Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/fVg9lMet_a8teDS4zGDfQEvTQYI.roa
File: fVg9lMet_a8teDS4zGDfQEvTQYI.roa (raw, json)
Hash identifier: CdmYPnhetZdZrL0gcH3QUgz14fqK2iq9sxP5qkuwF4k=
Subject key identifier: 7D:58:3D:94:C7:AD:FD:AF:2D:78:34:B8:CC:60:DF:40:4B:D3:41:82
Certificate issuer: /CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Certificate serial: 0EEEB221
Authority key identifier: B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/fVg9lMet_a8teDS4zGDfQEvTQYI.roa
Signing time: Sat 01 Jan 2022 15:04:41 +0000
ROA not before: Sat 01 Jan 2022 15:04:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207034
IP address blocks: 185.168.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250524193 (0xeeeb221)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Validity
Not Before: Jan 1 15:04:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d583d94c7adfdaf2d7834b8cc60df404bd34182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:23:e5:0c:fb:bf:be:9f:42:f6:72:4a:a6:67:
30:0f:49:31:93:a7:60:65:d1:97:50:68:9c:03:a5:
6f:90:de:64:e2:cb:eb:4f:49:f3:26:78:a7:a5:6c:
5c:bd:96:15:3e:ae:2d:15:87:90:65:97:8e:60:c6:
1b:16:13:a3:a7:e1:5e:5e:7c:e7:f0:41:d5:b5:d2:
c3:c1:6e:35:09:3f:ee:26:5d:03:72:10:3f:07:0c:
68:59:07:89:17:91:ea:eb:64:44:cb:89:c6:fa:24:
b9:ad:79:34:65:fd:f2:a5:b7:28:8a:ce:c4:09:55:
b7:d5:dd:5c:3d:7c:52:02:4f:26:4f:56:0e:b9:04:
29:7e:6f:16:e6:57:8b:8b:4b:16:fe:b5:75:b3:16:
16:2b:a4:06:49:b7:9a:47:86:d9:f2:e5:5e:12:ba:
72:0b:45:3f:86:5b:df:31:ed:d8:46:d3:21:7f:bd:
27:05:45:96:9a:24:8a:f2:63:a3:e9:e7:1b:07:38:
73:0a:1d:33:2a:ae:8c:2d:c4:e6:4a:28:93:a6:64:
f8:fb:7e:b0:46:02:60:03:df:b7:e7:fc:8e:a3:72:
dc:60:60:b0:6e:39:71:b7:90:61:62:9e:6b:d1:62:
3b:7f:06:d5:16:ef:30:fc:be:bd:3e:dd:0e:a4:56:
4a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:58:3D:94:C7:AD:FD:AF:2D:78:34:B8:CC:60:DF:40:4B:D3:41:82
X509v3 Authority Key Identifier:
keyid:B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/fVg9lMet_a8teDS4zGDfQEvTQYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/s8UbDAY8_BaUP8mkfiyAWZD26q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.36.0/24
Signature Algorithm: sha256WithRSAEncryption
63:8a:b8:08:5d:db:77:6a:dc:eb:73:d9:23:c8:78:e7:3a:f5:
08:f3:14:b8:7a:2e:d6:30:9b:71:4e:cb:61:d6:a9:d1:64:49:
51:a4:7e:5f:cd:a6:8f:b5:b2:47:cc:8f:4c:da:b8:da:95:bb:
12:03:9a:41:d6:fc:40:57:76:a7:b2:ec:d9:31:c4:f0:bd:d4:
eb:1d:07:a5:87:3b:35:65:34:64:96:90:a9:ed:64:54:d2:06:
05:a1:86:4b:f2:d3:99:6c:9a:d4:7a:10:f3:7a:0b:f7:ea:22:
cf:1d:6b:1a:02:1a:83:f0:b9:8b:12:49:be:04:96:6d:df:fc:
4f:30:80:2d:34:75:b5:7a:45:52:8d:eb:79:98:85:39:7f:38:
bf:e3:00:62:be:a2:09:c2:39:92:22:80:9c:8d:4b:74:31:64:
08:f8:27:f8:70:ff:81:78:51:06:7b:8d:49:92:f3:00:aa:42:
95:af:4d:72:5e:b4:81:da:db:b8:3d:33:5b:6a:80:7e:bf:76:
0a:8a:b6:80:c8:f0:5b:de:ee:21:7b:f8:07:be:a9:83:16:a3:
d4:e7:19:79:19:65:36:57:8e:04:11:58:0c:90:ca:ac:45:4c:
52:f6:c0:32:20:e5:8f:77:25:16:7c:81:5f:6d:ea:60:a6:fb:
e5:d1:4e:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:49 2024 by rpki-client on console-ams.rpki-client.org