Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/jPBnz4FGrpAC5KUdL64wnNyeiJk.roa
File: jPBnz4FGrpAC5KUdL64wnNyeiJk.roa (raw, json)
Hash identifier: +K7wEut/7sL/ZX6ocGHjGzlj3sk+PuHYVVScZduXlPA=
Subject key identifier: 8C:F0:67:CF:81:46:AE:90:02:E4:A5:1D:2F:AE:30:9C:DC:9E:88:99
Certificate issuer: /CN=7792c3fc69154ac7d515bcac9daa07e78bc229cc
Certificate serial: 14C7038A
Authority key identifier: 77:92:C3:FC:69:15:4A:C7:D5:15:BC:AC:9D:AA:07:E7:8B:C2:29:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5LD_GkVSsfVFbysnaoH54vCKcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/jPBnz4FGrpAC5KUdL64wnNyeiJk.roa
Signing time: Sat 01 Jan 2022 14:01:28 +0000
ROA not before: Sat 01 Jan 2022 14:01:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8893
IP address blocks: 185.99.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 348586890 (0x14c7038a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7792c3fc69154ac7d515bcac9daa07e78bc229cc
Validity
Not Before: Jan 1 14:01:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cf067cf8146ae9002e4a51d2fae309cdc9e8899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:16:75:44:12:f7:ac:cd:82:bc:f4:bd:85:f1:
36:0a:95:4c:90:ec:81:e1:84:85:61:ac:b3:81:34:
b0:0a:b3:99:9f:f0:18:93:f6:ab:56:6c:aa:38:a4:
59:bc:99:cb:2f:1d:2e:b3:81:9d:09:e2:13:2e:76:
f4:4e:a4:7f:cc:2c:f4:13:19:04:4d:8f:9e:e4:db:
24:0e:78:55:4d:d3:02:72:5d:07:20:fd:ad:e6:08:
67:ac:42:a4:1a:97:b4:7b:26:25:1b:81:18:40:07:
1a:a6:2e:97:7e:52:98:3d:a1:d7:68:44:6d:e1:40:
4c:6c:dc:7f:49:cd:52:f6:ce:71:d5:0e:36:82:85:
66:38:5b:7d:18:57:7e:d6:68:e1:5c:e5:11:8a:18:
cf:8c:9a:36:36:8a:e2:01:9b:fb:2e:d5:57:b0:61:
bb:8c:e3:ec:3d:79:aa:57:eb:80:0a:39:17:d5:6b:
b6:20:45:4f:41:94:ad:43:83:a5:56:40:04:01:e2:
29:a1:df:14:6f:63:43:05:a6:72:c7:32:a5:fe:f9:
56:42:00:57:ad:77:c5:5b:17:6c:b7:f6:9f:2c:4e:
8f:92:9f:b5:0b:83:7c:89:f3:f8:5e:d3:67:c9:35:
ff:c9:05:6e:26:69:05:4d:ad:99:5f:39:c0:a0:4e:
ad:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:F0:67:CF:81:46:AE:90:02:E4:A5:1D:2F:AE:30:9C:DC:9E:88:99
X509v3 Authority Key Identifier:
keyid:77:92:C3:FC:69:15:4A:C7:D5:15:BC:AC:9D:AA:07:E7:8B:C2:29:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5LD_GkVSsfVFbysnaoH54vCKcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/jPBnz4FGrpAC5KUdL64wnNyeiJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/d5LD_GkVSsfVFbysnaoH54vCKcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.56.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:13:95:5f:6e:35:30:6a:26:e3:17:84:12:04:21:98:45:ae:
7f:ab:39:31:33:61:42:9a:50:12:6f:0e:d7:6b:a0:80:6f:dd:
19:12:fd:43:d3:19:a6:a7:cc:e3:a4:54:d0:3a:60:0d:84:a7:
f2:85:2f:62:05:c6:88:fb:4b:54:98:65:95:c8:34:92:be:e6:
77:b6:3b:d5:83:28:35:1d:aa:ea:fa:85:1e:99:8c:bf:19:09:
20:c0:89:c4:06:8b:47:2f:4f:af:c9:61:e8:07:8d:b2:a0:c4:
de:f5:e1:80:eb:5d:e5:ab:26:b7:11:da:f6:4e:81:7d:91:b6:
2b:39:66:b9:ff:03:83:58:91:80:47:7c:48:07:0b:ee:9b:44:
ca:a2:42:42:bb:05:46:1a:b3:31:59:34:ac:70:7a:70:2b:b4:
37:37:3e:8f:40:74:fd:38:42:fe:ea:7c:7b:6d:19:52:59:0f:
78:25:9b:83:16:f7:68:20:b8:eb:30:82:0a:26:15:33:1d:e7:
3a:d6:d9:ec:50:c0:3c:b9:b9:7b:ab:d2:a4:6b:57:f4:6b:24:
a2:59:b3:cf:03:19:a5:a6:d3:79:39:d9:87:6d:41:8f:91:97:
4d:6e:54:30:0f:58:c2:f5:d0:13:99:89:26:16:80:c1:52:f3:
c8:13:e0:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:15 2024 by rpki-client on console-ams.rpki-client.org