Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ae3323-0a49-4d7a-8955-b6f7aed856c0/1/_mFYSThlaeBWf4lF_Ksc3k3ovpA.roa
File: _mFYSThlaeBWf4lF_Ksc3k3ovpA.roa (raw, json)
Hash identifier: IaUak9odk0MCk6YTePUZRqdJh6CYI7UAUkTqHB51rlc=
Subject key identifier: FE:61:58:49:38:65:69:E0:56:7F:89:45:FC:AB:1C:DE:4D:E8:BE:90
Certificate issuer: /CN=5ece10f13c46806926a67946cc6a1102aa09031a
Certificate serial: 0986805C
Authority key identifier: 5E:CE:10:F1:3C:46:80:69:26:A6:79:46:CC:6A:11:02:AA:09:03:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xs4Q8TxGgGkmpnlGzGoRAqoJAxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ae3323-0a49-4d7a-8955-b6f7aed856c0/1/_mFYSThlaeBWf4lF_Ksc3k3ovpA.roa
Signing time: Sat 01 Jan 2022 09:53:46 +0000
ROA not before: Sat 01 Jan 2022 09:53:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205279
IP address blocks: 185.223.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159809628 (0x986805c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ece10f13c46806926a67946cc6a1102aa09031a
Validity
Not Before: Jan 1 09:53:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe615849386569e0567f8945fcab1cde4de8be90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1f:b8:d8:4f:df:dc:04:66:4e:26:c1:4a:b1:
6a:de:af:99:43:a1:0f:18:53:80:04:11:ea:c1:08:
b5:50:9b:a4:d5:0a:9e:a7:df:50:1a:5b:1f:00:c1:
57:97:63:6b:c3:61:b3:ea:df:c2:17:51:c9:08:1d:
9c:f0:8b:31:31:19:ab:4b:71:99:78:58:1e:64:19:
06:58:cb:13:9a:12:71:51:c9:55:c7:c8:d3:b4:4e:
c9:f9:69:09:f7:80:a9:f9:eb:b6:a2:90:cb:86:e8:
45:5b:ed:7a:cf:34:00:88:09:67:2b:e0:54:e9:68:
62:49:50:f7:9e:4b:a9:8f:3d:38:7f:0c:e1:0b:44:
d5:6a:24:80:69:5c:10:c0:68:75:a4:b4:c2:72:ba:
44:87:82:63:2d:41:4c:7d:fc:c6:49:b8:20:17:a8:
12:10:ea:76:56:57:5e:a0:6d:61:72:6a:34:71:62:
48:6e:7f:3f:52:c3:83:7a:63:d4:4d:70:dc:3c:05:
42:dc:82:c5:7b:8b:fb:6f:51:a2:d4:db:3c:48:86:
13:77:28:ca:58:e0:3e:7f:db:e9:1e:19:80:62:40:
b1:e1:b9:ef:75:da:da:6d:3a:e4:9e:26:82:12:e5:
6b:df:2e:a7:fa:16:69:cb:43:dc:5e:25:d2:1f:b1:
e8:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:61:58:49:38:65:69:E0:56:7F:89:45:FC:AB:1C:DE:4D:E8:BE:90
X509v3 Authority Key Identifier:
keyid:5E:CE:10:F1:3C:46:80:69:26:A6:79:46:CC:6A:11:02:AA:09:03:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xs4Q8TxGgGkmpnlGzGoRAqoJAxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ae3323-0a49-4d7a-8955-b6f7aed856c0/1/_mFYSThlaeBWf4lF_Ksc3k3ovpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ae3323-0a49-4d7a-8955-b6f7aed856c0/1/Xs4Q8TxGgGkmpnlGzGoRAqoJAxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.120.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:92:43:1f:da:34:f0:b2:c7:cd:d1:8a:92:ae:05:60:d8:84:
72:7d:bf:6f:1b:b9:46:67:65:f8:e7:d5:c4:44:4c:06:10:d7:
54:5f:7d:0c:2d:b9:b5:9f:5b:d1:b3:34:aa:65:f1:40:12:1d:
44:0d:a7:d2:f2:df:01:10:17:42:31:3c:e1:ab:4b:85:e7:09:
76:0f:e6:4d:b0:f1:dd:85:17:6e:a8:d0:dd:a6:05:05:ef:24:
68:d8:df:41:c2:2f:d0:17:25:98:a4:c5:e3:0d:04:ac:02:5c:
d0:45:da:39:b8:4b:37:04:7d:fa:6c:92:ec:54:b3:ce:4e:ef:
40:29:df:2d:86:1e:a2:30:95:63:ca:13:11:f5:a4:e2:86:2e:
1c:9f:65:1c:43:08:d7:6a:a9:f3:31:54:76:95:81:18:d1:64:
5c:7a:4f:40:7b:b3:64:fb:ef:2e:13:42:0a:64:55:86:4f:aa:
b8:43:9b:20:7c:19:04:77:87:57:07:8f:be:a9:41:f3:d7:0a:
8d:58:15:8d:e9:bd:46:1f:00:0e:92:05:84:e7:42:68:e9:17:
77:bd:c7:f0:06:97:9b:ee:0b:32:59:54:02:24:97:c5:bf:a8:
17:c2:92:3a:47:cf:ce:71:8c:a4:69:7e:37:4f:b8:b7:3d:05:
16:e5:bc:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:57 2024 by rpki-client on console-ams.rpki-client.org