Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/86b402-e43b-4b7e-98ee-b6b74cb299b0/1/AVA125_Mna1gQs_DJfvE589QmwE.roa
File: AVA125_Mna1gQs_DJfvE589QmwE.roa (raw, json)
Hash identifier: QEQg6C3jsXacqXmN6Oq7md1ugZU60S44LQIdlpXaonE=
Subject key identifier: 01:50:35:DB:9F:CC:9D:AD:60:42:CF:C3:25:FB:C4:E7:CF:50:9B:01
Certificate issuer: /CN=768ef9c104be22284bf7b2756d2a8173946a386e
Certificate serial: 19AC5E42
Authority key identifier: 76:8E:F9:C1:04:BE:22:28:4B:F7:B2:75:6D:2A:81:73:94:6A:38:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do75wQS-IihL97J1bSqBc5RqOG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/86b402-e43b-4b7e-98ee-b6b74cb299b0/1/AVA125_Mna1gQs_DJfvE589QmwE.roa
Signing time: Sat 01 Jan 2022 00:58:59 +0000
ROA not before: Sat 01 Jan 2022 00:58:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62286
IP address blocks: 185.40.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 430726722 (0x19ac5e42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768ef9c104be22284bf7b2756d2a8173946a386e
Validity
Not Before: Jan 1 00:58:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=015035db9fcc9dad6042cfc325fbc4e7cf509b01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e7:ad:da:68:e3:4a:ec:ec:de:cf:e0:17:5e:
e9:79:0a:23:e9:32:0e:fa:3a:29:0b:5e:c9:bf:04:
05:96:60:bc:32:bc:e7:38:1e:bb:bf:cd:38:30:58:
32:87:e0:92:af:27:74:5a:cd:d0:43:63:2d:56:a2:
00:0c:5c:88:b9:b7:a6:c3:d5:dc:07:08:17:e4:87:
a5:f0:8c:e0:89:f0:af:b9:27:5d:32:bd:ec:d9:a1:
66:86:c7:9b:d9:08:fd:71:8b:51:cc:e7:96:85:24:
e9:fa:a0:34:b0:f1:34:d9:2f:3d:e5:fe:78:0e:f4:
c9:84:aa:d3:2e:38:61:6e:b6:e5:19:e0:4a:ba:d4:
ba:dd:4f:46:db:cc:d1:b1:f6:be:e0:5e:86:ab:c3:
02:36:bd:67:d0:80:ed:e8:ab:0c:f9:67:a6:4a:bb:
a1:9e:41:cd:d1:de:c0:df:f2:2b:2d:7a:74:f3:e5:
cd:05:a2:ec:ec:a0:f1:58:5c:8a:b2:ed:9e:9c:c7:
82:37:ce:29:8a:b7:bc:69:15:a9:53:8a:77:bd:cf:
23:3d:1b:d0:d2:93:ce:14:32:e8:79:5b:64:cc:84:
68:26:05:17:36:3a:87:f5:5c:21:f4:f8:75:48:77:
18:60:44:14:c1:b8:f6:6b:b0:c0:98:fd:bd:3d:bd:
ab:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:50:35:DB:9F:CC:9D:AD:60:42:CF:C3:25:FB:C4:E7:CF:50:9B:01
X509v3 Authority Key Identifier:
keyid:76:8E:F9:C1:04:BE:22:28:4B:F7:B2:75:6D:2A:81:73:94:6A:38:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do75wQS-IihL97J1bSqBc5RqOG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/86b402-e43b-4b7e-98ee-b6b74cb299b0/1/AVA125_Mna1gQs_DJfvE589QmwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/86b402-e43b-4b7e-98ee-b6b74cb299b0/1/do75wQS-IihL97J1bSqBc5RqOG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.40.0/22
Signature Algorithm: sha256WithRSAEncryption
04:54:e5:4b:22:99:20:e6:36:7f:cb:01:95:98:c8:8f:6f:c6:
37:e3:c7:6a:19:9d:2d:59:10:b7:df:36:ae:d5:cb:b4:43:f7:
0a:1c:d5:a6:a9:32:42:f5:92:3b:82:3e:65:1a:d4:ee:6c:e2:
43:fc:3b:d3:16:c4:17:84:b1:c0:3a:9e:36:62:da:07:fc:c7:
29:88:f9:13:c9:b8:4a:7a:48:e9:d9:58:3e:f5:72:03:f9:82:
9c:24:40:c9:41:3c:04:3b:0e:6a:a0:b6:88:c9:ad:ab:07:f2:
91:e5:2d:ea:e7:5f:91:9a:51:7e:86:67:77:a9:a1:52:b2:85:
9a:a0:0e:e9:90:b1:38:64:be:e8:a8:1b:0d:47:7d:b0:96:c2:
99:94:9a:ce:9f:3c:ca:4a:f9:69:69:d5:8a:6f:4d:de:1c:e6:
8a:e2:28:03:28:ad:7f:ad:1b:1a:7a:ba:0a:b0:cd:c3:c3:e1:
b0:aa:6c:a9:3d:b1:38:b0:e6:50:36:ba:50:d4:07:93:7c:04:
e1:5b:e0:23:e2:6b:48:c6:84:b2:23:45:13:d4:69:c1:ea:78:
d9:63:96:a0:a0:96:d7:ef:0e:1e:5e:6a:f2:74:5e:f8:b6:e8:
a0:90:1e:4e:fe:10:f6:d0:17:b7:b1:da:c6:a0:20:da:f7:d4:
e3:ef:72:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:46 2024 by rpki-client on console-fra.rpki-client.org