14.0/23
Signature Algorithm: sha256WithRSAEncryption
90:05:41:cb:8c:b6:67:73:9c:ca:a4:bc:51:9e:5a:a9:10:db:
d6:b9:80:d8:02:db:7f:0b:04:f8:76:0e:c6:e6:13:58:75:f2:
07:08:93:71:49:d1:cc:1b:b8:4e:9a:7d:29:05:9b:29:8e:38:
9f:df:9b:80:3e:b6:ab:cb:7f:1f:99:45:b4:26:00:bc:6d:65:
62:84:86:ed:a5:88:dd:26:5f:55:5e:e4:1d:4e:a7:68:44:fa:
9e:a5:78:3b:6e:8a:15:0e:ea:31:05:57:90:81:3d:d0:d4:c9:
3c:78:51:c6:53:f8:5a:cd:f2:74:ad:6a:24:e9:a2:21:85:fb:
97:f7:bc:ac:b6:16:f9:e3:c9:4b:be:ab:7d:49:8a:cc:b8:03:
90:5a:67:b7:b2:14:46:af:42:f3:07:0c:62:02:be:48:c2:91:
c4:e9:52:34:c4:6c:71:f8:b3:20:fb:52:f6:ec:48:15:c4:7c:
83:fd:3d:d2:f3:89:25:6c:22:37:f5:8f:d5:d0:b9:ec:d7:2e:
3f:60:81:46:2f:87:db:3d:f0:00:6e:aa:ad:ce:d7:8e:45:88:
e8:c3:d0:9c:27:b5:81:63:f7:ab:2b:96:4d:d3:2d:e7:fa:84:
a7:58:8f:eb:0e:1f:e2:af:07:5c:cb:2b:a0:6f:3c:2a:3a:7c:
a8:0d:f5:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-ams.rpki-client.org