Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/aCSOudICVNacpmjUdZzIT4Uj-1c.roa
File: aCSOudICVNacpmjUdZzIT4Uj-1c.roa (raw, json)
Hash identifier: Dde+j4/qQBOAgOoKUoKy8wiCCw4yhzO7jPoWJgzwXkQ=
Subject key identifier: 68:24:8E:B9:D2:02:54:D6:9C:A6:68:D4:75:9C:C8:4F:85:23:FB:57
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: 01084FB0
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/aCSOudICVNacpmjUdZzIT4Uj-1c.roa
Signing time: Wed 18 May 2022 08:21:17 +0000
ROA not before: Wed 18 May 2022 08:21:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201803
IP address blocks: 185.63.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17321904 (0x1084fb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: May 18 08:21:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68248eb9d20254d69ca668d4759cc84f8523fb57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c0:69:08:83:f3:c2:ab:be:ce:ea:93:8a:28:
79:95:25:ca:98:ab:cf:1d:67:d3:6b:ce:f3:8d:0e:
fa:83:d8:81:cc:7f:32:04:f2:18:22:34:cb:02:8c:
30:86:87:ee:9d:44:92:4d:98:40:47:00:f9:f0:b8:
08:c3:5a:f4:b5:df:e6:a6:7e:38:14:bf:ad:3f:ad:
ea:26:bd:ae:5f:1c:68:ab:c9:fd:4a:26:9f:98:cd:
e1:d7:d8:62:b2:ec:8b:04:50:17:f2:67:b5:d7:50:
6a:d9:8a:d8:c1:55:f2:3d:3c:29:69:df:3a:7e:4c:
5d:58:86:db:1a:c2:34:db:e3:91:7e:4f:36:6d:40:
e0:ef:a3:3b:3c:f1:06:b0:83:07:e3:89:6c:bd:5b:
46:1c:de:e9:22:ee:47:18:dc:7e:4d:8c:78:72:90:
df:f5:39:aa:1b:bc:8d:f4:2e:c8:58:10:de:c6:c0:
4e:27:6d:ac:48:b6:ea:52:85:ec:80:59:19:19:66:
b9:32:82:56:d5:f9:5c:08:c8:ee:e6:59:d0:c8:30:
1e:51:73:fe:b0:d6:de:20:50:72:f2:52:da:70:c8:
ce:da:c2:04:0e:e6:d5:a5:a7:3f:13:bc:b2:3e:eb:
e6:79:49:b8:f7:2d:1b:92:6b:78:9b:f9:dc:98:73:
9b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:24:8E:B9:D2:02:54:D6:9C:A6:68:D4:75:9C:C8:4F:85:23:FB:57
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/aCSOudICVNacpmjUdZzIT4Uj-1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.32.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:75:9b:05:10:59:a9:93:e8:bd:33:c3:8c:f6:c1:13:4c:f2:
f2:b4:de:a7:03:55:17:17:2b:83:a7:e2:67:61:4c:0c:59:be:
64:c3:24:f5:68:33:40:ad:09:39:aa:94:eb:4c:5e:3e:d1:23:
99:74:4c:d8:86:43:07:29:c9:46:b2:ec:2c:12:e8:c8:c6:36:
e4:35:9b:6f:32:98:28:be:f5:95:49:86:33:6a:2f:86:6d:4f:
5e:dd:3a:fe:30:e4:0f:ed:df:fc:c6:2c:57:ad:3c:47:93:a5:
4c:b8:5a:4f:23:ff:e6:99:ea:86:e5:7f:2d:a3:b3:f2:df:32:
0f:24:ed:2d:55:c6:73:df:80:65:d0:87:7d:a4:b8:8d:c6:83:
5e:44:fe:4a:4b:ae:52:26:f4:a3:fa:d5:fe:cb:d4:53:b6:4f:
7a:71:0b:76:d0:5c:38:c4:7e:2d:2f:f3:44:59:bd:13:17:b2:
74:f4:fa:d3:4e:0f:34:9d:50:10:f5:57:b7:8f:8a:90:f1:57:
fa:27:05:af:70:db:da:aa:d4:4d:48:18:e7:ef:a7:90:bd:18:
de:f5:2e:cd:40:57:47:04:e5:b7:4c:fd:fa:de:5f:4f:d7:ef:
bf:cc:82:74:00:d3:d0:a4:59:61:c1:64:e6:32:c3:e4:a7:f9:
39:88:18:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:23 2024 by rpki-client on console-ams.rpki-client.org