Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5befa7-87fd-44a2-b1f4-3e8f575eddff/1/B6sVOgwpL7G-BFG7uiWY7GiCwac.roa
File: B6sVOgwpL7G-BFG7uiWY7GiCwac.roa (raw, json)
Hash identifier: UKmxQxaxtKb5MuRkF7mezhkcJ22JaYSXUyzvrHVbLaA=
Subject key identifier: 07:AB:15:3A:0C:29:2F:B1:BE:04:51:BB:BA:25:98:EC:68:82:C1:A7
Certificate issuer: /CN=761c05753b19bcdb532fdc7f6f47e97e935ba0a2
Certificate serial: 01FBE5B8
Authority key identifier: 76:1C:05:75:3B:19:BC:DB:53:2F:DC:7F:6F:47:E9:7E:93:5B:A0:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dhwFdTsZvNtTL9x_b0fpfpNboKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5befa7-87fd-44a2-b1f4-3e8f575eddff/1/B6sVOgwpL7G-BFG7uiWY7GiCwac.roa
Signing time: Sat 01 Jan 2022 02:56:22 +0000
ROA not before: Sat 01 Jan 2022 02:56:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211329
IP address blocks: 147.236.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33285560 (0x1fbe5b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=761c05753b19bcdb532fdc7f6f47e97e935ba0a2
Validity
Not Before: Jan 1 02:56:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07ab153a0c292fb1be0451bbba2598ec6882c1a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0f:d9:74:41:17:b7:8d:75:45:f6:5b:16:c1:
2c:33:bb:ad:47:84:24:5b:df:62:ae:c6:5f:11:86:
ad:3d:82:14:76:30:7e:3f:56:e7:84:b2:d1:b6:38:
a9:69:2d:6e:42:2b:b0:8d:4e:0a:00:d8:e2:38:db:
8c:96:81:1f:1d:d3:2c:1a:1b:07:67:78:2e:df:02:
b6:a3:8c:b4:52:d5:3b:79:5c:32:59:aa:f2:5c:05:
7c:b6:58:3c:b7:5e:c3:33:23:39:0e:19:81:db:86:
80:05:3e:ee:4c:fa:a6:a8:d4:13:aa:fb:85:23:0d:
82:03:d6:86:22:06:96:bb:f8:36:2e:76:84:86:68:
76:21:38:29:84:68:b7:30:73:85:53:55:3a:fb:63:
96:33:19:32:19:01:3e:b7:19:0d:af:d4:ba:0f:1f:
14:e3:54:09:6c:b1:7f:ea:3c:8c:46:93:43:a8:02:
96:cc:5a:72:a0:e3:ed:31:5c:6d:90:a6:5f:c4:32:
2f:06:aa:69:8e:27:78:2f:dd:7f:43:f4:e7:f4:0e:
d3:47:cf:f3:f9:92:0c:70:96:49:57:af:0d:71:78:
4e:43:fc:db:30:12:1f:57:f1:bf:da:82:1e:e3:98:
08:bd:a4:6e:1c:ae:07:d6:c0:02:dd:4e:5f:65:28:
24:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:AB:15:3A:0C:29:2F:B1:BE:04:51:BB:BA:25:98:EC:68:82:C1:A7
X509v3 Authority Key Identifier:
keyid:76:1C:05:75:3B:19:BC:DB:53:2F:DC:7F:6F:47:E9:7E:93:5B:A0:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dhwFdTsZvNtTL9x_b0fpfpNboKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5befa7-87fd-44a2-b1f4-3e8f575eddff/1/B6sVOgwpL7G-BFG7uiWY7GiCwac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5befa7-87fd-44a2-b1f4-3e8f575eddff/1/dhwFdTsZvNtTL9x_b0fpfpNboKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.236.192.0/22
Signature Algorithm: sha256WithRSAEncryption
60:c9:21:1e:99:09:47:16:df:69:21:d0:17:a8:f7:19:0c:a8:
79:56:f1:1c:1c:7f:7f:08:7d:e0:fd:0c:60:a0:c1:2d:4c:3a:
89:08:02:6a:5f:27:8e:ce:55:dc:32:67:c8:2e:4e:29:5d:55:
61:58:e1:7d:bd:8e:d0:08:0c:07:28:3f:f9:c7:5a:68:c0:26:
b3:08:9e:ec:c4:08:81:68:11:42:e1:2b:ec:fb:ec:f2:c4:c8:
16:55:8e:58:db:33:ec:e5:bc:5b:4e:d5:2a:91:8c:c0:94:c1:
ce:d8:c7:d3:39:4b:88:4b:e1:82:f8:da:d6:00:b0:6b:7a:47:
ea:3f:0e:04:b5:77:6c:82:e0:58:d7:1f:7e:b6:62:ae:25:c5:
59:80:24:82:94:f2:11:b4:4d:85:6c:12:53:0d:40:6c:9b:a8:
30:e6:64:56:ad:d4:22:f2:ac:dd:ec:40:72:6d:93:ac:0f:87:
c5:6e:5d:55:b8:2b:81:dc:b6:6d:7e:48:02:09:34:98:c5:80:
c8:b9:09:03:f2:eb:dc:de:92:d8:6b:4f:34:94:49:95:e0:b8:
b1:8d:a2:ac:34:85:0a:46:77:aa:c5:5d:65:86:09:f0:a0:a1:
ce:1b:54:e2:2b:22:fe:e4:be:33:b8:3c:2a:f5:42:ec:c1:6c:
22:84:76:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:35 2024 by rpki-client on console-ams.rpki-client.org