Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/e1a78b-dd36-4ee9-a260-3b1aad9fdd57/1/6ac3PcG0D3Q71RTAJ8EQxaVixBM.roa
File: 6ac3PcG0D3Q71RTAJ8EQxaVixBM.roa (raw, json)
Hash identifier: FjJhkzyr4OCE634ouDOBR8GNQthgKxZcjheIiN1Y8z4=
Subject key identifier: E9:A7:37:3D:C1:B4:0F:74:3B:D5:14:C0:27:C1:10:C5:A5:62:C4:13
Certificate issuer: /CN=ad102f1af17d00fd80a3d9fe9ffe81d04ce17447
Certificate serial: 064464C2
Authority key identifier: AD:10:2F:1A:F1:7D:00:FD:80:A3:D9:FE:9F:FE:81:D0:4C:E1:74:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rRAvGvF9AP2Ao9n-n_6B0EzhdEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/e1a78b-dd36-4ee9-a260-3b1aad9fdd57/1/6ac3PcG0D3Q71RTAJ8EQxaVixBM.roa
Signing time: Sat 01 Jan 2022 15:01:39 +0000
ROA not before: Sat 01 Jan 2022 15:01:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202022
IP address blocks: 185.56.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105145538 (0x64464c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad102f1af17d00fd80a3d9fe9ffe81d04ce17447
Validity
Not Before: Jan 1 15:01:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9a7373dc1b40f743bd514c027c110c5a562c413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:ae:f2:33:3f:b2:5c:70:df:c3:e3:4a:f8:1e:
e8:e9:49:a7:08:7b:06:3e:f0:f2:53:a4:95:de:04:
34:c4:31:f7:16:9f:cd:50:68:8b:59:20:7b:76:55:
aa:ab:49:fc:ff:8c:88:94:af:0e:33:b6:6f:e4:f7:
e1:f4:ab:63:15:53:dc:0d:29:f3:66:7f:14:99:79:
ce:62:9e:88:d9:e8:bd:08:6d:e0:e9:97:22:4d:d9:
ea:bc:c0:0a:95:b1:b1:1c:a3:dd:5a:5f:b8:0c:d3:
27:74:ef:79:ea:40:e4:84:73:47:2f:71:ee:3f:29:
2d:14:d2:ab:3e:f5:86:96:48:bc:67:86:97:c5:98:
84:cd:40:28:a4:4c:0d:b4:0a:4d:cf:50:39:fd:41:
cd:48:b8:2e:77:67:da:db:c0:78:c8:16:6f:02:32:
dd:cd:36:4b:5f:b1:4a:16:5f:cb:cf:a7:15:2a:ce:
1c:09:57:36:0c:2e:a8:d1:1f:55:cf:d9:2b:7e:1e:
12:8f:af:6f:7f:b2:88:d5:ca:2b:0f:1f:18:dc:ed:
30:62:6d:95:da:c9:cb:5f:60:33:2e:cb:8c:af:c9:
cd:3b:cc:bb:3d:5e:a7:49:c2:6e:39:55:a6:19:38:
d1:82:32:7a:5d:ab:e4:fa:18:71:2c:01:0c:c8:d8:
c8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:A7:37:3D:C1:B4:0F:74:3B:D5:14:C0:27:C1:10:C5:A5:62:C4:13
X509v3 Authority Key Identifier:
keyid:AD:10:2F:1A:F1:7D:00:FD:80:A3:D9:FE:9F:FE:81:D0:4C:E1:74:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rRAvGvF9AP2Ao9n-n_6B0EzhdEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/e1a78b-dd36-4ee9-a260-3b1aad9fdd57/1/6ac3PcG0D3Q71RTAJ8EQxaVixBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/e1a78b-dd36-4ee9-a260-3b1aad9fdd57/1/rRAvGvF9AP2Ao9n-n_6B0EzhdEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.32.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:0a:c2:29:33:16:11:4f:46:ce:6b:7b:eb:60:e1:7b:94:26:
7c:ab:26:eb:70:cd:34:b1:1d:29:63:92:c6:f0:a2:b3:dd:c6:
e8:f7:3d:c2:5e:ab:b6:98:7e:dc:3e:91:b5:db:e7:bf:da:b9:
c3:3f:46:e1:3b:c2:46:ef:76:b6:7a:a5:c8:cb:d0:89:ce:e8:
0a:a5:03:13:61:53:4a:9e:cc:66:04:7f:e1:73:90:fe:2b:e9:
0d:2e:7b:3a:aa:d9:5f:8d:e1:1d:a9:97:9d:62:75:25:c7:1c:
89:b8:60:a3:02:2c:11:cd:4d:04:3a:02:fa:50:88:b4:82:fd:
09:36:1d:57:e1:f5:05:a1:42:7f:02:a1:f8:48:a3:9d:5a:76:
6e:10:41:2f:a3:93:84:02:b9:e4:2c:d6:07:91:ac:d3:3c:bd:
e1:e7:8a:7c:83:ca:3d:66:1b:55:f3:b1:8c:76:e1:fd:c1:74:
18:bc:c9:2d:9f:8d:9c:2e:3f:6b:44:41:dd:6a:82:af:6f:f3:
50:8e:1b:2c:cb:76:72:ec:c5:94:a8:01:4d:91:3b:4c:ba:b5:
6e:7d:5e:47:36:04:03:6a:cf:4e:44:74:a7:29:27:60:15:28:
a9:e7:3b:46:da:2e:ec:e2:61:55:b5:4d:1e:2f:a6:dc:f2:56:
73:a6:e8:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:18 2024 by rpki-client on console-ams.rpki-client.org