Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/9RXBocnhoZ9O3SLCk0fUh6vH0KE.roa
File: 9RXBocnhoZ9O3SLCk0fUh6vH0KE.roa (raw, json)
Hash identifier: XMzR/TM4K1LiJmOBWIMtVGi1Vy/CYiEew15+7mjzuq8=
Subject key identifier: F5:15:C1:A1:C9:E1:A1:9F:4E:DD:22:C2:93:47:D4:87:AB:C7:D0:A1
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1970530D
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/9RXBocnhoZ9O3SLCk0fUh6vH0KE.roa
Signing time: Sun 03 Apr 2022 18:24:44 +0000
ROA not before: Sun 03 Apr 2022 18:24:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210977
IP address blocks: 195.85.49.0/24 maxlen: 32
185.226.74.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 426791693 (0x1970530d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Apr 3 18:24:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f515c1a1c9e1a19f4edd22c29347d487abc7d0a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ba:c4:cf:e0:88:87:2c:8f:13:cc:e3:ac:fe:
bf:2b:b6:73:79:99:19:b7:42:95:a8:e8:8e:b9:ed:
4f:e1:20:49:03:d9:e3:eb:5e:3b:79:f9:e5:29:2b:
9d:8b:51:a8:57:6e:c0:2d:69:f2:7f:e3:50:8a:7a:
3d:92:0c:4f:75:4d:24:48:a2:a3:38:5c:a7:77:59:
d4:7c:d8:eb:11:fc:0e:83:60:20:ba:de:07:b8:f7:
da:83:5e:d8:59:c5:0d:f2:87:42:6a:65:77:6a:be:
69:51:4c:52:54:9a:82:ec:36:cb:f4:6f:3b:2d:72:
da:bd:7c:e7:0c:36:57:fc:9f:ec:73:46:5b:b0:7b:
d0:61:cb:3e:fe:4c:7e:05:60:46:a4:74:d7:a5:0a:
2a:39:65:cf:10:60:dd:34:5b:f5:5b:fa:33:33:53:
b1:55:d2:27:03:8a:ee:fd:56:ce:3b:44:45:fe:ef:
62:13:dd:54:b4:46:cf:09:11:92:14:18:fa:f7:e9:
a7:93:e8:0a:8d:33:fc:66:04:3f:7d:89:8e:f7:8c:
59:99:f5:76:19:df:3f:c5:e5:a6:b7:d6:b0:45:19:
6f:49:75:e0:36:af:ec:d1:5b:42:73:e2:d7:92:16:
ea:d8:d9:76:29:6e:31:86:08:8f:e3:38:99:5d:07:
6f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:15:C1:A1:C9:E1:A1:9F:4E:DD:22:C2:93:47:D4:87:AB:C7:D0:A1
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/9RXBocnhoZ9O3SLCk0fUh6vH0KE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.74.0/24
195.85.49.0/24
Signature Algorithm: sha256WithRSAEncryption
92:6e:bd:f8:c6:bc:2f:2b:61:6a:1f:92:68:8c:f0:56:a8:67:
cb:6f:b7:81:41:2b:1e:e1:fe:5a:4a:02:8f:9a:86:89:cc:73:
52:1e:45:88:dc:f8:d1:1d:72:11:70:5c:61:d1:44:83:b4:ad:
d7:63:c2:bd:0b:08:b3:52:87:81:e4:03:ad:d1:4e:ab:4e:0a:
42:dd:d4:32:a3:80:29:b8:77:c9:05:fb:c9:58:0c:ea:da:62:
83:ec:49:f1:e8:24:0f:9f:bc:d9:ea:b5:33:96:1f:50:79:ce:
03:2c:24:af:4f:df:a7:65:e8:f8:cb:b2:93:a0:3e:d3:c5:9c:
7f:b5:10:0f:12:f3:df:d2:f7:40:1d:fd:e2:f1:2c:39:3b:71:
f6:b7:83:06:49:e9:ee:6d:d9:49:b8:b7:a7:7e:45:1b:bc:71:
82:10:47:1e:b4:11:bf:e1:27:85:e7:ab:5b:79:18:ea:23:e7:
03:ca:62:b8:b9:71:7d:eb:00:8e:04:7a:be:32:bb:8f:9d:8e:
e8:22:11:e7:e1:af:fe:4d:4d:5b:6d:2a:25:a3:76:8a:82:3e:
a8:89:a3:e6:2b:29:ec:3c:1b:d3:0d:f3:84:4f:ab:81:51:75:
f3:e4:aa:03:fe:ff:36:e1:cf:b7:e6:ad:38:b3:91:b1:03:b5:
be:ca:1a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org