Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/02aa3b-e3a8-4c69-82ce-d957264653e2/1/t_ES-z6DhdGgabsxZQyQcSh1vr8.roa
File: t_ES-z6DhdGgabsxZQyQcSh1vr8.roa (raw, json)
Hash identifier: v5xG2aR8fgE8xqgjpDyhIgSi1aZ2Wj2xYfbhpjCkzsg=
Subject key identifier: B7:F1:12:FB:3E:83:85:D1:A0:69:BB:31:65:0C:90:71:28:75:BE:BF
Certificate issuer: /CN=6b5e8b0701e35d66a97876d8055012a89682fdc3
Certificate serial: 0503BBE9
Authority key identifier: 6B:5E:8B:07:01:E3:5D:66:A9:78:76:D8:05:50:12:A8:96:82:FD:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a16LBwHjXWapeHbYBVASqJaC_cM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/02aa3b-e3a8-4c69-82ce-d957264653e2/1/t_ES-z6DhdGgabsxZQyQcSh1vr8.roa
Signing time: Sat 01 Jan 2022 06:02:11 +0000
ROA not before: Sat 01 Jan 2022 06:02:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60017
IP address blocks: 185.156.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84130793 (0x503bbe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5e8b0701e35d66a97876d8055012a89682fdc3
Validity
Not Before: Jan 1 06:02:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7f112fb3e8385d1a069bb31650c90712875bebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fa:8d:76:8d:0c:6f:76:aa:ea:c5:b3:55:1e:
08:34:40:cc:07:a8:48:8f:f2:4b:be:32:7b:83:74:
64:f7:22:de:2c:d3:59:28:c5:39:4d:50:8a:11:3c:
d6:4d:2b:d7:e6:1e:60:b0:7a:22:49:7b:6c:df:6d:
35:1f:a5:56:9d:3f:24:65:f5:f3:41:24:fd:dd:6e:
b2:2c:2c:62:cf:4a:ef:f1:01:04:93:cd:fa:bd:a2:
2b:d6:18:4e:78:de:f4:54:53:9c:16:1a:ba:d2:60:
19:ae:90:6b:0f:e0:bf:2a:ca:01:69:40:60:d3:8d:
4a:32:e1:31:bf:b6:66:3b:ca:b3:02:26:9f:98:2f:
68:15:5d:bc:45:e8:35:7f:aa:0b:87:ce:57:aa:bf:
e7:50:52:3c:58:ad:12:b2:c6:ef:12:ed:67:24:9c:
91:2f:6e:72:3e:17:4b:46:db:de:16:4c:da:70:ae:
fc:e9:62:7f:17:cb:2a:84:3c:bb:79:b8:21:c8:99:
41:e1:7f:72:8f:94:3b:fe:3e:cf:6c:2c:a7:dc:7d:
8e:a1:b2:3e:5e:1b:cd:dd:d2:ba:d9:c3:09:bf:88:
87:f0:51:45:cf:f5:21:39:48:01:4f:88:cc:4b:f1:
01:f6:bf:3d:4c:df:81:44:d2:1c:1d:71:04:de:bf:
15:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:F1:12:FB:3E:83:85:D1:A0:69:BB:31:65:0C:90:71:28:75:BE:BF
X509v3 Authority Key Identifier:
keyid:6B:5E:8B:07:01:E3:5D:66:A9:78:76:D8:05:50:12:A8:96:82:FD:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a16LBwHjXWapeHbYBVASqJaC_cM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/02aa3b-e3a8-4c69-82ce-d957264653e2/1/t_ES-z6DhdGgabsxZQyQcSh1vr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/02aa3b-e3a8-4c69-82ce-d957264653e2/1/a16LBwHjXWapeHbYBVASqJaC_cM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.232.0/22
Signature Algorithm: sha256WithRSAEncryption
42:5d:7d:e1:50:3e:cd:9f:0c:a1:a8:27:b7:c7:d3:ec:ad:e9:
13:d1:32:5c:80:29:a8:e4:92:05:42:03:05:9e:c4:42:46:66:
d8:63:f2:e3:b5:09:f2:71:be:6b:89:9b:f2:db:14:65:68:25:
76:86:12:55:76:59:19:42:50:51:db:3f:3e:1a:69:ae:c8:43:
49:f1:a4:40:22:53:71:3e:e8:b4:fd:ff:cb:bc:e4:fd:7e:ea:
62:07:22:89:3c:72:2e:28:4f:63:a3:b3:1f:c9:0c:13:60:2f:
a5:51:ae:32:4c:61:67:a6:43:97:67:e4:e9:ea:3d:7c:b7:5a:
c1:9c:f3:b3:22:f6:93:5a:5a:10:7a:ae:30:6d:f8:37:e5:03:
99:51:86:2a:15:98:dd:91:cc:6a:7a:a1:2c:33:d9:6f:02:17:
7e:d8:a7:21:65:0d:06:5e:47:2e:e6:f1:e4:8a:99:8c:c9:93:
a7:46:96:ea:a7:7c:31:c7:b1:21:d5:d1:92:f6:55:8d:1b:72:
b2:aa:01:e8:f3:2f:54:90:1c:e8:6b:26:4f:91:13:74:3e:ad:
c1:cb:cd:54:70:94:a7:39:b4:d1:b1:ae:87:71:4b:96:f6:e8:
02:91:15:68:28:2f:8b:d4:62:4a:5e:ef:64:2f:c9:2c:84:13:
f8:01:d0:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:58 2024 by rpki-client on console-ams.rpki-client.org