Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/0689ea-cdd9-4790-9f9b-c0f9d087fc10/1/ADbX1zjrCzesApcMyrHzJc11gR4.roa
File: ADbX1zjrCzesApcMyrHzJc11gR4.roa (raw, json)
Hash identifier: w00vl0mnyjl608/+GdHHzg91I8yINM9BQ98KN5qaDNk=
Subject key identifier: 00:36:D7:D7:38:EB:0B:37:AC:02:97:0C:CA:B1:F3:25:CD:75:81:1E
Certificate issuer: /CN=e443fc203f706f9731412761b27a1a4b395cfc1e
Certificate serial: 058C5F8E
Authority key identifier: E4:43:FC:20:3F:70:6F:97:31:41:27:61:B2:7A:1A:4B:39:5C:FC:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5EP8ID9wb5cxQSdhsnoaSzlc_B4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/0689ea-cdd9-4790-9f9b-c0f9d087fc10/1/ADbX1zjrCzesApcMyrHzJc11gR4.roa
Signing time: Sat 01 Jan 2022 08:57:50 +0000
ROA not before: Sat 01 Jan 2022 08:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203646
IP address blocks: 185.128.72.0/22 maxlen: 22
2a03:9aa0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93085582 (0x58c5f8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e443fc203f706f9731412761b27a1a4b395cfc1e
Validity
Not Before: Jan 1 08:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0036d7d738eb0b37ac02970ccab1f325cd75811e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:03:f2:79:37:22:72:90:de:b8:7a:67:62:45:
c2:49:6d:dd:6a:09:f7:bf:61:cb:5a:73:2a:d8:b5:
0f:1c:b1:5e:f7:11:7c:fa:c3:6c:e7:38:fe:4e:d4:
bb:f9:b0:3e:0c:88:7e:c7:04:de:de:ba:c2:e3:b3:
89:70:23:f3:0d:82:36:e2:e0:34:f7:1e:7c:c7:2c:
ef:dc:47:fb:4b:76:42:06:6a:66:c9:4e:00:08:e6:
64:ae:5a:de:4b:37:9f:08:28:27:3d:09:ea:63:e5:
77:b7:b3:05:c5:5f:87:61:58:19:e4:45:49:fc:5a:
59:d8:d6:4d:95:9b:c0:ca:3d:6a:39:b7:17:2f:fd:
3f:4b:52:11:31:db:bb:06:92:ab:95:46:dd:8e:6e:
ac:d3:98:a8:2c:01:18:92:11:ea:d3:9b:18:93:66:
80:60:53:a4:98:d8:a3:35:3f:c0:35:08:53:7f:8c:
3f:7e:b2:93:41:19:c9:03:b5:c1:8b:cc:78:da:36:
ea:8c:4b:68:a6:4d:57:19:ff:a3:0c:53:8b:b9:d6:
42:33:75:01:e8:70:7a:3a:90:b4:be:b7:78:63:d1:
ff:58:10:40:94:61:41:9a:ed:7f:bc:a3:c4:d5:97:
5c:6f:8f:6d:a5:04:f8:22:44:ba:5d:f4:2c:2a:4a:
b2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:36:D7:D7:38:EB:0B:37:AC:02:97:0C:CA:B1:F3:25:CD:75:81:1E
X509v3 Authority Key Identifier:
keyid:E4:43:FC:20:3F:70:6F:97:31:41:27:61:B2:7A:1A:4B:39:5C:FC:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5EP8ID9wb5cxQSdhsnoaSzlc_B4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/0689ea-cdd9-4790-9f9b-c0f9d087fc10/1/ADbX1zjrCzesApcMyrHzJc11gR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/0689ea-cdd9-4790-9f9b-c0f9d087fc10/1/5EP8ID9wb5cxQSdhsnoaSzlc_B4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.72.0/22
IPv6:
2a03:9aa0::/32
Signature Algorithm: sha256WithRSAEncryption
9f:9d:b3:d8:8f:54:e3:12:45:32:17:ae:24:d1:ca:9d:fc:9a:
29:8d:bf:34:5a:c6:ed:15:36:01:a2:4b:79:b3:06:a9:c2:d7:
87:02:ca:0c:8c:c0:c6:74:cc:53:83:fc:05:2c:b6:5d:35:a2:
df:60:c0:c3:b0:3d:7b:9b:43:4e:e4:cc:46:0e:6c:27:94:43:
30:f5:ac:65:94:8b:f4:0f:4c:12:3b:7e:43:44:ef:9f:9c:47:
7f:65:8d:28:91:80:d3:bd:bb:4f:a9:64:ea:5f:0f:84:1f:8d:
4c:77:10:f6:51:cd:bf:a4:31:ee:c1:1c:a5:ee:cf:81:c9:a9:
a4:2f:e7:a7:15:8d:dc:d0:da:d3:8f:5b:db:03:08:81:7b:75:
a3:d4:89:bc:fe:bb:bf:1f:f2:cb:9e:2e:50:0e:bc:28:6f:94:
6c:d5:00:d0:03:72:e6:94:84:6d:c1:2a:b8:4c:03:7b:ca:25:
15:87:ca:68:3d:2a:fb:6e:69:54:43:11:f7:f9:0c:9f:2a:db:
89:d1:82:fc:46:26:84:81:d4:d2:46:ad:06:b8:c1:1e:96:37:
98:bb:f4:62:c3:65:b3:75:00:83:75:97:38:10:4b:e3:8b:3f:
0d:07:ff:3b:01:b8:2a:35:e9:91:7f:e3:07:4a:52:d9:60:7c:
ec:29:e1:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:09 2024 by rpki-client on console-ams.rpki-client.org