Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/ic1j3odc6GBQO2oLvuRrESN9sm8.roa
File: ic1j3odc6GBQO2oLvuRrESN9sm8.roa (raw, json)
Hash identifier: XHuDnbm3hk0iBIaN9hd3LW5HFq6gvXFi+5u9YNIeZbE=
Subject key identifier: 89:CD:63:DE:87:5C:E8:60:50:3B:6A:0B:BE:E4:6B:11:23:7D:B2:6F
Certificate issuer: /CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Certificate serial: 0181D8ADE33F8230B5902D10C251977DD6C0
Authority key identifier: E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/ic1j3odc6GBQO2oLvuRrESN9sm8.roa
Signing time: Thu 07 Jul 2022 12:41:23 +0000
ROA not before: Thu 07 Jul 2022 12:41:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 185.69.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d8:ad:e3:3f:82:30:b5:90:2d:10:c2:51:97:7d:d6:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Validity
Not Before: Jul 7 12:41:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89cd63de875ce860503b6a0bbee46b11237db26f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:27:91:b9:b9:16:d5:38:78:e8:30:a2:82:e9:
66:1c:35:c0:ed:24:a7:fb:9b:8a:56:c4:02:4a:c5:
a7:d5:ef:91:41:58:56:6d:a8:70:5c:ab:e5:18:84:
c3:95:64:5d:be:ef:f4:a0:65:3a:26:2d:85:71:58:
0f:66:2e:0e:f8:3e:34:87:aa:94:e0:fb:b0:54:99:
b2:ae:87:49:b9:10:ef:3b:5e:76:31:f3:c6:ce:34:
d7:93:db:0a:9a:a2:60:12:2d:e7:43:1f:a4:14:4c:
6e:4e:47:e1:f8:b8:df:66:14:22:e7:16:4f:59:2b:
27:3a:2a:ff:9e:39:54:1a:88:75:3a:1b:94:22:50:
ce:48:3d:88:5e:7c:50:be:ab:3c:67:fe:60:f0:f0:
fc:8b:9f:c3:ab:74:e9:72:1d:f9:59:29:2b:e2:8e:
75:c5:3a:b1:86:d9:b2:da:a5:c5:44:07:b7:c1:fe:
cd:eb:20:6a:22:8a:f0:c3:5a:83:e4:20:ff:68:87:
11:a6:e0:b6:79:ad:e3:3f:82:47:2b:b9:02:9e:1b:
3a:a8:e3:74:bd:aa:1d:19:4a:4d:20:cc:ab:e3:16:
ff:73:1e:4b:1c:9a:3b:4a:c9:01:93:7d:c6:e6:c5:
8e:41:7f:41:47:1f:30:fc:6e:4f:24:f3:99:f0:53:
29:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:CD:63:DE:87:5C:E8:60:50:3B:6A:0B:BE:E4:6B:11:23:7D:B2:6F
X509v3 Authority Key Identifier:
keyid:E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/ic1j3odc6GBQO2oLvuRrESN9sm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/5hvX3R-KyLQZK6eKWSNItd0KGmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.120.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:e8:e2:6e:83:21:9b:44:d2:55:87:ad:d4:31:7b:45:de:74:
14:65:4f:22:a3:d1:03:c2:17:59:fd:22:2d:34:d6:6a:df:3b:
c8:af:30:ca:14:79:99:6e:d4:38:fa:e3:78:1d:67:30:5e:6b:
c9:49:fa:17:20:b8:0e:8d:db:e2:5a:28:72:e1:2c:a4:e1:cc:
76:49:ba:dc:39:b1:5d:4f:41:24:03:84:17:c3:10:fc:61:4e:
b9:eb:a1:65:61:dd:f6:f0:fc:b0:fe:cc:a7:eb:d9:7a:5e:98:
fb:67:b6:a9:88:cc:c4:a1:55:29:ca:45:a7:36:34:31:f8:1f:
e8:22:01:53:88:af:c5:cd:25:5c:18:a6:f1:8e:74:0a:0b:15:
41:07:92:3b:d9:93:be:b0:57:11:9f:f4:65:25:de:2b:21:17:
58:9d:bc:d2:de:1a:f5:8d:73:90:1a:22:d5:9a:f5:c9:02:d8:
25:fb:e6:9b:f4:48:bb:7e:cc:41:d9:5b:c4:ae:fe:1e:92:9b:
51:1e:c8:1c:2d:ae:a7:a4:a2:a2:37:03:29:01:2f:4d:59:fe:
9b:97:19:3c:35:f3:c9:06:3b:34:2c:15:d6:d0:b5:48:a8:54:
6c:46:74:6c:5d:f2:27:16:ad:cc:d1:e7:52:5e:aa:7b:56:07:
2c:29:16:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:33 2024 by rpki-client on console-ams.rpki-client.org