Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/71dee2-e1c1-40ce-b311-3f33866192d0/1/J44BOwVltvVT6VVWuS4Q3s2iH8Q.roa
File: J44BOwVltvVT6VVWuS4Q3s2iH8Q.roa (raw, json)
Hash identifier: ABD1e6Tl5uswZdA4oeO7H68DM249o0ecOzVumMrlv/M=
Subject key identifier: 27:8E:01:3B:05:65:B6:F5:53:E9:55:56:B9:2E:10:DE:CD:A2:1F:C4
Certificate issuer: /CN=12ee6257d0c3a2b930561af2522d9e5af7f9cbc7
Certificate serial: 0BDBCA30
Authority key identifier: 12:EE:62:57:D0:C3:A2:B9:30:56:1A:F2:52:2D:9E:5A:F7:F9:CB:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eu5iV9DDorkwVhryUi2eWvf5y8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/71dee2-e1c1-40ce-b311-3f33866192d0/1/J44BOwVltvVT6VVWuS4Q3s2iH8Q.roa
Signing time: Sat 01 Jan 2022 07:01:58 +0000
ROA not before: Sat 01 Jan 2022 07:01:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204135
IP address blocks: 185.235.37.0/24 maxlen: 24
185.235.36.0/22 maxlen: 22
185.235.36.0/24 maxlen: 24
2a0e:1700::/32 maxlen: 32
2a0e:1701::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198953520 (0xbdbca30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12ee6257d0c3a2b930561af2522d9e5af7f9cbc7
Validity
Not Before: Jan 1 07:01:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=278e013b0565b6f553e95556b92e10decda21fc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c7:c6:84:2d:cc:01:2a:ce:f9:a1:eb:b1:e4:
93:12:f2:9d:7d:77:3a:b8:61:8b:e8:19:b3:de:69:
ef:d2:76:d5:ef:ab:52:7d:bc:23:77:09:bc:94:98:
16:e6:a2:9d:d4:a1:88:25:b7:37:6a:c3:7d:53:18:
8b:0b:c8:c7:1d:c9:06:9e:e7:b0:59:0c:5a:e1:f7:
0a:9f:33:b3:ee:fd:42:2a:68:3c:75:b3:93:a1:7c:
ca:63:e4:a1:b3:53:e2:7d:40:ac:e1:34:74:e9:66:
68:0a:38:57:21:00:d2:7c:2b:2b:62:66:27:5d:4a:
d7:57:fc:7a:81:83:f2:eb:19:2d:bf:47:c7:c4:0c:
43:5d:ba:fd:2a:44:0f:ad:80:74:99:fa:93:87:2b:
c2:a0:21:fa:aa:7c:63:66:af:ae:16:32:ae:bb:9f:
09:e6:8b:1a:75:a7:17:99:e0:e4:60:4f:86:cb:f8:
b1:35:73:d4:7e:8a:68:08:a2:00:70:35:d6:19:ae:
1c:b4:28:ac:62:76:10:a7:9a:cb:5e:fd:16:75:46:
95:f4:70:7f:5d:98:48:9b:53:22:f4:37:2c:0c:ab:
ee:94:dd:9a:ae:97:3b:8a:fd:93:ec:83:0d:30:48:
f7:7e:cf:1a:d7:62:ea:87:47:fa:64:3d:46:d8:ca:
64:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:8E:01:3B:05:65:B6:F5:53:E9:55:56:B9:2E:10:DE:CD:A2:1F:C4
X509v3 Authority Key Identifier:
keyid:12:EE:62:57:D0:C3:A2:B9:30:56:1A:F2:52:2D:9E:5A:F7:F9:CB:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eu5iV9DDorkwVhryUi2eWvf5y8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/71dee2-e1c1-40ce-b311-3f33866192d0/1/J44BOwVltvVT6VVWuS4Q3s2iH8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/71dee2-e1c1-40ce-b311-3f33866192d0/1/Eu5iV9DDorkwVhryUi2eWvf5y8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.36.0/22
IPv6:
2a0e:1700::/31
Signature Algorithm: sha256WithRSAEncryption
32:ca:b5:02:2d:f3:5a:6d:d7:0e:ce:e2:11:1a:0b:25:e6:83:
70:17:d2:9d:49:30:57:64:e2:7f:a1:37:f2:e0:f4:38:bd:5a:
f8:22:21:97:16:f5:a5:4c:8f:24:ad:f6:a6:34:1f:c6:93:3f:
3d:32:75:bd:55:70:bb:51:c6:36:91:5e:6c:c8:24:67:bc:f0:
11:64:4d:3f:11:78:bd:8c:83:69:98:1a:70:1d:b7:b2:6e:72:
f9:1c:ff:7e:d5:c4:ee:9f:4d:01:2c:7c:9f:b2:84:9d:35:93:
5d:95:f3:26:57:1f:b5:2f:4a:26:ce:83:26:7f:ee:6a:1d:dc:
6b:29:be:e7:1a:d0:83:c1:18:1f:d8:12:b9:f7:cd:3b:3b:03:
fe:6a:16:a9:27:51:66:32:d9:46:4a:0a:61:c3:f4:46:be:be:
2c:da:3b:52:37:05:a4:87:8f:9f:ce:fe:a3:51:41:3a:79:83:
6b:4a:fc:c5:f9:5d:6d:1d:9c:42:a9:20:21:ad:e4:e7:de:bb:
e2:6e:95:8e:8b:5f:cc:a6:98:3e:91:da:5f:24:c0:1e:d6:54:
b1:82:8e:e2:d2:ac:98:52:0c:25:ae:dc:f8:7d:fc:14:95:79:
3a:d2:b4:d4:69:4d:82:39:ff:a8:84:00:5a:12:18:81:5d:9f:
b7:98:62:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:59 2023 by rpki-client on console-fra.rpki-client.org