Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/bbg3Y-JMhXmJZWqb9fcaoES-Kg0.roa
File: bbg3Y-JMhXmJZWqb9fcaoES-Kg0.roa (raw, json)
Hash identifier: DguRNVMQJrcHEFqyrSRUk+YaN9tJwTt8KAHfHhcA318=
Subject key identifier: 6D:B8:37:63:E2:4C:85:79:89:65:6A:9B:F5:F7:1A:A0:44:BE:2A:0D
Certificate issuer: /CN=c011ee066641750a51147d8dc99a1b105658d203
Certificate serial: 089AEB2C
Authority key identifier: C0:11:EE:06:66:41:75:0A:51:14:7D:8D:C9:9A:1B:10:56:58:D2:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wBHuBmZBdQpRFH2NyZobEFZY0gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/bbg3Y-JMhXmJZWqb9fcaoES-Kg0.roa
Signing time: Sat 01 Jan 2022 08:04:39 +0000
ROA not before: Sat 01 Jan 2022 08:04:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43232
IP address blocks: 185.123.184.0/22 maxlen: 22
2a03:9120::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144370476 (0x89aeb2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c011ee066641750a51147d8dc99a1b105658d203
Validity
Not Before: Jan 1 08:04:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6db83763e24c857989656a9bf5f71aa044be2a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:04:e3:1f:eb:d6:73:cd:87:58:ef:f2:2e:5b:
f5:78:d4:9a:e7:7a:be:ce:23:45:f5:b7:56:eb:aa:
87:ef:44:39:2f:9c:33:76:ee:05:dc:7c:52:7e:6f:
8f:ac:18:05:3e:a4:98:c6:2b:3d:46:27:af:ee:9a:
21:ff:37:82:16:de:25:e1:08:4b:ff:9b:7d:12:7d:
c4:eb:7c:1c:09:58:69:4c:41:77:17:2e:9b:b9:d5:
89:64:79:4b:68:4c:c9:32:a5:37:8d:ef:ae:79:c4:
85:f0:88:16:82:c5:49:4d:cc:4e:24:02:45:44:6c:
cf:5e:e1:29:75:12:62:dc:72:1c:9a:25:e9:08:3e:
54:9f:1d:e4:74:71:1e:fc:17:1c:c2:14:b7:95:37:
0a:e4:3f:3b:eb:3e:d2:65:b5:d4:d3:b6:69:6e:fb:
b6:01:4b:3c:b2:32:82:1c:a2:01:5c:31:06:c5:57:
4f:4f:5b:df:ad:c0:de:30:6a:69:6a:9e:9b:2f:a6:
83:f7:65:9e:b6:5b:34:9a:91:12:15:85:47:6b:c7:
5c:cc:5d:a6:22:3c:18:86:3e:9d:84:67:18:49:86:
a6:09:6e:3e:b2:bf:3f:59:1b:9c:d7:e3:21:18:cc:
6b:cf:4f:99:f7:99:70:c5:38:c1:06:35:ca:30:d6:
91:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B8:37:63:E2:4C:85:79:89:65:6A:9B:F5:F7:1A:A0:44:BE:2A:0D
X509v3 Authority Key Identifier:
keyid:C0:11:EE:06:66:41:75:0A:51:14:7D:8D:C9:9A:1B:10:56:58:D2:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wBHuBmZBdQpRFH2NyZobEFZY0gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/bbg3Y-JMhXmJZWqb9fcaoES-Kg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/wBHuBmZBdQpRFH2NyZobEFZY0gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.184.0/22
IPv6:
2a03:9120::/32
Signature Algorithm: sha256WithRSAEncryption
83:55:9f:5f:e1:c8:77:e9:c3:28:2c:c8:a6:51:02:05:88:22:
6c:3a:c0:13:9e:0e:37:08:39:2a:c1:fd:0b:8a:1b:e9:f5:19:
52:3b:2d:3d:bd:c5:ea:de:b5:83:2c:07:1d:d9:8d:76:b1:f2:
83:58:6c:b0:46:22:f0:01:cf:08:e7:fe:23:8f:eb:32:b8:b3:
20:f1:4b:ee:a6:3c:e9:05:ae:8f:30:08:ce:ec:02:9e:38:b5:
ae:a4:4c:0d:e2:4b:d9:89:c8:78:67:0c:60:8d:33:3f:78:6f:
8f:cb:ce:9f:06:73:5e:a4:db:bf:7d:18:1e:02:bf:c0:51:21:
e5:af:a2:84:e1:d9:82:f7:d8:9d:79:57:b7:fc:f5:17:5d:03:
02:56:af:27:03:74:dc:bf:6b:14:83:52:79:5e:56:eb:59:59:
82:3f:ce:29:c4:c4:7d:6d:a4:c3:4c:d7:50:fd:fd:4b:28:68:
98:e6:70:ae:c6:3b:44:a4:9a:2f:52:c0:41:18:f6:cb:a3:d2:
2e:ba:5f:a3:f1:c2:88:61:56:20:dc:79:1a:f9:02:91:de:9a:
a3:14:09:80:be:f5:0d:6b:63:01:69:d2:a0:84:71:44:84:f2:
82:14:74:bb:0c:31:49:46:d2:0a:0e:5e:fe:78:5e:3d:e7:4a:
53:8e:8d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:25 2024 by rpki-client on console-fra.rpki-client.org