Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/6c83e7-a352-4e21-a731-157b5ad6ab7b/1/B-zMy1oOdxwK51dIYRAwuV9Dvj0.roa
File: B-zMy1oOdxwK51dIYRAwuV9Dvj0.roa (raw, json)
Hash identifier: a+BGBZZ9BeqFV0T4zA8l5dWQ5Y1K16c6/VUJE6UZwvw=
Subject key identifier: 07:EC:CC:CB:5A:0E:77:1C:0A:E7:57:48:61:10:30:B9:5F:43:BE:3D
Certificate issuer: /CN=bf628b93661e905887359fc8e9a1888075db3cd8
Certificate serial: 06815431
Authority key identifier: BF:62:8B:93:66:1E:90:58:87:35:9F:C8:E9:A1:88:80:75:DB:3C:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v2KLk2YekFiHNZ_I6aGIgHXbPNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/6c83e7-a352-4e21-a731-157b5ad6ab7b/1/B-zMy1oOdxwK51dIYRAwuV9Dvj0.roa
Signing time: Sat 01 Jan 2022 03:55:06 +0000
ROA not before: Sat 01 Jan 2022 03:55:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25540
IP address blocks: 185.52.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109138993 (0x6815431)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf628b93661e905887359fc8e9a1888075db3cd8
Validity
Not Before: Jan 1 03:55:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07eccccb5a0e771c0ae75748611030b95f43be3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f4:18:b7:3a:23:f1:8f:1d:ca:7e:e5:ce:11:
dc:04:9e:45:b2:96:d3:17:85:98:07:65:fb:1a:8f:
db:3a:ca:38:91:9d:60:37:d7:bd:a6:8b:15:0b:5e:
c5:c1:43:01:50:c6:19:cb:8a:8c:1c:2f:ec:cb:41:
37:44:c2:f3:c3:4c:e5:f5:c4:48:e4:8b:07:cd:b2:
78:b1:91:7a:ec:14:46:6c:d4:aa:cd:5f:6f:27:27:
24:f5:f6:89:ca:81:97:d9:43:92:6a:17:78:25:cf:
04:d6:c0:b2:a1:8c:59:c9:77:45:55:5c:cb:52:df:
1e:5c:b7:a8:5c:29:4f:ee:29:e8:15:ae:5e:b6:f0:
86:d4:ce:00:7f:15:cd:4d:d6:c4:50:ad:a0:48:be:
55:e4:b4:a7:60:a4:92:fb:85:22:13:a0:db:14:01:
06:23:e6:7f:2c:b6:86:b4:8b:ec:a7:62:db:09:c6:
43:67:6f:53:4a:24:1c:a7:4c:ee:f3:26:bf:3c:cb:
ad:32:a3:2d:94:a8:47:c3:7f:84:0c:87:3b:5b:25:
6a:37:5e:01:1c:58:fc:74:a3:21:dc:be:10:65:28:
26:a7:ed:86:75:39:47:cc:7a:ce:63:7b:1e:32:50:
90:eb:5e:ae:61:7e:99:27:83:d7:28:69:fd:39:28:
9b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EC:CC:CB:5A:0E:77:1C:0A:E7:57:48:61:10:30:B9:5F:43:BE:3D
X509v3 Authority Key Identifier:
keyid:BF:62:8B:93:66:1E:90:58:87:35:9F:C8:E9:A1:88:80:75:DB:3C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v2KLk2YekFiHNZ_I6aGIgHXbPNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6c83e7-a352-4e21-a731-157b5ad6ab7b/1/B-zMy1oOdxwK51dIYRAwuV9Dvj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6c83e7-a352-4e21-a731-157b5ad6ab7b/1/v2KLk2YekFiHNZ_I6aGIgHXbPNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.84.0/22
Signature Algorithm: sha256WithRSAEncryption
30:b0:5c:44:63:8c:05:bd:7c:83:61:db:2c:2f:96:81:f9:35:
89:a6:22:96:40:eb:48:51:29:28:27:e3:fb:f5:df:bd:c4:57:
85:83:ad:8b:46:b8:3d:ab:de:a4:65:1a:5e:7d:1d:d9:b4:e6:
1f:2e:47:fa:3a:8d:7d:39:5b:21:c0:3a:7e:57:f3:cf:85:4d:
84:9c:88:b2:f3:bb:a2:26:fd:c4:88:b5:4b:8e:9b:a5:05:17:
c3:94:f5:c1:61:a4:7b:11:6a:61:8b:8f:f5:74:6f:29:a4:ad:
9f:11:96:3d:7d:81:ac:b5:b5:29:5b:2d:f3:26:1d:07:e6:df:
33:d6:5f:96:08:8d:19:bb:2b:d9:e4:a8:a2:96:b6:94:1c:45:
d0:13:8d:f2:45:b9:fc:d7:28:8a:de:74:b1:5d:f4:8a:ef:51:
25:0d:0e:aa:10:e6:ae:0f:be:40:e9:85:06:0e:e7:0d:91:bd:
bf:13:82:18:ff:50:40:8e:64:ae:7d:a0:07:ee:4c:55:0b:9a:
c5:17:bc:c3:59:95:07:bc:73:07:1e:44:7e:c5:74:e8:01:39:
bc:61:ba:00:df:10:06:3e:09:54:0a:d9:d4:7e:8f:95:1f:44:
74:d8:8f:69:c6:d3:d0:2d:50:8b:ea:0d:4d:90:6c:af:5c:23:
db:8b:b7:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:10 2024 by rpki-client on console-ams.rpki-client.org