Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d22140-d961-4377-b8c6-3ef594e6c696/1/bagY3THyTmMUjyuqMINHFn8WSqI.roa
File: bagY3THyTmMUjyuqMINHFn8WSqI.roa (raw, json)
Hash identifier: MihwxZG69qxeNLFjsfI/AwJuc0fQRxZgH0h2TDHnO+A=
Subject key identifier: 6D:A8:18:DD:31:F2:4E:63:14:8F:2B:AA:30:83:47:16:7F:16:4A:A2
Certificate issuer: /CN=0e9e0afebf54a4d218afbaed5430771bbf7777a9
Certificate serial: 06DD605D
Authority key identifier: 0E:9E:0A:FE:BF:54:A4:D2:18:AF:BA:ED:54:30:77:1B:BF:77:77:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dp4K_r9UpNIYr7rtVDB3G793d6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d22140-d961-4377-b8c6-3ef594e6c696/1/bagY3THyTmMUjyuqMINHFn8WSqI.roa
Signing time: Sat 01 Jan 2022 14:59:32 +0000
ROA not before: Sat 01 Jan 2022 14:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208154
IP address blocks: 185.75.192.0/22 maxlen: 22
2a03:4ca0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115171421 (0x6dd605d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e9e0afebf54a4d218afbaed5430771bbf7777a9
Validity
Not Before: Jan 1 14:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6da818dd31f24e63148f2baa308347167f164aa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e1:af:d2:68:72:ef:16:bb:94:d0:7d:26:93:
f5:d9:9d:53:06:f6:ea:38:62:5e:31:97:69:7f:fd:
99:ef:0e:4e:43:11:4b:c0:52:97:8d:0c:d8:5e:30:
02:ec:45:a4:3b:49:2b:43:e6:b4:80:91:ce:5d:81:
aa:f7:a6:e8:f7:fd:b7:d8:d7:a0:ed:bc:44:9b:44:
80:1d:f9:c2:87:04:1f:d4:59:58:e1:4f:92:89:15:
90:7d:e3:e2:ed:90:a4:21:1c:78:00:35:8b:96:ef:
40:c4:35:27:a3:33:37:aa:26:a3:1f:3c:c7:f8:d9:
15:f7:ee:e5:74:cd:4e:a0:d7:4c:21:30:f1:19:e3:
06:00:ea:64:b0:66:c9:13:15:84:f3:49:91:8a:a0:
85:c2:8d:ee:d3:eb:ae:59:a3:07:55:b3:e3:d3:f6:
4a:17:00:b7:0c:ca:c5:ba:bd:a5:31:0a:07:d3:6a:
46:e2:0c:31:52:0f:a0:f1:0e:45:7f:bb:01:a3:d3:
49:fa:8e:12:16:2a:23:2d:91:9c:8c:2d:3b:de:79:
9a:a6:1f:12:e6:18:18:12:e2:84:f0:7d:1d:4a:23:
48:4f:eb:4f:96:f3:ce:53:e4:92:42:89:8e:89:0e:
a4:98:00:9a:7d:74:88:20:35:d7:e1:79:23:eb:49:
97:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A8:18:DD:31:F2:4E:63:14:8F:2B:AA:30:83:47:16:7F:16:4A:A2
X509v3 Authority Key Identifier:
keyid:0E:9E:0A:FE:BF:54:A4:D2:18:AF:BA:ED:54:30:77:1B:BF:77:77:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dp4K_r9UpNIYr7rtVDB3G793d6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d22140-d961-4377-b8c6-3ef594e6c696/1/bagY3THyTmMUjyuqMINHFn8WSqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d22140-d961-4377-b8c6-3ef594e6c696/1/Dp4K_r9UpNIYr7rtVDB3G793d6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.192.0/22
IPv6:
2a03:4ca0::/32
Signature Algorithm: sha256WithRSAEncryption
7b:62:40:c9:ef:e7:d8:e1:c0:fb:0d:51:4c:2e:08:43:9f:9d:
00:35:6c:6d:a3:81:b0:25:9d:2d:0a:ba:0d:de:9b:77:1e:81:
85:47:43:c8:6f:91:fa:fd:b7:7f:16:12:c8:bc:49:56:c9:2c:
b5:6e:5e:13:ea:95:d6:bf:b9:30:08:cc:d8:24:28:ca:2c:ee:
27:63:ac:c4:b6:f0:96:e2:fd:ca:07:f4:9a:0c:e1:20:ba:13:
9e:b6:be:c9:7a:be:5a:9a:2d:01:aa:18:aa:59:ab:85:e2:38:
bc:44:f6:14:83:e0:8b:96:a6:38:a8:18:b1:38:3b:e9:7f:e6:
d2:e8:64:52:a4:ef:c8:d1:b3:95:e2:32:50:1e:ab:41:e0:89:
d9:e6:32:81:3d:80:b3:fe:4d:11:05:21:3f:52:cc:5f:2e:21:
50:c6:37:3d:d6:74:2f:b5:90:e9:cb:e5:27:9b:fe:59:e3:b9:
7b:99:c0:c4:bd:45:2e:16:ee:a4:63:ed:79:71:4c:95:ba:ab:
67:77:50:c9:ac:7d:0a:5d:da:fe:74:75:bd:49:26:e9:e0:f4:
5f:fe:0f:79:18:0f:e3:e8:10:a6:84:60:24:c7:73:d5:af:a8:
0d:3a:03:25:51:90:11:6e:53:c4:72:39:ad:58:97:db:10:e2:
cc:87:83:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:30 2023 by rpki-client on console-ams.rpki-client.org