Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/8b43cb-f209-4f22-930d-758ca4d48bc2/1/6mDYW9wzeVifVXptvMF4F7qEOSs.roa
File: 6mDYW9wzeVifVXptvMF4F7qEOSs.roa (raw, json)
Hash identifier: ely+UaNa1EimB9NYsBDFe+Y3NpSviw2EMDR/mIUoc2o=
Subject key identifier: EA:60:D8:5B:DC:33:79:58:9F:55:7A:6D:BC:C1:78:17:BA:84:39:2B
Certificate issuer: /CN=7111859377ead6f44f940eb8d31c3f3becc53b05
Certificate serial: 0258D825
Authority key identifier: 71:11:85:93:77:EA:D6:F4:4F:94:0E:B8:D3:1C:3F:3B:EC:C5:3B:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRGFk3fq1vRPlA640xw_O-zFOwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/8b43cb-f209-4f22-930d-758ca4d48bc2/1/6mDYW9wzeVifVXptvMF4F7qEOSs.roa
Signing time: Sat 01 Jan 2022 04:56:21 +0000
ROA not before: Sat 01 Jan 2022 04:56:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211918
IP address blocks: 185.235.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39376933 (0x258d825)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7111859377ead6f44f940eb8d31c3f3becc53b05
Validity
Not Before: Jan 1 04:56:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea60d85bdc3379589f557a6dbcc17817ba84392b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:73:92:63:22:8e:dd:5a:bb:56:7b:4c:70:f8:
01:b0:2f:d5:2e:40:cc:88:d8:95:69:b8:fc:97:8b:
24:84:e0:fe:72:0a:a6:99:72:56:76:f4:e8:79:24:
5e:90:5d:7b:4c:b3:d9:fe:3f:f1:e8:aa:33:b0:14:
f2:ac:28:b5:6e:e6:83:38:cb:91:c1:7e:41:5b:36:
59:71:88:bb:5d:8e:d2:3b:07:cf:06:2b:94:d7:f8:
af:67:31:b1:b3:2b:e6:68:c0:3b:11:17:b3:7c:b7:
2f:b1:33:ae:07:55:58:fb:fa:3e:c2:e3:86:59:1f:
7a:06:06:4e:42:45:5a:ff:c2:49:af:38:26:e6:69:
a5:73:31:73:57:73:de:56:4c:b8:80:f8:ed:ef:4b:
85:e8:2d:a0:e3:85:f3:75:4c:c5:ca:20:6d:40:74:
ca:e8:fd:3f:31:29:df:7e:de:1f:54:15:e2:14:b4:
f3:33:82:33:fd:9c:8a:6d:9f:2e:e9:0f:09:61:88:
2f:40:2c:08:d7:27:36:1b:cc:f2:31:88:4f:57:fb:
03:dd:ff:0c:b1:f6:b0:81:13:e6:5f:30:67:99:ff:
3b:a1:28:87:a5:b2:e1:42:99:ba:80:3f:53:b7:26:
b4:41:33:cb:c5:05:5e:5e:15:df:3c:32:ef:c5:6c:
af:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:60:D8:5B:DC:33:79:58:9F:55:7A:6D:BC:C1:78:17:BA:84:39:2B
X509v3 Authority Key Identifier:
keyid:71:11:85:93:77:EA:D6:F4:4F:94:0E:B8:D3:1C:3F:3B:EC:C5:3B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRGFk3fq1vRPlA640xw_O-zFOwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8b43cb-f209-4f22-930d-758ca4d48bc2/1/6mDYW9wzeVifVXptvMF4F7qEOSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8b43cb-f209-4f22-930d-758ca4d48bc2/1/cRGFk3fq1vRPlA640xw_O-zFOwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.140.0/24
Signature Algorithm: sha256WithRSAEncryption
75:a6:b0:b6:6e:62:1c:c2:f1:5b:6e:65:cd:b3:b2:bc:5b:c0:
02:f7:15:8c:21:83:25:21:f9:11:46:8c:b1:5a:c4:bb:29:25:
ca:67:d1:96:d0:f7:2c:58:a5:51:d5:32:56:5e:be:83:fc:8e:
b2:28:00:1f:55:d0:8a:54:44:fb:d8:99:d4:89:66:e1:69:ad:
ec:ea:a2:30:03:bb:f1:ae:ac:ef:3b:64:1f:67:bd:0a:72:82:
ab:33:db:b0:8c:b5:3e:d1:c4:d5:e1:3d:cd:45:39:6f:52:e0:
3c:8c:c1:01:69:b6:6f:59:cd:5d:b0:90:0c:db:8d:e4:b9:81:
33:30:49:5c:ca:fd:02:67:5e:ac:a2:07:c5:d2:f2:00:4c:bc:
d0:be:d0:7d:1b:9e:07:02:2b:96:a0:07:f5:80:bd:30:5d:7f:
56:71:8b:dd:50:c0:17:8e:9b:b7:14:ec:fe:56:a2:22:3b:d2:
bc:27:1a:b5:c2:62:b4:5a:96:08:11:cb:97:ee:ac:32:75:10:
b4:dd:c6:7b:fc:63:65:2f:d1:56:5a:c3:b8:c2:cc:53:87:8d:
19:4d:fd:b6:52:cf:bf:76:cc:ac:18:8c:80:60:07:80:52:ad:
61:e9:97:eb:bd:4f:17:a7:51:e6:1f:ed:3e:ef:bf:83:97:8d:
87:39:ca:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:45 2024 by rpki-client on console-ams.rpki-client.org