Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/4cda47-384a-4354-bcb4-bef35605bcd4/1/Un395kN3vBEBwHLbz2X-ZuxFBr4.roa
File: Un395kN3vBEBwHLbz2X-ZuxFBr4.roa (raw, json)
Hash identifier: 7e6XCmR3leunhI9N4v0Te9Hhgi6bFEDNYyd5IvoZimk=
Subject key identifier: 52:7D:FD:E6:43:77:BC:11:01:C0:72:DB:CF:65:FE:66:EC:45:06:BE
Certificate issuer: /CN=3ec6fd91d2a4365d3dc16721fedf692172bb3073
Certificate serial: 03CE4C13
Authority key identifier: 3E:C6:FD:91:D2:A4:36:5D:3D:C1:67:21:FE:DF:69:21:72:BB:30:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Psb9kdKkNl09wWch_t9pIXK7MHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/4cda47-384a-4354-bcb4-bef35605bcd4/1/Un395kN3vBEBwHLbz2X-ZuxFBr4.roa
Signing time: Sat 01 Jan 2022 02:53:37 +0000
ROA not before: Sat 01 Jan 2022 02:53:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44322
IP address blocks: 185.162.12.0/22 maxlen: 22
2a07:c940::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63851539 (0x3ce4c13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec6fd91d2a4365d3dc16721fedf692172bb3073
Validity
Not Before: Jan 1 02:53:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=527dfde64377bc1101c072dbcf65fe66ec4506be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:24:13:ce:02:59:f6:a5:b0:1d:76:6c:5c:2c:
70:e3:bb:64:45:ce:bd:93:b6:31:c9:59:18:21:4d:
7f:45:87:6e:b7:4e:99:ed:14:62:c9:95:af:c2:6c:
b0:51:00:84:af:4b:9a:78:8d:d6:d2:af:db:98:6f:
9a:77:38:d9:4a:f1:e5:4c:c9:54:32:02:76:74:18:
ea:8c:3e:e0:dd:7e:7f:fa:24:72:c3:f8:0f:30:cc:
a6:fb:fa:d7:bc:b5:93:bc:0a:8d:f3:5c:dc:70:b5:
37:86:48:0f:87:63:0e:b4:35:c9:03:7a:70:07:16:
0c:e5:0e:83:f3:3c:50:15:b5:4c:9d:47:7d:78:85:
fb:c9:7e:fa:62:5e:c8:06:86:79:ed:08:f3:de:ff:
b7:49:77:92:b0:2f:77:a6:28:2e:34:89:e3:e4:25:
79:81:80:c5:dd:8b:4a:27:10:96:60:79:1f:69:d7:
67:ce:6c:bd:89:3f:ab:ef:8c:31:13:ea:c8:22:83:
9e:6c:7d:7d:18:4a:39:8c:01:47:79:68:ac:f4:73:
b1:3b:40:44:15:86:20:f5:5d:bd:b4:ab:0f:7a:6a:
6f:77:8c:80:09:c1:e8:ca:f4:5d:a6:bd:94:42:c3:
8f:d6:32:8e:18:f5:db:b5:8e:8c:c8:9c:5e:25:1c:
02:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7D:FD:E6:43:77:BC:11:01:C0:72:DB:CF:65:FE:66:EC:45:06:BE
X509v3 Authority Key Identifier:
keyid:3E:C6:FD:91:D2:A4:36:5D:3D:C1:67:21:FE:DF:69:21:72:BB:30:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Psb9kdKkNl09wWch_t9pIXK7MHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/4cda47-384a-4354-bcb4-bef35605bcd4/1/Un395kN3vBEBwHLbz2X-ZuxFBr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/4cda47-384a-4354-bcb4-bef35605bcd4/1/Psb9kdKkNl09wWch_t9pIXK7MHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.12.0/22
IPv6:
2a07:c940::/29
Signature Algorithm: sha256WithRSAEncryption
a9:74:ed:89:c1:33:34:b6:69:ef:ad:2b:02:d0:2d:13:55:0a:
b3:6a:80:44:89:60:bf:c8:ac:35:c1:18:16:5d:30:0f:7b:48:
eb:a2:58:81:f2:4b:bc:37:54:2d:66:96:a8:b5:6d:2e:41:4c:
f5:93:82:ed:6c:a6:3c:8b:c3:84:85:bd:76:09:26:6d:2d:e8:
6e:83:f6:55:f1:06:66:e3:cd:05:19:06:c3:36:0a:f2:f0:1d:
c9:0e:2c:33:7a:47:6e:0d:97:9d:51:8a:a5:13:43:b0:e5:47:
46:85:b9:4f:df:bb:25:d5:db:aa:75:34:71:4d:5e:3b:d9:ed:
da:95:2d:39:71:4a:af:49:8e:3a:c7:5c:e3:4f:6c:7c:47:33:
42:ea:1f:ba:ae:e6:25:2d:ec:64:07:b6:6c:7a:30:55:8b:d9:
62:0a:a2:9a:27:9e:3a:64:70:f1:08:5b:45:f3:93:07:e4:f4:
90:7d:8f:49:70:2a:3b:ad:4a:b7:37:5c:15:20:c0:23:86:cb:
96:95:dc:4a:ce:0b:2d:92:24:66:13:d7:63:11:ed:67:40:3f:
97:a4:8f:ac:d0:84:86:4d:c9:38:c0:ac:db:4e:05:1e:a7:e1:
6a:aa:bf:83:cb:94:6d:56:42:be:8f:3b:19:c7:36:7c:0f:c4:
08:a5:d9:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:44 2024 by rpki-client on console-ams.rpki-client.org