Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/dfa51b-46aa-4084-a343-f016ca5da219/1/eC8PzNFkNJvNLDCFZz99UZqOSxo.roa
File: eC8PzNFkNJvNLDCFZz99UZqOSxo.roa (raw, json)
Hash identifier: nSgMFrZxJgSpghz0WnYtEDEyQYImZT+OjgdAY0y3B28=
Subject key identifier: 78:2F:0F:CC:D1:64:34:9B:CD:2C:30:85:67:3F:7D:51:9A:8E:4B:1A
Certificate issuer: /CN=b32ee2b39712377b4bfec9e66ac7e6e908efceec
Certificate serial: 18707243
Authority key identifier: B3:2E:E2:B3:97:12:37:7B:4B:FE:C9:E6:6A:C7:E6:E9:08:EF:CE:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sy7is5cSN3tL_snmasfm6Qjvzuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/dfa51b-46aa-4084-a343-f016ca5da219/1/eC8PzNFkNJvNLDCFZz99UZqOSxo.roa
Signing time: Sat 01 Jan 2022 07:59:38 +0000
ROA not before: Sat 01 Jan 2022 07:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60175
IP address blocks: 185.35.12.0/22 maxlen: 22
2a00:dca0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410022467 (0x18707243)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32ee2b39712377b4bfec9e66ac7e6e908efceec
Validity
Not Before: Jan 1 07:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=782f0fccd164349bcd2c3085673f7d519a8e4b1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:3f:a1:5a:6b:45:2d:8b:ad:b8:94:9f:79:03:
8f:35:a9:96:53:00:38:59:37:2c:7d:51:90:2d:49:
34:2d:00:58:18:04:0f:f2:d3:94:61:01:36:3e:83:
36:c6:48:53:2b:5f:b9:c3:47:90:3f:15:36:04:6d:
56:12:a7:5d:19:85:e5:e8:91:4e:6a:ec:ad:39:af:
4e:c7:04:2d:16:65:d8:5c:26:07:1e:c6:ba:2e:15:
76:37:af:2e:aa:f7:2e:d4:75:98:78:85:e9:02:64:
7e:52:a8:6e:7a:4d:b5:8d:5d:ea:63:56:bd:b4:33:
af:bf:5e:bd:f1:0b:d3:86:6e:5b:d9:2b:c7:de:fd:
89:6d:e3:ca:9e:49:94:02:3c:1f:85:1d:d4:15:78:
53:3a:56:d5:3c:ee:66:35:ee:88:86:0c:94:e6:4b:
6e:21:5c:52:b3:1e:ad:19:eb:06:51:30:a0:4d:d7:
7d:75:36:a4:b9:14:e1:91:e7:b9:6c:b8:0d:fb:56:
5c:2a:2d:95:6e:ef:88:6d:8a:7f:b0:9c:18:ef:c1:
a3:c6:85:88:54:60:7f:98:d9:0d:26:3d:60:05:7f:
97:1b:0b:a4:44:48:34:67:6e:d1:cd:59:28:54:88:
05:da:53:e3:70:92:b1:b0:3a:3c:7d:00:22:9d:8b:
90:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:2F:0F:CC:D1:64:34:9B:CD:2C:30:85:67:3F:7D:51:9A:8E:4B:1A
X509v3 Authority Key Identifier:
keyid:B3:2E:E2:B3:97:12:37:7B:4B:FE:C9:E6:6A:C7:E6:E9:08:EF:CE:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sy7is5cSN3tL_snmasfm6Qjvzuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/dfa51b-46aa-4084-a343-f016ca5da219/1/eC8PzNFkNJvNLDCFZz99UZqOSxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/dfa51b-46aa-4084-a343-f016ca5da219/1/sy7is5cSN3tL_snmasfm6Qjvzuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.12.0/22
IPv6:
2a00:dca0::/29
Signature Algorithm: sha256WithRSAEncryption
5d:01:e2:2d:5d:b6:f8:35:ec:b1:53:44:97:5c:d7:58:64:16:
6c:bd:c5:db:d9:e7:8b:67:b3:b3:0a:73:9c:a7:e8:33:40:84:
9a:a4:60:01:9e:8d:ef:38:54:d2:1d:51:bf:99:05:c8:fd:3a:
5b:2c:cf:2a:c8:37:9e:87:98:36:28:ef:ad:01:ee:50:32:81:
cb:ba:5b:55:32:8f:59:cf:a2:85:a6:d8:c9:ca:49:ae:30:ac:
58:42:dd:10:53:46:cc:af:cb:60:3c:9d:f8:2b:6a:21:c2:56:
cb:bf:3f:39:0b:29:d7:0d:2b:c2:55:48:f6:63:de:ab:86:1f:
f8:94:d3:56:d6:ba:2e:52:e1:12:a7:f4:f4:73:e5:c5:ba:fa:
fb:71:38:3e:dd:a8:b4:f2:ef:c3:3e:e7:6a:a6:a6:80:b0:da:
00:65:e3:ab:90:f5:e0:79:71:82:eb:5e:5b:58:c7:dc:da:f2:
bc:e7:23:95:e0:a4:f4:9b:5e:d6:74:4e:b4:ab:df:77:eb:fa:
9a:56:9a:35:bc:29:94:09:aa:cc:33:ae:bd:cb:db:71:52:b7:
69:fc:7b:91:31:ec:ba:a0:31:7e:37:0b:f0:0c:3d:86:fb:e9:
05:2b:9a:68:f8:0e:f0:69:ad:6b:ed:26:a7:27:10:0a:5f:bb:
9a:47:99:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:13 2024 by rpki-client on console-ams.rpki-client.org