Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/AiL02dWZPHCH4OsUGvI-DXqOVQQ.roa
File: AiL02dWZPHCH4OsUGvI-DXqOVQQ.roa (raw, json)
Hash identifier: mdBNxBGtwqKN1CW01YPvnMeBnReqJ/8ugwU07tRwQRI=
Subject key identifier: 02:22:F4:D9:D5:99:3C:70:87:E0:EB:14:1A:F2:3E:0D:7A:8E:55:04
Certificate issuer: /CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Certificate serial: 4D1343
Authority key identifier: 60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/AiL02dWZPHCH4OsUGvI-DXqOVQQ.roa
Signing time: Wed 18 May 2022 06:47:29 +0000
ROA not before: Wed 18 May 2022 06:47:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60173
IP address blocks: 185.34.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5051203 (0x4d1343)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Validity
Not Before: May 18 06:47:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0222f4d9d5993c7087e0eb141af23e0d7a8e5504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:71:52:f7:e8:20:ea:2e:00:b6:f6:4d:cc:cf:
cc:7a:a8:4f:b6:bb:ec:1f:4e:18:c0:0e:23:5b:7a:
b6:43:c9:53:5e:4c:41:08:33:f2:6d:cb:f7:49:e0:
55:34:32:06:8e:2b:e8:33:b4:a9:0d:80:18:68:02:
d7:73:f9:e7:88:24:b8:32:e7:6c:e2:53:48:7d:cf:
c8:95:f7:f5:50:df:f4:ed:e2:90:cd:2b:c6:2f:8b:
72:d0:d7:8e:8a:28:da:96:7c:39:32:ea:24:31:d3:
a1:93:d6:8d:71:c0:24:18:d9:0d:d8:5f:a6:91:e2:
8b:9f:f0:91:f6:ea:3b:a5:bc:56:f5:96:59:a8:62:
f2:86:4d:18:b0:9c:10:ad:15:46:69:e9:5e:ef:be:
35:5d:e5:f8:f8:19:a7:6a:7f:6e:81:f0:42:1c:0e:
0f:7f:1e:9b:9d:69:37:bd:19:f2:f8:4a:1a:13:27:
c2:43:5c:5d:40:64:52:cb:94:06:36:b7:e0:31:72:
99:57:7e:33:b6:38:61:5b:a3:20:9b:a7:4b:aa:5f:
ab:8a:32:b4:44:69:ac:30:15:d3:18:8c:81:54:98:
4c:76:f5:42:c2:dd:16:19:5c:7d:13:90:94:07:a3:
a9:af:f5:fb:f1:a7:03:86:e6:6b:a9:3f:c4:23:4f:
91:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:22:F4:D9:D5:99:3C:70:87:E0:EB:14:1A:F2:3E:0D:7A:8E:55:04
X509v3 Authority Key Identifier:
keyid:60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/AiL02dWZPHCH4OsUGvI-DXqOVQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.224.0/22
Signature Algorithm: sha256WithRSAEncryption
58:13:e6:69:a4:ac:32:b5:a5:9e:19:b5:e7:3e:b6:bb:e0:74:
c6:fe:1b:d9:93:31:74:b8:82:b6:79:ff:7d:76:2c:c6:5e:6e:
49:45:f6:a7:49:d5:dd:c3:13:0f:81:d2:12:61:b0:1c:89:51:
01:eb:4d:a6:cf:b6:42:be:98:2c:9b:ae:15:90:70:21:d5:ef:
64:58:46:5f:92:df:47:16:a1:20:11:b7:81:bc:13:f0:86:b5:
8b:3d:a3:6a:17:19:e3:43:c6:25:1d:e4:36:2e:72:69:7c:07:
69:85:fc:40:60:b1:c9:c0:80:57:e3:45:92:dd:f8:a2:55:52:
b4:bf:a7:e4:f2:30:46:50:57:7a:83:a6:9b:a3:f8:15:38:af:
76:4c:b2:85:48:ac:0e:60:bc:29:d0:64:9e:80:5c:9a:85:4d:
ea:4f:98:a1:a3:f9:de:b5:f1:19:23:a4:cc:15:a6:a4:aa:4b:
87:37:d2:c4:8c:2f:6e:05:4f:9d:a9:fb:90:2d:59:5c:9e:b8:
ce:bb:6d:cc:3e:45:94:47:a5:db:1e:b8:6a:05:32:bf:2a:4c:
27:39:f4:74:57:e2:51:87:f9:ec:af:dd:83:d6:56:b2:b2:33:
29:5a:35:c9:d1:eb:59:69:8e:34:2d:0f:5a:a7:35:88:7a:6e:
57:62:ce:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:32 2024 by rpki-client on console-ams.rpki-client.org