Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/9dc08c-e1b6-4259-a5db-d55e38868a52/1/xtG0k2KpetC2t5S44GoddIn8hGw.roa
File: xtG0k2KpetC2t5S44GoddIn8hGw.roa (raw, json)
Hash identifier: kUqqoA9/pTN2fR7R1W+3TFOzY6kWAwdpiFAXezVRnFg=
Subject key identifier: C6:D1:B4:93:62:A9:7A:D0:B6:B7:94:B8:E0:6A:1D:74:89:FC:84:6C
Certificate issuer: /CN=29774467cc9f1ed9d957b83aa17a090b1df76946
Certificate serial: 477C25
Authority key identifier: 29:77:44:67:CC:9F:1E:D9:D9:57:B8:3A:A1:7A:09:0B:1D:F7:69:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXdEZ8yfHtnZV7g6oXoJCx33aUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/9dc08c-e1b6-4259-a5db-d55e38868a52/1/xtG0k2KpetC2t5S44GoddIn8hGw.roa
Signing time: Sat 01 Jan 2022 00:57:29 +0000
ROA not before: Sat 01 Jan 2022 00:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201806
IP address blocks: 185.60.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4684837 (0x477c25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29774467cc9f1ed9d957b83aa17a090b1df76946
Validity
Not Before: Jan 1 00:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6d1b49362a97ad0b6b794b8e06a1d7489fc846c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a5:60:dc:93:8b:62:5d:72:a8:35:ba:75:96:
99:c4:f8:71:d0:4a:3a:53:f1:f1:4d:9b:e0:95:0e:
a0:0e:03:fb:83:19:52:27:a9:c4:e2:4f:14:be:73:
67:30:a9:1d:c3:cb:d3:29:52:47:0e:7d:7a:39:1d:
da:89:ae:e4:9e:38:b8:05:08:ea:ad:a3:99:e1:3d:
69:82:82:69:f6:d7:b4:33:62:6a:4c:ea:7a:71:a1:
da:84:e2:23:1c:3d:be:51:d1:50:72:e7:c9:9c:3b:
fd:7a:df:a8:dd:ee:37:83:46:2f:35:63:11:5e:a3:
91:d7:c9:29:5c:a3:1a:48:87:bd:96:c8:db:a5:4b:
25:da:7c:5e:55:0b:66:85:6d:b7:70:f8:52:87:fc:
e3:87:17:9a:8b:e9:ad:81:8b:1c:d1:82:22:d4:ae:
3c:29:8f:26:95:e2:15:e4:f0:c2:87:e2:b5:94:18:
39:58:8d:79:e2:5b:37:c5:a3:48:48:bf:c5:d7:2a:
62:67:94:91:6b:42:54:47:cd:f0:e6:64:4c:25:61:
ca:4c:b4:37:7f:dd:2b:07:43:11:51:08:71:87:d3:
93:93:08:49:7f:90:b0:ec:3c:69:0a:41:69:d0:07:
3e:e3:7e:06:9c:c4:74:11:d7:1a:44:9f:d5:71:e2:
3a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D1:B4:93:62:A9:7A:D0:B6:B7:94:B8:E0:6A:1D:74:89:FC:84:6C
X509v3 Authority Key Identifier:
keyid:29:77:44:67:CC:9F:1E:D9:D9:57:B8:3A:A1:7A:09:0B:1D:F7:69:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXdEZ8yfHtnZV7g6oXoJCx33aUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/9dc08c-e1b6-4259-a5db-d55e38868a52/1/xtG0k2KpetC2t5S44GoddIn8hGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/9dc08c-e1b6-4259-a5db-d55e38868a52/1/KXdEZ8yfHtnZV7g6oXoJCx33aUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.140.0/22
Signature Algorithm: sha256WithRSAEncryption
34:d5:f7:84:f1:ed:4d:d4:84:bf:37:65:81:24:09:07:b0:e9:
41:1c:ab:1d:bc:85:de:b0:0f:37:b4:93:10:1b:66:98:a3:57:
1c:95:ca:95:62:d8:c8:4d:6b:5d:e3:61:57:30:dc:c6:aa:2c:
af:b5:ac:2f:52:a2:65:b4:e4:5f:76:e1:93:d7:37:c9:d4:21:
28:d6:bf:18:a9:75:a1:d2:68:56:f3:96:2b:22:1c:ce:af:07:
7a:0c:d1:7c:31:1c:b4:e2:76:a6:5a:e9:fc:0b:4a:c1:aa:32:
7e:bb:81:a7:11:82:74:fe:fd:5d:0d:ee:7f:d4:48:c9:f6:ee:
88:28:3a:df:a3:73:36:21:0f:0c:4d:b9:43:8d:91:a1:b4:30:
91:bf:30:cc:ca:7c:ae:ac:11:ea:38:69:4e:db:6f:99:fa:13:
ef:54:07:3b:f0:18:1a:37:bc:0a:53:6e:71:ab:9d:da:fa:d4:
fc:80:19:b1:15:a1:63:d0:b0:ee:ae:79:f0:e4:8e:53:2b:3b:
e6:e9:75:76:e2:d0:bb:e7:ad:90:92:6b:36:b5:8c:4b:ae:2a:
69:ba:79:88:eb:de:52:97:09:72:1d:58:a2:70:a2:f7:03:09:
71:ef:34:be:b8:7e:8d:00:56:b6:a7:da:90:7d:e5:45:22:32:
73:3b:e3:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:27 2024 by rpki-client on console-ams.rpki-client.org