Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/fd757c-3a7c-4b31-b4a1-cfa7a310d542/1/0p5YbU4iQoVmwiApPlzBLfzcrVc.roa
File: 0p5YbU4iQoVmwiApPlzBLfzcrVc.roa (raw, json)
Hash identifier: awpbeMH0YfMAmBVNy5HomM9yfHi/qdh3Da+0j1/Bt68=
Subject key identifier: D2:9E:58:6D:4E:22:42:85:66:C2:20:29:3E:5C:C1:2D:FC:DC:AD:57
Certificate issuer: /CN=42004477243ca20b95dc8efe07337639806f6075
Certificate serial: 05568384
Authority key identifier: 42:00:44:77:24:3C:A2:0B:95:DC:8E:FE:07:33:76:39:80:6F:60:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QgBEdyQ8oguV3I7-BzN2OYBvYHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/fd757c-3a7c-4b31-b4a1-cfa7a310d542/1/0p5YbU4iQoVmwiApPlzBLfzcrVc.roa
Signing time: Sat 01 Jan 2022 14:54:37 +0000
ROA not before: Sat 01 Jan 2022 14:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204918
IP address blocks: 185.135.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89555844 (0x5568384)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42004477243ca20b95dc8efe07337639806f6075
Validity
Not Before: Jan 1 14:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d29e586d4e22428566c220293e5cc12dfcdcad57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e4:63:6a:80:ee:62:a2:05:7d:a8:13:65:fb:
da:b1:21:58:af:64:12:96:8f:f4:3c:b9:88:69:0c:
42:f0:18:e2:07:94:42:ce:de:dc:1b:79:82:ec:7a:
e8:d7:76:8e:48:98:64:ea:2d:94:65:b3:ae:cc:b5:
01:d4:77:11:79:fc:59:6e:38:b9:cb:ff:e9:49:16:
c2:bc:27:ef:60:12:23:b6:a0:3e:75:15:1a:ac:c3:
e9:45:c1:a3:97:a0:2d:d5:22:30:62:09:08:35:8b:
11:82:5c:a0:5f:b4:cb:30:f8:e5:55:85:3b:b4:79:
a7:25:f7:b1:cb:8d:08:ce:43:41:ca:a6:a8:b3:d4:
64:45:ea:6a:41:b9:47:c6:8f:00:be:eb:61:d5:46:
65:ba:ca:18:a2:0c:be:72:91:86:33:61:3d:5d:9b:
e9:40:dc:24:4c:6e:b4:f7:82:80:70:16:00:86:90:
51:b4:a7:ed:ad:24:75:fe:b7:4b:48:85:3f:be:bc:
67:11:7c:b4:d3:32:47:68:33:7e:2b:42:b4:21:09:
e7:69:e4:a9:15:c6:d7:17:1e:a0:05:54:1a:08:00:
c1:74:e8:6b:e6:9b:88:db:15:e0:be:21:4c:01:f7:
55:e7:80:7e:b6:bc:4b:2d:99:f6:be:f1:11:e0:13:
a5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:9E:58:6D:4E:22:42:85:66:C2:20:29:3E:5C:C1:2D:FC:DC:AD:57
X509v3 Authority Key Identifier:
keyid:42:00:44:77:24:3C:A2:0B:95:DC:8E:FE:07:33:76:39:80:6F:60:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QgBEdyQ8oguV3I7-BzN2OYBvYHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/fd757c-3a7c-4b31-b4a1-cfa7a310d542/1/0p5YbU4iQoVmwiApPlzBLfzcrVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/fd757c-3a7c-4b31-b4a1-cfa7a310d542/1/QgBEdyQ8oguV3I7-BzN2OYBvYHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.96.0/22
Signature Algorithm: sha256WithRSAEncryption
58:1d:5c:e5:1a:c6:a1:dc:b8:43:5c:c2:79:73:7d:b8:19:7c:
ba:2d:46:86:da:32:d6:fd:22:9b:c3:7a:14:3e:19:f8:28:c3:
a9:0c:c9:e4:e0:1f:b9:bd:bf:dd:a8:e5:91:93:15:04:c4:f2:
2a:a9:b8:49:77:8a:5b:07:4c:87:79:9e:9c:7c:41:32:63:ce:
59:64:92:1d:b5:72:24:3b:7f:24:47:51:3f:b5:00:e4:12:88:
a2:a4:33:f2:4f:0d:6b:98:b5:22:b5:c0:32:96:3c:2c:9e:d5:
d4:b4:17:fc:8f:ed:d4:f4:98:62:58:f4:21:85:16:5d:fc:c9:
d9:2d:7b:7b:6f:d4:0e:27:ff:22:eb:f9:22:30:32:5b:86:5a:
9f:31:82:82:ef:ea:55:0c:f8:6b:25:bd:f0:1e:bd:bb:67:0f:
80:7e:15:f0:13:91:38:57:30:ee:42:dd:95:b5:d7:fd:01:47:
ad:f6:f5:92:44:e6:02:69:ba:44:45:8d:0c:af:86:c6:97:36:
41:34:dd:de:b2:6d:49:2e:f9:64:6e:5f:62:0e:0a:4e:bf:4d:
71:e8:7a:97:ec:e8:1b:b3:1b:a5:f4:b8:53:bb:e4:6a:f1:0a:
76:38:31:66:a0:bb:c9:7a:7b:39:06:c8:be:b3:e0:6a:91:42:
f1:8e:d0:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:43 2024 by rpki-client on console-fra.rpki-client.org