Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f7d070-3281-47b7-85c8-8fb624394e7a/1/C68l_Bqf5cTRTWGIg0gYh86TiUY.roa
File: C68l_Bqf5cTRTWGIg0gYh86TiUY.roa (raw, json)
Hash identifier: bikICRhcT+n52GNjquNKY5DsHx37Xp9lsQgvJA2/Cuc=
Subject key identifier: 0B:AF:25:FC:1A:9F:E5:C4:D1:4D:61:88:83:48:18:87:CE:93:89:46
Certificate issuer: /CN=f9587c5b0d415516d72f5914f5f5fb528a32a12c
Certificate serial: 0C10F139
Authority key identifier: F9:58:7C:5B:0D:41:55:16:D7:2F:59:14:F5:F5:FB:52:8A:32:A1:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Vh8Ww1BVRbXL1kU9fX7UooyoSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f7d070-3281-47b7-85c8-8fb624394e7a/1/C68l_Bqf5cTRTWGIg0gYh86TiUY.roa
Signing time: Sat 01 Jan 2022 12:56:52 +0000
ROA not before: Sat 01 Jan 2022 12:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36351
IP address blocks: 185.228.36.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202436921 (0xc10f139)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9587c5b0d415516d72f5914f5f5fb528a32a12c
Validity
Not Before: Jan 1 12:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0baf25fc1a9fe5c4d14d618883481887ce938946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:25:b5:16:2e:29:5a:d9:91:7e:20:9b:96:55:
70:6f:47:0f:98:01:92:db:83:cf:c5:1c:18:b1:4f:
c1:c9:ca:24:61:1e:ec:c6:2d:86:1b:ef:1c:14:eb:
ee:10:0a:53:e5:e0:dc:ab:1c:9e:0e:de:1e:f1:d2:
ce:78:8a:35:98:e5:d9:c7:30:d6:aa:99:0a:fb:bf:
47:d3:ba:9e:57:73:62:16:85:ee:68:a6:f2:39:7f:
3a:f1:fa:14:2b:c9:69:6e:c0:da:69:84:5d:21:e4:
2a:eb:ba:d9:3c:bc:f1:c6:a0:6f:83:1d:6f:cb:d4:
aa:c1:27:78:56:b5:cc:1a:1b:5f:54:e9:ad:a6:7d:
12:13:5f:95:ee:af:cd:d3:93:65:f2:e7:57:7e:87:
f8:e3:b2:55:7e:5e:5e:b8:0b:08:33:6e:c7:5c:57:
da:c9:f6:51:0c:6c:a5:15:4a:1c:d5:82:bb:84:75:
b5:92:a3:a4:68:54:f5:0e:bd:bd:52:78:5d:f8:b6:
da:27:fa:d6:63:d7:80:87:9c:e9:87:02:75:7f:ba:
51:a7:9b:9d:10:53:19:26:a0:b5:c1:0c:bd:d8:00:
e2:12:9a:84:22:68:ce:b1:5d:e7:b8:c0:3f:f9:f7:
d3:c2:df:ff:85:3d:3e:0c:0d:84:67:2a:e2:4c:3a:
ea:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:AF:25:FC:1A:9F:E5:C4:D1:4D:61:88:83:48:18:87:CE:93:89:46
X509v3 Authority Key Identifier:
keyid:F9:58:7C:5B:0D:41:55:16:D7:2F:59:14:F5:F5:FB:52:8A:32:A1:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Vh8Ww1BVRbXL1kU9fX7UooyoSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f7d070-3281-47b7-85c8-8fb624394e7a/1/C68l_Bqf5cTRTWGIg0gYh86TiUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f7d070-3281-47b7-85c8-8fb624394e7a/1/1-Vh8Ww1BVRbXL1kU9fX7UooyoSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.36.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:e7:85:01:8f:ba:16:4a:dd:9f:2d:90:57:4d:18:e9:3f:c4:
dc:06:34:0c:50:37:a3:74:ac:ac:67:00:c9:09:5b:2a:d1:74:
02:82:bf:42:be:4b:84:69:10:c0:c0:75:54:5f:55:1d:be:dd:
c5:e4:e2:ac:cb:b4:13:ed:fc:3a:cc:2c:3c:bc:46:a5:14:a1:
0a:8c:42:23:0a:f5:5f:8f:16:0f:b1:4e:aa:fe:3c:85:79:cb:
71:da:22:fb:65:a4:2c:cd:c4:72:fa:20:0f:0e:dc:a0:0c:e0:
2d:19:f4:a8:1a:cc:2b:a1:79:e1:88:af:9f:c5:f5:dc:1b:f8:
6c:97:1e:5b:39:8b:1e:d1:fd:19:dc:60:92:4f:87:9c:28:e3:
58:9b:b9:47:0e:96:68:fe:7f:45:ae:70:ab:03:fe:c6:c9:07:
df:35:2f:39:4b:05:ce:ae:f5:a5:71:32:f7:e7:e8:f2:2b:31:
89:ef:d5:7c:65:64:86:13:aa:31:9a:57:7f:0c:56:22:6b:85:
7a:51:29:21:e1:d2:78:19:dd:c0:cc:0d:dd:f0:89:09:58:4f:
d6:4a:06:dd:21:77:3e:31:d7:8e:ec:60:fc:1f:82:ec:e0:01:
e0:ad:33:1c:2e:32:24:c6:38:46:ea:be:28:3c:0c:56:ec:f6:
72:f2:29:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:44 2023 by rpki-client on console-ams.rpki-client.org