Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/tA8L1rsqbJkLwDyCkliMVzq5v-s.roa
File: tA8L1rsqbJkLwDyCkliMVzq5v-s.roa (raw, json)
Hash identifier: IbjXchXmrQ2PH1WVn5sCl2xDoN3Pl1gCYArOsZaLo5E=
Subject key identifier: B4:0F:0B:D6:BB:2A:6C:99:0B:C0:3C:82:92:58:8C:57:3A:B9:BF:EB
Certificate issuer: /CN=b7a86cc334c6e0eab83f252bd83eee956925ca40
Certificate serial: 15E8DB45
Authority key identifier: B7:A8:6C:C3:34:C6:E0:EA:B8:3F:25:2B:D8:3E:EE:95:69:25:CA:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t6hswzTG4Oq4PyUr2D7ulWklykA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/tA8L1rsqbJkLwDyCkliMVzq5v-s.roa
Signing time: Sat 01 Jan 2022 12:54:39 +0000
ROA not before: Sat 01 Jan 2022 12:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200962
IP address blocks: 185.90.72.0/22 maxlen: 22
185.90.73.0/24 maxlen: 24
185.90.74.0/24 maxlen: 24
185.90.75.0/24 maxlen: 24
185.90.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 367582021 (0x15e8db45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7a86cc334c6e0eab83f252bd83eee956925ca40
Validity
Not Before: Jan 1 12:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b40f0bd6bb2a6c990bc03c8292588c573ab9bfeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:dd:f6:eb:a0:0a:7a:39:86:df:75:df:3e:bb:
8e:1b:32:50:ab:c0:e4:17:58:6f:ea:49:9d:cd:f1:
87:ce:8c:66:2c:91:5d:05:d6:83:bf:d2:e9:a3:ce:
bc:53:4f:cf:d9:38:dd:d7:ec:16:2f:b8:04:7a:72:
ca:0e:9e:ad:38:ce:f1:13:3a:4e:2c:40:39:8a:a8:
a0:c5:c7:a2:f5:ff:3d:8b:1e:17:ab:66:ec:3b:ad:
67:da:b7:a4:09:b2:af:41:3c:f5:90:92:a1:95:b3:
11:72:66:bc:e8:1f:1c:f2:39:67:a4:ff:20:29:d7:
06:84:0f:62:73:3c:83:a6:a9:88:4a:00:52:f5:f1:
19:86:78:8e:8d:f9:84:1a:11:15:65:f2:3d:ea:f5:
0a:48:7d:9b:ec:fa:df:eb:46:7f:d3:67:43:e7:52:
42:e2:4f:97:b0:0b:d8:78:b2:df:f4:0d:c1:f5:fd:
b2:b1:86:ea:7c:95:8b:6b:0f:f4:9a:06:15:9e:90:
97:96:a5:db:44:ec:7c:ba:c7:be:da:14:fc:82:bd:
44:f4:d9:05:52:5b:12:bd:db:b6:d0:ee:af:44:16:
f7:69:8e:2e:c7:05:97:6b:43:cf:c0:19:03:6f:b5:
b1:d7:31:b5:89:39:75:4e:97:85:d2:da:09:eb:88:
de:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0F:0B:D6:BB:2A:6C:99:0B:C0:3C:82:92:58:8C:57:3A:B9:BF:EB
X509v3 Authority Key Identifier:
keyid:B7:A8:6C:C3:34:C6:E0:EA:B8:3F:25:2B:D8:3E:EE:95:69:25:CA:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t6hswzTG4Oq4PyUr2D7ulWklykA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/tA8L1rsqbJkLwDyCkliMVzq5v-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.72.0/22
Signature Algorithm: sha256WithRSAEncryption
92:e9:79:d1:f7:60:77:df:80:05:07:a7:81:55:43:21:12:11:
20:52:86:ae:51:91:8d:41:b1:a5:bd:74:ce:44:d0:6f:12:9a:
d8:f7:06:4a:74:9f:30:7f:13:45:ca:0e:e5:88:26:b9:07:5b:
90:97:c0:d1:d3:d2:99:ec:28:07:a6:7c:9f:64:81:01:70:2a:
5b:41:4b:43:45:3b:8d:7b:55:7e:eb:3a:9f:7f:85:9e:ce:de:
ce:c8:3e:17:58:64:1e:4b:82:98:c2:fb:1a:29:1f:82:fc:d0:
f7:01:a6:05:0a:a3:22:df:e7:73:6f:9e:20:7a:67:c8:55:bb:
16:4f:24:72:68:ae:56:86:91:89:5f:a8:6d:d2:36:ee:a4:24:
fd:b7:16:19:80:51:ab:a4:13:21:5f:64:e9:05:38:be:49:6d:
e2:85:93:28:65:31:22:b3:b4:1f:1e:3a:26:74:b2:ce:60:67:
0f:14:89:ba:67:b7:fc:ac:d4:fa:a7:d5:8d:20:6d:b8:26:82:
3e:d1:e7:53:e1:7a:02:5a:7e:f2:10:6d:85:01:31:a7:69:a6:
57:6b:ef:e2:2e:fb:26:a8:ca:2e:46:ec:fe:d1:93:3b:bb:29:
21:c6:26:60:df:28:d1:a1:57:db:74:6c:67:4d:a5:68:48:d0:
67:92:9b:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:01 2024 by rpki-client on console-ams.rpki-client.org