Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/coaCI6fkxs-mVW_mFrPMWz0ys7s.roa
File: coaCI6fkxs-mVW_mFrPMWz0ys7s.roa (raw, json)
Hash identifier: rzg+Cl2FRPeQ9dBXBBd6OlFMh9lxuyQ23+7k3O+VESY=
Subject key identifier: 72:86:82:23:A7:E4:C6:CF:A6:55:6F:E6:16:B3:CC:5B:3D:32:B3:BB
Certificate issuer: /CN=b414b09beeab905ff41e6813256054b182294297
Certificate serial: 0183127C0CD1DDB0E5D168D1727ABDE992F6
Authority key identifier: B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/coaCI6fkxs-mVW_mFrPMWz0ys7s.roa
Signing time: Tue 06 Sep 2022 11:07:43 +0000
ROA not before: Tue 06 Sep 2022 11:07:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205198
IP address blocks: 185.225.48.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:12:7c:0c:d1:dd:b0:e5:d1:68:d1:72:7a:bd:e9:92:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b414b09beeab905ff41e6813256054b182294297
Validity
Not Before: Sep 6 11:07:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72868223a7e4c6cfa6556fe616b3cc5b3d32b3bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:13:fe:19:f6:f9:b5:b7:b6:af:73:ac:4d:c0:
ee:be:86:22:63:26:6b:b2:da:5c:42:43:ab:77:2e:
b0:19:8a:a1:23:b9:b9:80:d2:69:d7:ba:39:0b:6d:
42:84:6d:d7:d0:0d:f6:bd:f5:99:43:55:46:e2:f7:
93:96:2b:d6:23:10:db:ac:34:78:ff:0d:4b:66:d0:
31:c1:50:20:7d:5b:07:01:a2:87:1d:93:f6:fb:e5:
60:3c:14:c1:cc:31:bd:58:0f:74:dd:b9:5a:c3:c4:
0b:aa:7d:50:2d:79:ca:27:7f:c1:fa:7a:3b:62:c8:
5c:c3:30:a3:68:ca:52:79:dc:e8:c8:14:07:a6:79:
42:e1:5c:7d:a4:51:b7:08:ce:65:fb:09:c1:18:07:
24:d0:0d:4f:48:f0:5f:55:79:90:ee:82:7c:89:e9:
5a:7a:5d:6a:36:af:7c:35:01:ba:30:a0:fb:dc:a2:
9f:06:ef:ae:11:da:14:8a:be:90:25:72:cf:e0:cc:
a8:aa:a7:ff:6d:75:b2:8c:39:3c:1d:3f:a4:48:eb:
f3:e6:8c:88:ae:07:df:e9:9f:a8:59:d3:82:91:05:
d5:4e:28:83:7d:55:02:1c:75:82:0b:c2:b3:a9:af:
ab:0f:ff:63:8b:73:b6:43:20:54:1c:0b:00:49:20:
0c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:86:82:23:A7:E4:C6:CF:A6:55:6F:E6:16:B3:CC:5B:3D:32:B3:BB
X509v3 Authority Key Identifier:
keyid:B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/coaCI6fkxs-mVW_mFrPMWz0ys7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.48.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:5a:32:b3:35:fa:9f:c0:62:4b:f1:77:4d:11:14:7a:95:b2:
03:8e:4d:35:ec:8d:c1:8e:80:0a:2c:5c:aa:27:06:19:1f:8e:
f2:44:b3:1a:b4:7e:db:8f:57:48:b9:d0:c6:42:8d:e1:01:fb:
66:9c:6f:95:9d:cd:f9:36:0e:ab:77:53:2a:2b:40:21:c3:d4:
a8:99:52:35:87:76:dd:34:b1:78:f8:77:07:25:d3:4a:22:4e:
23:07:0f:a3:0a:73:72:9a:f5:65:e0:62:43:46:be:b6:37:f2:
3c:e7:c8:53:07:b5:6e:cc:eb:7d:1d:28:4b:85:67:12:72:04:
ac:5f:29:af:5a:1f:7e:99:04:92:3f:bb:94:13:7c:5c:9a:c4:
2c:80:2b:ba:d3:aa:7d:7d:29:23:e0:eb:73:d7:57:dc:81:0a:
93:a0:3a:84:86:6a:0e:93:c3:c1:a6:d2:16:4f:d5:1d:1a:73:
dd:6c:a7:8e:e2:68:ea:36:1d:07:ed:e3:94:14:ac:98:87:3a:
d1:3b:08:fb:5e:25:3e:b7:11:62:08:30:58:c9:0b:b8:c4:85:
7f:6a:ff:8a:3b:3d:5e:e5:fe:c9:26:a4:f2:fa:97:74:c3:57:
36:17:9b:d9:5e:06:2a:11:a6:e1:dd:10:4e:13:ed:e9:11:dd:
0b:11:bf:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:14 2024 by rpki-client on console-ams.rpki-client.org