Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/_fvvSuHjBgnwS2-ZroagFGXbe1I.roa
File: _fvvSuHjBgnwS2-ZroagFGXbe1I.roa (raw, json)
Hash identifier: Gj70208gZ7eYSr0AIBThwOSZbvyWOl8PSXIBVbdeS7Y=
Subject key identifier: FD:FB:EF:4A:E1:E3:06:09:F0:4B:6F:99:AE:86:A0:14:65:DB:7B:52
Certificate issuer: /CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Certificate serial: 018337F422680581475388559FA9A707490E
Authority key identifier: DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/_fvvSuHjBgnwS2-ZroagFGXbe1I.roa
Signing time: Tue 13 Sep 2022 17:44:49 +0000
ROA not before: Tue 13 Sep 2022 17:44:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204229
IP address blocks: 185.191.60.0/23 maxlen: 23
185.191.62.0/23 maxlen: 23
185.241.118.0/23 maxlen: 23
185.241.116.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:37:f4:22:68:05:81:47:53:88:55:9f:a9:a7:07:49:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Validity
Not Before: Sep 13 17:44:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdfbef4ae1e30609f04b6f99ae86a01465db7b52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e7:15:a2:a8:6c:22:a2:68:7d:02:70:39:c6:
bd:38:e4:d4:59:39:2e:be:c2:11:55:08:be:e8:77:
95:f4:33:76:94:59:0e:40:f6:bf:78:d2:98:43:d8:
78:cd:d8:51:4b:03:88:9c:a7:04:23:e7:24:7c:7c:
83:a7:6f:05:3c:5d:87:82:a5:48:7c:37:9c:ec:ef:
1d:11:1d:fd:db:00:9b:56:10:74:77:a9:e1:1e:f6:
67:bf:bd:c6:62:85:75:65:8f:51:9a:ee:f8:86:a8:
4f:db:45:db:ba:ee:c2:4c:41:5a:f4:31:10:8a:ef:
c2:67:78:59:a0:02:5d:6c:7f:ee:0d:89:18:f2:fa:
7b:a2:bc:23:3a:b9:45:79:b3:72:ed:43:7f:81:f3:
91:20:e2:87:36:91:19:9a:a2:de:37:6c:8f:ac:98:
f5:b3:04:5c:2b:6a:84:af:c6:10:d7:ab:8d:98:67:
36:2f:77:0b:fa:09:ac:d1:d9:b5:15:b5:3b:1f:7a:
4d:b8:29:5b:cd:20:12:27:17:9a:c1:00:37:31:e2:
50:cd:30:c9:ff:db:d1:9c:29:ae:6e:eb:8e:cd:09:
a2:95:d6:ed:ce:e4:2e:48:82:c7:1e:d4:61:a7:c8:
17:53:b2:3e:77:da:06:ce:92:ff:97:a3:72:64:20:
6e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:FB:EF:4A:E1:E3:06:09:F0:4B:6F:99:AE:86:A0:14:65:DB:7B:52
X509v3 Authority Key Identifier:
keyid:DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/_fvvSuHjBgnwS2-ZroagFGXbe1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/3b5uCtrou0eDk6qxdbY4ZEx0zLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.60.0/22
185.241.116.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:73:65:09:9f:e1:55:16:bd:58:50:9d:d5:29:d6:2a:ce:d6:
8c:00:50:e8:58:80:e8:19:c3:85:d2:a0:65:64:f4:94:6b:70:
96:fb:9a:57:3f:81:c7:1c:8a:46:7e:ec:36:28:64:ef:a5:22:
74:c4:a4:cf:6f:4b:85:e8:af:cc:c6:10:aa:0a:e6:ee:b9:e0:
a7:bc:89:ac:ad:c8:c1:1c:fb:45:5f:de:d3:b0:0c:13:59:f4:
b4:6a:bd:25:1a:cc:9c:55:71:8b:c2:ed:ef:81:7c:ce:92:07:
7d:a2:f1:d0:4a:41:bb:e9:00:72:63:0a:ef:49:b3:ec:f5:78:
33:44:7d:83:4d:ae:85:d6:e1:aa:cd:5b:ea:e2:5d:0e:c0:f0:
5f:1c:62:de:f1:e3:57:61:94:7b:b2:27:73:87:74:84:b4:b5:
8a:98:b6:1b:2e:0c:37:9d:3f:90:36:99:62:e8:59:8e:69:18:
1e:9f:4f:48:37:da:f1:79:b4:b5:5d:e9:f6:d7:da:48:0c:ea:
36:7d:f5:63:c5:95:f1:fe:23:fe:c7:64:75:0f:83:3e:df:52:
78:0a:91:2f:65:aa:2f:ff:16:22:08:ad:55:92:f0:d9:17:e3:
65:d4:8d:db:bf:60:d9:da:71:fd:32:70:58:b0:99:0f:4b:03:
f4:3e:b4:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:00 2024 by rpki-client on console-ams.rpki-client.org