Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ac86da-cdaa-4afc-8d4a-bfa872c2f392/1/u9GVsARnCfDQLyDp0hsiWMaFl-I.roa
File: u9GVsARnCfDQLyDp0hsiWMaFl-I.roa (raw, json)
Hash identifier: 5I5lRxYpF3f6tY6dxqzY0u/A+bSjDJz3LG0G7Ffn/pQ=
Subject key identifier: BB:D1:95:B0:04:67:09:F0:D0:2F:20:E9:D2:1B:22:58:C6:85:97:E2
Certificate issuer: /CN=6f7be3ad1f7c5950cd46d48bb1f7ea7750afa81e
Certificate serial: 9687
Authority key identifier: 6F:7B:E3:AD:1F:7C:59:50:CD:46:D4:8B:B1:F7:EA:77:50:AF:A8:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3vjrR98WVDNRtSLsffqd1CvqB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ac86da-cdaa-4afc-8d4a-bfa872c2f392/1/u9GVsARnCfDQLyDp0hsiWMaFl-I.roa
Signing time: Mon 04 Apr 2022 21:54:21 +0000
ROA not before: Mon 04 Apr 2022 21:54:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20643
IP address blocks: 185.112.28.0/22 maxlen: 22
2a06:6240::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38535 (0x9687)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f7be3ad1f7c5950cd46d48bb1f7ea7750afa81e
Validity
Not Before: Apr 4 21:54:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbd195b0046709f0d02f20e9d21b2258c68597e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b5:84:a6:38:6b:32:cc:ea:72:1e:12:bd:e7:
e8:d7:ed:3b:5a:fb:70:65:fb:18:e5:5d:f9:42:4b:
36:08:38:8a:a0:cb:ab:d8:fd:61:20:41:c9:09:f5:
7a:cc:b4:8f:50:07:03:57:aa:63:81:ce:fc:4d:07:
8a:55:d2:52:4e:e6:3e:9b:06:38:ce:1d:44:6d:58:
d6:97:6d:94:03:e6:35:3a:aa:42:86:fd:39:74:ae:
a2:3b:e8:d8:1d:2a:aa:95:71:d6:12:47:b7:b0:32:
e5:c1:f2:53:6e:47:d8:85:62:57:fc:a6:28:71:c4:
94:74:4b:ad:07:fc:69:39:89:a6:13:9f:cf:d8:42:
44:ab:47:a3:d2:ad:57:2d:f3:4e:68:a2:d2:41:58:
ec:28:1c:9d:df:02:b5:f4:82:49:41:bb:2b:b4:30:
b3:76:79:ac:e3:51:8d:4f:78:9f:14:b0:a9:61:46:
45:ca:cd:12:2f:50:49:5d:92:c7:9d:ff:67:0c:e7:
c8:72:c3:fb:f5:14:ac:d7:9a:62:3e:88:c2:e5:5f:
b3:47:53:d0:85:1f:f9:cd:d8:39:5b:e6:a9:0b:d6:
1e:75:3f:1d:c7:76:ce:17:d1:b5:9f:cc:f0:57:98:
fb:69:43:a8:07:47:18:73:43:6e:a9:92:b8:cf:7b:
5a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D1:95:B0:04:67:09:F0:D0:2F:20:E9:D2:1B:22:58:C6:85:97:E2
X509v3 Authority Key Identifier:
keyid:6F:7B:E3:AD:1F:7C:59:50:CD:46:D4:8B:B1:F7:EA:77:50:AF:A8:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3vjrR98WVDNRtSLsffqd1CvqB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ac86da-cdaa-4afc-8d4a-bfa872c2f392/1/u9GVsARnCfDQLyDp0hsiWMaFl-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ac86da-cdaa-4afc-8d4a-bfa872c2f392/1/b3vjrR98WVDNRtSLsffqd1CvqB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.28.0/22
IPv6:
2a06:6240::/29
Signature Algorithm: sha256WithRSAEncryption
8d:eb:64:06:b0:4f:e7:de:56:8f:3e:90:ce:83:fc:0d:66:7c:
06:f8:83:a8:69:97:b3:94:ca:e4:0a:2e:a2:8f:f1:a3:5c:f3:
ab:55:c0:79:cc:74:7c:3f:df:72:8d:94:8a:9f:7d:2f:f4:ee:
98:fb:c3:65:ef:63:d3:4c:19:f7:21:e8:0c:41:27:77:4a:dd:
6e:12:f6:7d:b8:a3:24:c4:6c:d7:aa:d4:48:1b:03:97:2e:ed:
40:8e:1c:a7:b3:71:76:21:b0:49:22:1a:df:9b:50:fa:4f:11:
1b:a7:f1:e6:11:41:b6:7e:bb:b6:cb:89:af:42:11:fe:b7:4b:
76:2a:8f:52:e4:73:01:f1:05:d8:2b:da:7c:7c:04:c3:87:5b:
43:8d:5d:c6:83:66:13:b8:75:03:23:65:3e:ad:ae:f8:49:4f:
8f:e5:2e:67:90:d4:8e:7e:46:d5:d0:75:31:ad:76:c3:99:65:
90:21:05:30:8b:48:df:ac:35:aa:48:31:42:4c:34:10:a8:85:
d7:cf:f6:bd:05:28:e3:a5:99:df:ba:da:15:11:e7:00:01:eb:
f2:4b:f8:88:c5:b4:97:bf:93:02:9c:19:67:0a:8e:96:a3:b9:
be:95:40:8d:06:d2:ae:00:b6:5c:e6:f4:49:99:ae:81:2b:52:
4d:a3:88:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:09 2024 by rpki-client on console-ams.rpki-client.org