Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e9e798-4ef3-4aa8-81f0-305658f91635/1/M6CGlLq8B3NBj33lXBaem8bju7Y.roa
File: M6CGlLq8B3NBj33lXBaem8bju7Y.roa (raw, json)
Hash identifier: VcUlWr3qC635e1dTKyiNP5k1PLKhGKtc5cMqiujOkZ0=
Subject key identifier: 33:A0:86:94:BA:BC:07:73:41:8F:7D:E5:5C:16:9E:9B:C6:E3:BB:B6
Certificate issuer: /CN=c875f76e8f894247923c0e276234d98a4c3ec5c2
Certificate serial: 1A773B60
Authority key identifier: C8:75:F7:6E:8F:89:42:47:92:3C:0E:27:62:34:D9:8A:4C:3E:C5:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHX3bo-JQkeSPA4nYjTZikw-xcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e9e798-4ef3-4aa8-81f0-305658f91635/1/M6CGlLq8B3NBj33lXBaem8bju7Y.roa
Signing time: Thu 10 Feb 2022 13:42:50 +0000
ROA not before: Thu 10 Feb 2022 13:42:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61207
IP address blocks: 185.41.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 444021600 (0x1a773b60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c875f76e8f894247923c0e276234d98a4c3ec5c2
Validity
Not Before: Feb 10 13:42:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33a08694babc0773418f7de55c169e9bc6e3bbb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:88:58:b0:aa:cb:be:eb:99:f7:85:a4:6f:b9:
55:fc:cb:21:75:b8:3d:8a:43:13:9a:b5:d1:e6:38:
8a:56:14:ac:b1:69:b5:2c:ac:b7:d3:f5:97:ec:37:
5c:da:c4:ee:ac:a1:30:b1:ae:56:58:a9:7a:8c:da:
01:51:91:4b:4f:65:98:9d:a7:85:e6:48:3c:0a:d9:
15:5b:94:ce:ec:c3:56:20:85:b9:1c:54:94:98:a2:
53:64:bb:e3:64:ef:5e:3a:ca:fb:47:9a:6a:0f:89:
a6:cf:ed:0b:fb:0a:a7:c3:92:51:e5:ac:cc:e0:a1:
f8:9f:cd:12:34:ab:d3:fb:e1:92:1e:97:e2:e3:df:
57:ee:8a:76:98:96:a3:e4:22:2b:07:b4:b6:89:80:
cb:49:55:33:a9:a2:29:0d:c6:01:9a:f8:69:7d:9c:
9f:14:8f:d0:c1:55:b5:04:a3:ef:ad:11:de:2a:f5:
d5:68:15:1e:47:76:71:6b:f6:b6:a2:77:ed:fc:c5:
aa:2a:43:1c:b8:d6:52:ba:28:40:ff:45:b1:73:43:
aa:a3:26:b3:20:3e:e4:13:28:d8:cc:b2:69:22:8e:
cb:bd:86:3c:c0:93:28:8e:31:67:9b:82:1b:e9:09:
a9:f8:0e:55:d3:c5:00:b8:f9:b2:43:8e:fe:1e:f3:
e6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A0:86:94:BA:BC:07:73:41:8F:7D:E5:5C:16:9E:9B:C6:E3:BB:B6
X509v3 Authority Key Identifier:
keyid:C8:75:F7:6E:8F:89:42:47:92:3C:0E:27:62:34:D9:8A:4C:3E:C5:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHX3bo-JQkeSPA4nYjTZikw-xcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e9e798-4ef3-4aa8-81f0-305658f91635/1/M6CGlLq8B3NBj33lXBaem8bju7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e9e798-4ef3-4aa8-81f0-305658f91635/1/yHX3bo-JQkeSPA4nYjTZikw-xcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.148.0/24
Signature Algorithm: sha256WithRSAEncryption
42:84:14:fd:e7:dc:5a:e4:2b:27:2f:fa:5d:91:53:74:d3:3d:
5f:f6:8a:05:3a:c0:8e:66:cd:2b:05:80:25:9c:0f:6a:d8:77:
b7:c9:6b:9b:14:6f:5e:ba:4d:47:9a:7e:9a:d8:59:3a:5b:7b:
2d:6d:88:78:37:6e:83:24:26:24:e9:8a:8d:96:39:e3:48:58:
02:a6:20:7f:d9:99:6e:e1:50:36:3a:ff:62:95:9c:cf:c3:57:
87:5e:78:08:2d:e7:dc:02:18:aa:cd:ca:cb:13:30:65:b0:05:
0d:5b:98:42:b5:79:f5:b2:24:6a:55:0b:bb:41:1a:5b:ae:be:
48:52:d2:9a:a0:5f:72:99:63:5f:98:35:da:6c:9f:ed:87:95:
6c:e9:ed:73:f4:a9:18:67:96:07:35:c5:71:be:1f:cb:f5:9c:
cf:6f:e2:82:08:a5:0e:3a:58:94:eb:82:26:36:8b:5b:0a:18:
57:30:7d:80:96:e7:52:64:30:4a:de:54:c0:f2:7b:28:9b:12:
7c:a7:f1:67:41:4f:44:8d:a9:5d:b1:f4:56:f3:20:0f:6e:e6:
81:7e:fa:40:8b:c3:aa:7b:3d:4e:07:11:19:78:0d:25:8b:72:
83:72:35:58:75:92:7f:07:ce:2e:21:a6:3b:3b:d4:ec:b1:00:
44:fa:9a:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:39 2024 by rpki-client on console-ams.rpki-client.org