Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/621edd-1b5a-46ac-ba13-04f9e616af60/1/aINgnxQ6wo4TNZS_6nVLY-M88Yc.roa
File: aINgnxQ6wo4TNZS_6nVLY-M88Yc.roa (raw, json)
Hash identifier: 0vys1LENjjRk5Gv9ilyWg8NNdS90BuKizQR3I+zu9as=
Subject key identifier: 68:83:60:9F:14:3A:C2:8E:13:35:94:BF:EA:75:4B:63:E3:3C:F1:87
Certificate issuer: /CN=3f39dd7bd73c3e1ba27d178d55c26f8a96cdb4a9
Certificate serial: 0909EAE4
Authority key identifier: 3F:39:DD:7B:D7:3C:3E:1B:A2:7D:17:8D:55:C2:6F:8A:96:CD:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pznde9c8PhuifReNVcJvipbNtKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/621edd-1b5a-46ac-ba13-04f9e616af60/1/aINgnxQ6wo4TNZS_6nVLY-M88Yc.roa
Signing time: Sat 01 Jan 2022 10:00:50 +0000
ROA not before: Sat 01 Jan 2022 10:00:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48362
IP address blocks: 92.249.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151644900 (0x909eae4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f39dd7bd73c3e1ba27d178d55c26f8a96cdb4a9
Validity
Not Before: Jan 1 10:00:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6883609f143ac28e133594bfea754b63e33cf187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:02:08:76:2a:66:d4:8b:1d:a0:76:12:5d:5a:
8c:ae:13:21:fe:27:af:1a:e2:18:52:38:e5:ce:41:
76:9b:e6:d1:43:8f:72:cc:4b:49:d0:8a:4f:fb:35:
1f:99:76:fe:63:c4:8b:5d:f7:ee:85:88:f8:82:05:
c0:36:aa:a5:48:e2:09:b6:27:91:24:4b:a1:7d:cd:
a8:43:93:8c:9f:15:76:31:35:ce:d8:b9:c3:7a:a3:
a8:c5:c8:4b:69:90:01:e5:53:7e:37:79:36:b1:11:
e9:8c:b2:7b:20:e6:d2:39:b8:ad:c9:32:a2:72:85:
b6:86:f3:3d:d1:0e:b4:99:b9:9d:77:4f:92:2c:2d:
eb:8b:b6:39:3d:e8:4d:1d:67:84:a2:3f:77:71:c0:
f7:6f:a7:a6:31:41:48:0a:ff:56:37:01:52:e2:67:
84:6c:31:16:07:d4:54:aa:ed:f3:5d:6d:0a:51:eb:
98:02:6f:26:ec:b8:13:01:60:84:e6:c4:b8:73:91:
34:c9:76:e7:92:f8:01:66:c2:9b:dd:8e:1a:5b:4b:
04:5a:59:83:73:48:91:90:09:51:ab:8a:e2:78:a6:
fe:71:83:7e:ac:01:e9:e9:f1:ca:7e:9c:4c:3c:49:
95:44:06:f1:36:fa:7c:64:1e:1d:5b:6d:de:45:58:
97:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:83:60:9F:14:3A:C2:8E:13:35:94:BF:EA:75:4B:63:E3:3C:F1:87
X509v3 Authority Key Identifier:
keyid:3F:39:DD:7B:D7:3C:3E:1B:A2:7D:17:8D:55:C2:6F:8A:96:CD:B4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pznde9c8PhuifReNVcJvipbNtKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/621edd-1b5a-46ac-ba13-04f9e616af60/1/aINgnxQ6wo4TNZS_6nVLY-M88Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/621edd-1b5a-46ac-ba13-04f9e616af60/1/Pznde9c8PhuifReNVcJvipbNtKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.249.20.0/22
Signature Algorithm: sha256WithRSAEncryption
90:0f:37:e3:55:75:9e:6f:0e:88:b5:5c:05:2a:0b:5f:77:a3:
cc:1f:47:f5:12:03:58:7f:60:b4:6c:c2:fc:0e:c6:7e:83:38:
16:e3:3d:12:9d:38:25:e7:cd:f1:1f:14:f5:8b:eb:01:d0:fd:
2c:28:73:d0:7e:63:d5:03:88:b2:dd:7c:8a:0d:b5:bb:08:ca:
bb:cc:09:12:99:80:64:3e:c3:25:78:40:30:1a:71:c9:0f:92:
85:9a:ec:e3:45:4d:b2:b3:37:60:fc:c3:1e:7c:33:41:ee:9d:
93:8c:c7:51:d1:85:bf:fe:06:55:6d:a1:5f:58:00:6b:c4:e4:
d2:7e:60:f4:87:28:62:7a:fe:bf:70:73:5c:93:5e:2a:0a:a2:
d1:09:12:53:4a:06:08:ee:22:df:5d:95:67:74:bf:63:df:0f:
15:7e:ca:dc:3e:10:e0:03:20:f0:d1:94:0d:fe:97:c6:2e:ac:
64:fd:03:5c:43:47:e9:ad:33:35:57:16:cd:73:79:3d:5b:47:
18:82:73:3a:94:68:c4:82:e0:de:32:eb:e6:71:34:2b:8b:44:
d8:24:b5:65:31:f7:80:83:49:77:d3:3d:8b:92:ed:35:07:5f:
1c:cc:16:1b:28:01:61:a2:ad:2b:16:56:c8:ca:50:dd:ff:c5:
4b:18:de:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:30 2023 by rpki-client on console.sobornost.net