Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/xIauBwSjwyG4iUhdTu7NU65j0KI.roa
File: xIauBwSjwyG4iUhdTu7NU65j0KI.roa (raw, json)
Hash identifier: m4GKwLBKLlZsIwrhlh8Xi5RKwHbA+vNkm7EI8VXqX/w=
Subject key identifier: C4:86:AE:07:04:A3:C3:21:B8:89:48:5D:4E:EE:CD:53:AE:63:D0:A2
Certificate issuer: /CN=1bfe6b9a0e6898a7a2e9d84d3dbf6327b453e662
Certificate serial: 137BF8A0
Authority key identifier: 1B:FE:6B:9A:0E:68:98:A7:A2:E9:D8:4D:3D:BF:63:27:B4:53:E6:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G_5rmg5omKei6dhNPb9jJ7RT5mI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/xIauBwSjwyG4iUhdTu7NU65j0KI.roa
Signing time: Sat 01 Jan 2022 08:55:42 +0000
ROA not before: Sat 01 Jan 2022 08:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202784
IP address blocks: 185.133.24.0/24 maxlen: 24
2a00:6700:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 326891680 (0x137bf8a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bfe6b9a0e6898a7a2e9d84d3dbf6327b453e662
Validity
Not Before: Jan 1 08:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c486ae0704a3c321b889485d4eeecd53ae63d0a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:08:99:f5:f1:b6:ac:d7:ec:ef:7c:e1:c5:03:
bb:05:82:4f:5e:48:49:3a:98:dd:f3:4e:2f:b0:b7:
e7:db:0d:63:8c:66:8f:28:35:23:90:c0:e0:48:0b:
18:65:64:3d:f3:09:6c:a1:44:df:2d:48:e3:19:b0:
ba:5c:e6:c1:8a:79:6f:1a:94:51:9d:01:74:35:a2:
ab:c0:80:8c:2d:7f:1a:ea:f6:00:be:37:a0:d7:87:
34:c0:5b:7a:7d:59:88:a4:e5:6a:f1:6b:51:42:62:
99:2c:77:64:3f:47:66:0a:b1:50:3e:1d:f4:35:0f:
88:c3:72:f1:dd:17:cb:99:cc:9a:49:83:47:bf:78:
9b:29:58:da:95:cd:fd:8b:91:94:02:53:17:24:5f:
75:0a:91:a6:e2:2f:4d:64:0e:6a:38:2b:f1:b8:80:
9d:59:1a:15:09:07:af:40:ba:ee:6b:27:e8:09:4b:
0e:bf:3f:03:f9:f4:78:8b:9f:44:b7:ba:a5:e7:6e:
ee:76:bf:52:86:9f:44:f9:79:60:27:86:b3:90:4a:
f4:ed:b9:51:bc:9c:5a:67:05:97:16:29:65:4b:a7:
97:7d:83:f5:ab:90:ec:de:57:0b:f5:14:54:73:13:
9a:a5:0c:d3:2a:3c:fa:36:49:45:35:93:14:64:d3:
0a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:86:AE:07:04:A3:C3:21:B8:89:48:5D:4E:EE:CD:53:AE:63:D0:A2
X509v3 Authority Key Identifier:
keyid:1B:FE:6B:9A:0E:68:98:A7:A2:E9:D8:4D:3D:BF:63:27:B4:53:E6:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_5rmg5omKei6dhNPb9jJ7RT5mI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/xIauBwSjwyG4iUhdTu7NU65j0KI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/G_5rmg5omKei6dhNPb9jJ7RT5mI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.24.0/24
IPv6:
2a00:6700:1::/48
Signature Algorithm: sha256WithRSAEncryption
b6:22:2f:6f:8b:85:4a:e2:2d:fd:82:86:9f:51:05:14:90:73:
75:0f:60:df:d9:e1:03:ba:11:84:81:d6:d8:14:e5:d2:93:31:
e1:12:99:ce:e6:cc:87:ff:31:11:58:40:bf:7e:73:8c:c2:cb:
7c:e9:fc:5e:1e:9b:9e:23:be:20:d1:6a:8c:45:a1:84:be:3d:
f4:5b:06:b1:c9:71:f3:2c:fc:8d:3d:a2:35:09:1e:42:91:85:
a6:89:f5:01:9a:2e:9b:97:bf:ef:cd:cf:72:d3:bf:0b:91:fb:
47:bf:40:96:ae:00:70:dc:65:ca:9e:53:62:e3:ee:07:0a:e0:
e7:6d:b2:73:2e:e6:62:37:c7:28:1c:a2:58:ec:a9:a5:17:89:
ad:4f:72:a8:d8:b8:e4:53:bd:10:c5:b5:b0:74:39:b4:cf:30:
cc:15:a3:47:af:40:f1:fa:c5:f5:d5:c9:e1:18:6d:7a:5d:64:
e0:d1:8a:fe:2e:53:fb:32:fa:52:48:1f:c0:a9:03:ba:fa:8e:
16:9d:bb:6e:94:8f:d0:b7:9c:cf:f8:8c:69:a9:f7:f2:60:44:
c7:e0:d6:3c:dc:a8:f3:9e:18:5d:a3:61:00:d7:88:ac:59:3c:
51:5b:eb:5e:f5:e0:b0:62:08:98:55:4e:55:c1:64:cf:1b:3d:
c0:d7:37:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:34 2024 by rpki-client on console-ams.rpki-client.org