Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/6f4940-5abc-49b4-9747-e08be0edaf76/1/3LunQrSq61WAtmeTXZghWgQhXUY.roa
File: 3LunQrSq61WAtmeTXZghWgQhXUY.roa (raw, json)
Hash identifier: WfYbIIvVh5PtryvUCzdfucDQfWfbXbA2pORjJB+3ykQ=
Subject key identifier: DC:BB:A7:42:B4:AA:EB:55:80:B6:67:93:5D:98:21:5A:04:21:5D:46
Certificate issuer: /CN=9b340699c8ed970a8c9ed8c162088f2067c33250
Certificate serial: 0AE87413
Authority key identifier: 9B:34:06:99:C8:ED:97:0A:8C:9E:D8:C1:62:08:8F:20:67:C3:32:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mzQGmcjtlwqMntjBYgiPIGfDMlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/6f4940-5abc-49b4-9747-e08be0edaf76/1/3LunQrSq61WAtmeTXZghWgQhXUY.roa
Signing time: Sat 01 Jan 2022 01:51:46 +0000
ROA not before: Sat 01 Jan 2022 01:51:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2116
IP address blocks: 185.85.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183006227 (0xae87413)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b340699c8ed970a8c9ed8c162088f2067c33250
Validity
Not Before: Jan 1 01:51:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcbba742b4aaeb5580b667935d98215a04215d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3f:a7:cd:92:ef:dc:6e:74:89:2b:3f:1a:9f:
52:8a:72:4d:53:65:64:30:b2:a9:23:4f:ed:f4:72:
9a:49:9c:25:06:09:5d:81:0f:d8:05:5f:f5:e5:cd:
e9:5f:08:17:74:92:21:ef:a5:f9:14:ae:0b:50:3d:
ac:a2:d9:ba:77:df:87:7c:d7:5c:1d:37:53:a3:54:
c8:d2:05:fb:9a:71:4a:35:12:8a:81:8e:20:a4:e0:
3e:78:ea:7b:bd:15:73:00:fe:40:a8:e3:66:fc:bd:
00:8e:67:b0:c0:29:4f:fa:7f:50:c9:9c:d6:34:97:
a2:c4:fc:bb:5b:00:55:14:e6:5d:e6:d0:22:17:01:
df:98:1a:a6:2c:56:34:83:18:95:50:8f:5e:bf:d1:
ea:53:31:c3:c2:84:40:6d:e9:ff:3c:ea:b5:53:71:
ec:6e:f0:fd:67:1c:8f:4d:eb:fb:76:40:15:a6:25:
9a:c9:2b:68:7d:6b:dc:e9:db:a5:a6:22:dd:b3:3e:
2c:22:73:bd:05:19:28:60:e3:0c:1a:6d:34:b7:dd:
80:21:ba:74:38:28:80:55:dc:28:23:ab:4e:38:e9:
9d:3f:7a:02:65:2e:3a:62:c2:bb:2c:f8:0d:f7:f0:
8c:14:a9:4b:d2:20:8f:63:82:5a:4a:7e:f2:95:a0:
2c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:BB:A7:42:B4:AA:EB:55:80:B6:67:93:5D:98:21:5A:04:21:5D:46
X509v3 Authority Key Identifier:
keyid:9B:34:06:99:C8:ED:97:0A:8C:9E:D8:C1:62:08:8F:20:67:C3:32:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mzQGmcjtlwqMntjBYgiPIGfDMlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/6f4940-5abc-49b4-9747-e08be0edaf76/1/3LunQrSq61WAtmeTXZghWgQhXUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/6f4940-5abc-49b4-9747-e08be0edaf76/1/mzQGmcjtlwqMntjBYgiPIGfDMlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.128.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:5e:24:31:da:8d:ff:72:48:5b:22:62:e0:b5:62:6c:31:b1:
e9:85:9e:fc:75:4e:39:0b:3a:f2:15:ae:ff:be:f0:92:bc:e2:
25:7d:98:ed:62:84:00:8e:c5:88:13:59:c6:8a:0b:fd:5c:58:
9a:11:18:40:e1:11:cd:5b:9e:5d:ef:43:74:8b:be:ac:b6:9a:
bf:cf:f0:a4:59:1a:78:d7:58:d1:76:4c:f9:02:ad:2b:7d:c6:
9b:79:97:81:8c:45:02:d5:d0:c6:20:83:be:c3:f1:2e:c6:b3:
ea:be:3e:6b:62:75:52:df:aa:44:52:3c:5a:0a:1b:17:25:a7:
aa:b8:d5:6c:cd:09:6c:9f:39:69:9b:76:a6:e3:05:0b:97:c8:
12:0f:26:06:c1:df:80:d4:36:58:ec:0e:82:78:df:c5:6a:7b:
a9:8a:63:9e:a2:9b:6c:28:5f:0c:88:b3:62:92:b8:94:95:33:
cf:6d:16:f4:0e:18:40:50:b3:b8:1e:84:91:12:b8:e5:0e:50:
96:f5:99:77:60:f8:48:9a:75:84:f9:f6:d7:0c:8c:c6:bf:0a:
b8:4e:37:b8:96:a8:ba:f5:26:d5:71:37:1f:5c:4b:f3:20:7a:
8f:e5:2f:e2:26:4a:56:ba:aa:0e:c2:c1:c5:c5:0e:cb:2c:18:
68:a8:98:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:17 2024 by rpki-client on console-fra.rpki-client.org