Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/92bcf4-d0f2-4f9e-874d-c2c6f6a4097f/1/4GiR0nQFV9Q_T2f1QtFmsajCs2Q.roa
File: 4GiR0nQFV9Q_T2f1QtFmsajCs2Q.roa (raw, json)
Hash identifier: PWpkMhQPPV99VD3VY4weyR52j1qwZEK7i6JX+/sdjqE=
Subject key identifier: E0:68:91:D2:74:05:57:D4:3F:4F:67:F5:42:D1:66:B1:A8:C2:B3:64
Certificate issuer: /CN=5b494c6e16f49d08be761ca8c0eaa7122872fa82
Certificate serial: 01835FCFD05AB440CFAA6555F4769562A090
Authority key identifier: 5B:49:4C:6E:16:F4:9D:08:BE:76:1C:A8:C0:EA:A7:12:28:72:FA:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W0lMbhb0nQi-dhyowOqnEihy-oI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/92bcf4-d0f2-4f9e-874d-c2c6f6a4097f/1/4GiR0nQFV9Q_T2f1QtFmsajCs2Q.roa
Signing time: Wed 21 Sep 2022 11:29:58 +0000
ROA not before: Wed 21 Sep 2022 11:29:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206283
IP address blocks: 185.123.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5f:cf:d0:5a:b4:40:cf:aa:65:55:f4:76:95:62:a0:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b494c6e16f49d08be761ca8c0eaa7122872fa82
Validity
Not Before: Sep 21 11:29:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e06891d2740557d43f4f67f542d166b1a8c2b364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e4:ae:05:d1:89:2e:c4:e6:4d:1e:d0:cd:ec:
42:19:82:2f:4c:ab:43:8e:95:56:e2:75:5a:fe:bc:
58:af:b3:35:eb:90:78:aa:4b:41:6c:db:a5:ce:ab:
58:61:02:6e:24:63:94:94:ac:b1:c5:ff:a0:73:46:
a6:1c:f4:b8:fd:00:68:c6:91:39:90:a6:1f:44:73:
2c:ad:ec:53:b3:04:46:1e:f4:03:6a:fe:f0:92:16:
52:9b:41:5d:c2:82:3b:7b:42:b5:bb:82:e7:78:c3:
af:03:9b:a0:bf:9c:16:b4:52:69:f0:5e:2f:27:6c:
93:2d:da:23:4a:70:af:bd:e2:8a:cb:7c:a8:f3:75:
5e:e7:ec:1b:85:23:5c:70:c8:70:d3:be:be:8c:af:
ac:1d:4c:67:6a:c4:a6:a2:37:2e:38:cc:2a:97:5c:
96:b2:53:c6:16:f2:d7:95:84:bc:11:81:40:40:75:
e4:91:17:b3:a4:fc:aa:6c:4b:68:b2:8c:89:8e:f7:
57:70:58:c6:ad:72:9c:e6:1e:99:d2:9c:7f:98:77:
55:0a:1f:9c:2f:09:ad:04:78:33:b2:59:fc:87:d3:
42:85:9d:d2:a9:b7:f5:93:e8:c8:91:1c:6c:f1:4f:
cf:2a:42:82:40:6a:6f:ee:e6:71:8b:70:54:7e:f4:
f3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:68:91:D2:74:05:57:D4:3F:4F:67:F5:42:D1:66:B1:A8:C2:B3:64
X509v3 Authority Key Identifier:
keyid:5B:49:4C:6E:16:F4:9D:08:BE:76:1C:A8:C0:EA:A7:12:28:72:FA:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W0lMbhb0nQi-dhyowOqnEihy-oI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/92bcf4-d0f2-4f9e-874d-c2c6f6a4097f/1/4GiR0nQFV9Q_T2f1QtFmsajCs2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/92bcf4-d0f2-4f9e-874d-c2c6f6a4097f/1/W0lMbhb0nQi-dhyowOqnEihy-oI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.20.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:f4:ad:09:01:20:c1:88:09:f7:61:67:ba:56:40:49:3a:e8:
2b:90:71:73:1b:8d:bf:b4:77:81:50:1f:7d:97:36:51:7a:88:
ef:eb:8d:5a:2d:60:c0:97:81:c7:bc:4e:da:cf:78:bf:14:b7:
d6:cd:22:ec:e4:72:4d:fd:a6:58:43:77:2b:8d:74:ea:b5:3f:
79:b9:b9:73:23:aa:32:23:ac:a9:5b:2b:c5:d6:90:52:db:e5:
61:67:2b:b2:c3:fe:0b:c0:7a:9d:1a:40:d8:6f:2d:36:28:5a:
85:8d:fd:b4:46:c8:2b:65:39:52:95:a8:1c:c2:7d:ac:a0:4c:
83:1b:65:6e:c6:7b:d9:e3:38:4e:b0:c0:99:e6:dc:91:ec:ff:
f8:54:2f:69:ef:24:73:5d:92:ff:f3:fe:52:8b:21:a0:17:65:
1d:96:ea:68:fb:aa:59:01:ac:25:1d:36:90:e9:86:21:7a:3a:
bb:2c:b5:5d:95:ea:a3:82:6d:e6:a9:7a:8f:9c:f0:b7:09:7e:
d4:f6:cb:e2:b9:cf:89:76:87:7d:5e:b1:d5:6b:60:fe:d5:86:
85:80:45:8e:56:97:12:f1:bd:72:1c:ee:f5:25:6d:d2:b3:b3:
ab:e0:93:52:fd:21:7b:7d:02:a6:43:30:f1:0d:d1:4f:32:aa:
e0:1b:16:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:09 2024 by rpki-client on console-ams.rpki-client.org