Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/SJLrl007A5smdNcrXYNUMgHJwdc.roa
File: SJLrl007A5smdNcrXYNUMgHJwdc.roa (raw, json)
Hash identifier: FriGPYJzZ2CnjJv4bVPQrxWhxI90EJGw8qO+aikJvSU=
Subject key identifier: 48:92:EB:97:4D:3B:03:9B:26:74:D7:2B:5D:83:54:32:01:C9:C1:D7
Certificate issuer: /CN=4f895ff0e99a77c017e8a383292cb5c6f8261120
Certificate serial: 0185158DD455CE88AD4E147DD9A4AFE7ABA6
Authority key identifier: 4F:89:5F:F0:E9:9A:77:C0:17:E8:A3:83:29:2C:B5:C6:F8:26:11:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4lf8Omad8AX6KODKSy1xvgmESA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/SJLrl007A5smdNcrXYNUMgHJwdc.roa
Signing time: Thu 15 Dec 2022 11:31:34 +0000
ROA not before: Thu 15 Dec 2022 11:31:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58010
IP address blocks: 185.219.100.0/24 maxlen: 24
185.219.100.0/22 maxlen: 22
2a00:d0c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:15:8d:d4:55:ce:88:ad:4e:14:7d:d9:a4:af:e7:ab:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f895ff0e99a77c017e8a383292cb5c6f8261120
Validity
Not Before: Dec 15 11:31:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4892eb974d3b039b2674d72b5d83543201c9c1d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8d:c5:ea:ea:37:00:31:69:2a:00:79:6a:81:
f4:eb:21:fa:8f:0b:95:c3:96:ae:58:72:7d:2a:21:
43:af:ea:24:2e:6c:48:14:9f:b5:a1:c9:d6:57:fa:
c1:4f:ec:ae:ca:68:37:6e:01:74:af:82:7a:a7:0e:
12:72:c9:53:f3:cb:22:03:fa:53:71:3d:f3:d5:f5:
d8:ed:b9:78:b6:13:2c:6a:1a:88:2d:8c:a5:8c:a8:
47:40:97:55:8c:2e:c2:a6:92:4a:b2:a8:04:69:4c:
ec:fb:55:e9:17:96:e7:36:94:fc:0b:37:70:c8:10:
3f:52:58:72:18:18:1d:a8:36:c1:3c:19:3f:97:b7:
df:b2:91:f8:3f:11:85:c3:a8:a4:8b:43:40:ac:b0:
30:9c:49:f4:93:17:b4:63:fb:51:0e:c8:7c:04:98:
ff:07:93:c3:dd:8e:c0:0e:48:89:fe:1d:1b:9c:db:
6a:9d:1e:8a:4f:f1:06:f3:d5:b0:af:38:75:63:89:
86:35:9a:5e:a0:33:61:ff:76:2d:4f:77:e2:66:22:
31:99:65:56:6d:ff:20:30:69:ad:e7:56:8d:17:3c:
53:7f:55:0a:9b:3a:d9:4a:76:67:8d:b8:d4:65:53:
d9:5e:8e:b4:df:f7:0e:e3:f1:30:9f:f1:7f:56:d1:
42:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:92:EB:97:4D:3B:03:9B:26:74:D7:2B:5D:83:54:32:01:C9:C1:D7
X509v3 Authority Key Identifier:
keyid:4F:89:5F:F0:E9:9A:77:C0:17:E8:A3:83:29:2C:B5:C6:F8:26:11:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4lf8Omad8AX6KODKSy1xvgmESA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/SJLrl007A5smdNcrXYNUMgHJwdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/T4lf8Omad8AX6KODKSy1xvgmESA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.100.0/22
IPv6:
2a00:d0c0::/32
Signature Algorithm: sha256WithRSAEncryption
77:e3:1c:1a:ee:9e:92:67:b8:f8:4a:ec:02:28:ab:42:82:12:
86:60:68:4e:fe:d8:cd:88:f2:cc:fc:b0:8b:42:ab:47:54:fe:
32:84:fb:c4:32:74:30:ed:f4:ff:ad:a2:dc:a1:c6:b4:a7:a0:
f8:e3:82:91:9f:5b:56:3a:2c:d2:57:fb:a5:da:52:d8:25:85:
ae:49:bb:c5:a9:ee:9b:34:18:90:ba:bb:64:9b:ce:da:24:44:
ef:a2:ee:b4:08:e2:d3:10:f0:6b:03:4d:f8:33:20:66:d3:40:
6f:c1:d2:81:b4:a0:7b:ff:5b:eb:ff:55:9a:59:6d:f5:b8:1e:
f9:10:6c:f1:b5:a5:e7:8a:2b:73:fc:e9:cd:b2:bd:1f:8d:0d:
de:68:58:ca:68:4b:80:16:2b:19:b7:bf:3d:3b:80:8e:11:12:
62:ca:0b:74:b8:9e:e2:82:fe:32:e9:90:62:dd:98:80:c1:b6:
c8:c5:bd:72:0f:d6:f9:bc:82:90:c9:3a:71:f7:0b:3f:6c:6a:
81:5a:25:0a:4c:58:b0:13:2b:34:39:4f:16:d2:44:86:58:a3:
03:7c:3d:95:3f:25:9d:af:e3:4f:ec:8f:f4:de:2a:31:f6:db:
a9:a1:a1:b3:eb:c8:2f:ff:86:0f:47:4d:26:9b:75:af:62:00:
72:d4:b3:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:06 2024 by rpki-client on console-fra.rpki-client.org