Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/BVZnEj6-0rLwkoO0RE-gqRKyFVQ.roa
File: BVZnEj6-0rLwkoO0RE-gqRKyFVQ.roa (raw, json)
Hash identifier: 1uPrJzCcT5+Hc1wOby22G0c2XxhmQBuXU78sQUE8V7A=
Subject key identifier: 05:56:67:12:3E:BE:D2:B2:F0:92:83:B4:44:4F:A0:A9:12:B2:15:54
Certificate issuer: /CN=335ca521362226d03c1829003d81d498aa838f33
Certificate serial: 0185304E26DC0E80EFC6B57EEFE551A0B001
Authority key identifier: 33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/BVZnEj6-0rLwkoO0RE-gqRKyFVQ.roa
Signing time: Tue 20 Dec 2022 16:11:45 +0000
ROA not before: Tue 20 Dec 2022 16:11:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209257
IP address blocks: 185.186.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:4e:26:dc:0e:80:ef:c6:b5:7e:ef:e5:51:a0:b0:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=335ca521362226d03c1829003d81d498aa838f33
Validity
Not Before: Dec 20 16:11:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=055667123ebed2b2f09283b4444fa0a912b21554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:06:40:3a:f9:a2:80:1b:23:dd:cc:f8:95:e8:
0f:0c:cf:23:aa:3e:a9:3c:e2:72:ce:53:46:d6:56:
ff:c1:ec:f1:7a:7e:7d:9f:d6:3e:5e:d0:30:a8:7f:
9f:0c:2f:1f:40:c4:59:e4:7b:ba:a4:d2:6f:f8:b4:
a1:82:ef:06:69:a4:a8:17:75:81:7e:0d:6d:33:95:
ce:32:32:c7:5d:ab:fa:2a:4d:c6:e4:f4:e7:47:2c:
61:1e:c3:7c:f7:ea:f8:92:a6:6d:b8:5f:cb:ac:4c:
50:8d:88:0f:ad:07:ff:67:a4:8a:f6:5f:74:b4:83:
1c:7a:82:5a:1c:5f:73:0c:4b:05:99:22:2a:36:83:
b2:13:12:19:06:8f:85:ac:6c:79:b8:79:0a:49:07:
49:8b:98:e7:95:10:41:1e:44:0c:cc:7a:34:e7:91:
60:ef:28:7b:f7:3e:94:64:44:c3:d3:f9:6f:a6:92:
72:00:af:29:66:55:b6:d8:29:10:c3:d7:26:de:a5:
a0:4a:0f:29:e0:ba:33:88:0d:0c:06:78:ca:5d:ec:
3c:ac:57:99:b1:e4:99:28:4b:f0:00:ef:6b:34:c5:
09:f2:ab:3a:e5:bb:db:d8:fb:ea:ac:2c:16:a9:cd:
fd:d6:22:cc:3e:7d:ae:d0:ff:71:72:b4:da:35:7b:
1f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:56:67:12:3E:BE:D2:B2:F0:92:83:B4:44:4F:A0:A9:12:B2:15:54
X509v3 Authority Key Identifier:
keyid:33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/BVZnEj6-0rLwkoO0RE-gqRKyFVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/M1ylITYiJtA8GCkAPYHUmKqDjzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.221.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:75:bd:74:27:a6:bc:32:74:5a:88:54:97:14:45:a6:80:db:
81:5c:1e:37:ba:29:d2:39:91:85:53:ca:2c:9c:64:e5:5a:d8:
c0:8f:a6:0b:5b:6a:ab:96:5c:1b:ef:46:15:f0:66:58:59:b7:
ab:63:a7:70:60:50:a5:ef:11:05:e6:a2:e3:69:9f:4c:a7:be:
32:89:d3:4c:11:4a:64:ce:ba:1a:ca:b1:04:9d:e8:c6:7b:61:
6a:25:36:11:59:5a:63:d8:ec:f4:ff:8e:3c:26:ce:58:08:1b:
2a:bf:51:09:33:b0:e0:45:0b:ed:a1:fd:32:5b:b7:0d:54:20:
57:ee:d3:09:24:9d:e6:27:b5:b7:38:88:8a:8a:eb:fa:6d:87:
31:5f:96:e6:cd:82:ca:e9:54:71:46:e1:e2:69:90:c1:36:88:
51:8c:22:0a:35:1e:3c:3d:17:bc:5c:4e:55:88:08:37:10:e7:
02:b8:43:71:9e:ae:55:b2:0a:5c:15:10:c8:08:2f:b3:f2:a1:
9b:5a:3a:c7:66:a3:44:40:2f:45:bd:7f:8c:f9:49:30:42:24:
d8:f8:d0:76:90:dc:b5:51:2f:c2:2b:3f:b4:dd:7d:1c:2c:ab:
d0:83:48:76:a7:97:2f:51:56:81:70:4d:ae:64:e0:79:97:1a:
67:72:00:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:42 2023 by rpki-client on console-ams.rpki-client.org