Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e8444-8da5-466b-8400-7bd96d9c6286/1/u1JqKB2wPWYsZsP0MAwYSEJ7vGw.roa
File: u1JqKB2wPWYsZsP0MAwYSEJ7vGw.roa (raw, json)
Hash identifier: di1WsCGx1zZ5+9PsinYooVvh6MsrEQN4XE5wMP38TuA=
Subject key identifier: BB:52:6A:28:1D:B0:3D:66:2C:66:C3:F4:30:0C:18:48:42:7B:BC:6C
Certificate issuer: /CN=9d17d9388e7631a6d19afb2b2642795a24c84081
Certificate serial: 0F64BA3E
Authority key identifier: 9D:17:D9:38:8E:76:31:A6:D1:9A:FB:2B:26:42:79:5A:24:C8:40:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nRfZOI52MabRmvsrJkJ5WiTIQIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e8444-8da5-466b-8400-7bd96d9c6286/1/u1JqKB2wPWYsZsP0MAwYSEJ7vGw.roa
Signing time: Sat 01 Jan 2022 06:57:10 +0000
ROA not before: Sat 01 Jan 2022 06:57:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203927
IP address blocks: 185.119.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258259518 (0xf64ba3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d17d9388e7631a6d19afb2b2642795a24c84081
Validity
Not Before: Jan 1 06:57:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb526a281db03d662c66c3f4300c1848427bbc6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b3:5c:8e:00:15:0d:79:4f:3e:24:68:cd:1d:
d6:27:ac:6c:9b:c9:c8:77:8e:86:7c:d2:65:12:14:
e2:4b:75:cb:4c:93:60:1f:5b:e2:64:ba:75:bf:0e:
30:97:bd:00:45:de:bb:9e:1d:65:ce:40:5d:80:5b:
69:c8:48:6e:ad:d4:2a:fb:14:bb:aa:21:ba:4e:db:
b4:f5:8b:f9:5f:1e:fd:44:2e:85:67:7a:82:0a:30:
95:31:48:67:00:07:da:6e:a3:fe:42:91:98:1c:99:
d2:67:6c:c8:2a:8a:40:69:47:b8:c1:bb:93:e4:ba:
06:92:bb:4e:4d:27:c9:d2:35:e0:32:76:34:14:66:
2e:b8:94:32:30:4e:40:1c:b8:1e:3f:12:97:a0:bb:
64:63:99:e4:91:a2:13:96:77:cb:37:31:4a:ae:43:
a6:9b:ae:d2:bb:59:d5:db:7e:d5:55:a8:60:a5:12:
b9:52:f0:8b:fc:33:7d:1d:ff:6d:c9:82:ce:51:5a:
a8:54:ca:32:da:94:d2:d1:cd:ad:6d:44:d2:fe:ab:
d0:bb:02:61:79:69:1c:cd:04:9f:6e:dc:dc:dd:d6:
67:13:e2:72:10:68:db:f7:45:50:f7:d7:56:a7:67:
c4:5d:16:8c:50:c2:16:45:4d:5d:fe:0e:fc:70:aa:
11:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:52:6A:28:1D:B0:3D:66:2C:66:C3:F4:30:0C:18:48:42:7B:BC:6C
X509v3 Authority Key Identifier:
keyid:9D:17:D9:38:8E:76:31:A6:D1:9A:FB:2B:26:42:79:5A:24:C8:40:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nRfZOI52MabRmvsrJkJ5WiTIQIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e8444-8da5-466b-8400-7bd96d9c6286/1/u1JqKB2wPWYsZsP0MAwYSEJ7vGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e8444-8da5-466b-8400-7bd96d9c6286/1/nRfZOI52MabRmvsrJkJ5WiTIQIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.204.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:46:31:4c:8d:1a:60:35:7d:7f:0e:2f:83:b6:57:bf:d3:3e:
49:27:fd:23:6c:f5:cb:23:47:24:14:f9:86:9f:61:bb:54:75:
c6:28:52:12:77:c3:56:99:14:6a:cc:66:04:e5:1f:ac:8a:8b:
8c:95:f8:f0:bc:4e:28:27:ec:88:93:d3:19:69:5b:21:26:a2:
d7:f2:db:09:48:1a:48:52:56:7e:0f:c3:30:c7:99:f4:36:82:
b0:33:46:ca:35:7c:d5:30:99:0b:ac:be:39:f8:2a:29:67:03:
28:69:a3:a7:3b:18:f3:4c:57:29:8e:2c:a1:2d:00:0e:d6:b8:
29:96:55:5e:46:65:b2:78:3f:b9:bd:0a:c5:a4:b3:0f:91:f7:
8f:d6:e3:07:72:95:42:77:13:39:0b:a7:d0:b3:31:06:cd:4a:
f0:66:11:d1:2d:b2:10:8b:59:d7:45:19:15:53:ce:87:a9:f2:
00:ea:88:f1:6f:b0:3f:02:79:27:7d:35:6b:b4:06:2d:36:89:
25:26:c7:5f:67:47:a6:83:8e:e2:31:97:a3:c9:10:ab:72:cd:
13:83:9f:43:78:f8:98:d4:12:55:ad:73:27:d9:fb:2a:df:d0:
e2:75:a0:4d:07:0a:79:9d:36:90:ff:88:05:81:b3:07:1a:1c:
93:f1:10:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:59 2024 by rpki-client on console-ams.rpki-client.org