Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/CUamG0z63yuVlpwg42mgqkVO6Is.roa
File: CUamG0z63yuVlpwg42mgqkVO6Is.roa (raw, json)
Hash identifier: eAI27UWxsN3+q5/kQCrxU21KofB4d9hpVASEZWNL/bg=
Subject key identifier: 09:46:A6:1B:4C:FA:DF:2B:95:96:9C:20:E3:69:A0:AA:45:4E:E8:8B
Certificate issuer: /CN=61d39d74b17e691dd1b05221c6098caf5ee93a36
Certificate serial: 01E3574D
Authority key identifier: 61:D3:9D:74:B1:7E:69:1D:D1:B0:52:21:C6:09:8C:AF:5E:E9:3A:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YdOddLF-aR3RsFIhxgmMr17pOjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/CUamG0z63yuVlpwg42mgqkVO6Is.roa
Signing time: Sat 01 Jan 2022 02:55:09 +0000
ROA not before: Sat 01 Jan 2022 02:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212253
IP address blocks: 185.222.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31676237 (0x1e3574d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61d39d74b17e691dd1b05221c6098caf5ee93a36
Validity
Not Before: Jan 1 02:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0946a61b4cfadf2b95969c20e369a0aa454ee88b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:08:15:c5:d7:a6:4f:1f:05:ab:4a:e5:84:b9:
17:6e:6a:08:73:de:fb:11:4c:d4:20:94:e1:73:8d:
0a:53:72:d8:31:92:8f:63:2e:10:e9:3f:08:26:48:
0f:ac:85:5c:51:8d:a0:40:7a:00:94:79:78:f2:00:
85:3e:d8:be:14:8e:08:ee:f3:b8:59:97:24:25:65:
f8:e4:d8:3d:b2:cd:fb:0a:25:88:a7:d5:b1:5b:3c:
2c:de:96:d8:16:7f:cb:07:81:c9:91:36:b6:30:b7:
b2:9a:b6:dc:f9:c3:ce:4b:d7:5a:3e:25:01:26:c8:
c3:55:c2:99:37:f1:02:07:1c:f8:25:23:39:67:c4:
64:d6:e2:56:f8:01:03:6c:aa:36:a8:50:08:2c:13:
f2:1c:47:d0:be:0d:b0:29:98:24:de:c3:88:9e:23:
cb:9e:46:0f:78:2c:a3:4c:2c:7e:25:bf:0d:6a:f3:
f9:6b:cf:87:5b:04:fa:b4:b5:fd:6d:65:ba:5f:6b:
14:1a:2b:af:1f:ca:d3:a8:5c:91:6d:6d:8a:af:ac:
a4:65:dd:6d:b0:48:06:17:68:72:c9:ff:d7:82:24:
a6:7c:0c:c9:b5:e6:34:6e:04:50:be:4b:3b:d4:6b:
82:25:e3:6f:c9:de:21:3b:46:9f:f7:9c:ec:23:3e:
9f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:46:A6:1B:4C:FA:DF:2B:95:96:9C:20:E3:69:A0:AA:45:4E:E8:8B
X509v3 Authority Key Identifier:
keyid:61:D3:9D:74:B1:7E:69:1D:D1:B0:52:21:C6:09:8C:AF:5E:E9:3A:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YdOddLF-aR3RsFIhxgmMr17pOjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/CUamG0z63yuVlpwg42mgqkVO6Is.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/YdOddLF-aR3RsFIhxgmMr17pOjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.22.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:fa:ad:0c:22:06:8d:97:07:51:4c:de:6f:94:fd:7f:d9:5d:
01:aa:da:01:34:37:1a:23:1e:b7:7d:8f:03:51:fc:08:f4:4c:
d4:7a:af:e9:78:71:fc:0b:3a:01:d6:e4:e4:45:86:57:0d:f1:
04:c9:47:2f:ee:44:01:fb:73:88:60:00:d9:45:48:92:dd:79:
9f:67:01:61:59:cc:6e:47:a7:9a:48:47:19:b3:31:66:a8:d8:
d9:8d:75:27:42:cb:01:23:a1:f8:28:5c:cb:cd:22:37:ee:a5:
64:af:4f:26:33:26:45:80:da:d7:f7:22:2d:78:70:a7:79:37:
5e:cc:d0:53:1b:a4:1f:6d:98:2c:5e:bc:ed:72:de:27:b3:84:
79:e8:7b:e1:6f:15:7c:6d:93:7f:76:e9:1f:cb:85:a5:52:59:
ee:b5:43:60:e6:f4:74:9c:14:ca:80:13:37:e7:a4:16:7a:c0:
4e:f5:a4:c3:0c:cc:9f:6a:e6:9b:f1:99:00:01:60:e0:a5:bb:
ea:69:6a:01:76:51:8f:85:83:59:17:89:95:21:ec:33:0c:6f:
3d:82:e9:51:72:2f:cb:93:37:31:96:50:cb:e8:04:f8:37:56:
41:60:5d:06:48:30:a3:9f:0d:18:c9:90:47:4b:25:eb:4c:00:
02:f2:b6:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:22 2024 by rpki-client on console-ams.rpki-client.org