Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/8a0dc4-e402-4118-93a2-a3d8257803e5/1/M8B9Vrz23em77I_H-VuyaXaXJWo.roa
File: M8B9Vrz23em77I_H-VuyaXaXJWo.roa (raw, json)
Hash identifier: pbGrTWXIQAs4FCgHxZJHEJLXHYnLbV1imof9NFW764o=
Subject key identifier: 33:C0:7D:56:BC:F6:DD:E9:BB:EC:8F:C7:F9:5B:B2:69:76:97:25:6A
Certificate issuer: /CN=546f05d9be28991c3e619a33149580e50cc86cc9
Certificate serial: 073420F7
Authority key identifier: 54:6F:05:D9:BE:28:99:1C:3E:61:9A:33:14:95:80:E5:0C:C8:6C:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VG8F2b4omRw-YZozFJWA5QzIbMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/8a0dc4-e402-4118-93a2-a3d8257803e5/1/M8B9Vrz23em77I_H-VuyaXaXJWo.roa
Signing time: Sat 01 Jan 2022 15:02:04 +0000
ROA not before: Sat 01 Jan 2022 15:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62356
IP address blocks: 185.39.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120856823 (0x73420f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546f05d9be28991c3e619a33149580e50cc86cc9
Validity
Not Before: Jan 1 15:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33c07d56bcf6dde9bbec8fc7f95bb2697697256a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fb:d9:5a:b3:a0:b2:e0:8d:af:66:f3:60:e1:
0c:05:43:1e:1d:10:b2:6e:a6:06:76:8c:a3:56:f0:
33:52:c5:bf:6b:8c:21:a7:16:f8:7d:69:67:0a:2a:
fa:98:c9:d2:08:a9:af:fc:4e:e5:1d:a5:79:06:f8:
cb:91:aa:d6:fb:7b:a3:07:99:a5:36:f4:ea:36:81:
67:8e:7b:07:0c:cf:10:3c:79:48:5b:54:6e:a1:bd:
73:4d:20:3c:35:a7:da:67:88:1b:de:0f:6c:b0:20:
19:b9:39:59:51:56:5c:c9:3b:32:9f:1a:a4:76:18:
77:55:ed:0f:c4:90:63:2b:68:4e:20:fe:ad:5f:94:
68:f6:8c:19:9b:ee:35:76:56:f2:39:9d:b0:ab:98:
a1:95:f3:b5:71:9e:7d:12:7e:64:69:8f:4e:64:68:
c8:1b:60:c4:c2:fc:0c:2e:42:3f:04:c0:4d:70:1d:
60:99:f1:19:23:13:e8:be:ac:9e:f8:10:e5:c0:db:
01:1a:a6:ef:24:90:b4:4a:77:1d:3c:8c:8e:fe:46:
49:c7:e5:ed:53:cb:70:ff:6c:14:7c:db:83:c0:af:
f9:0f:18:4c:77:b0:df:27:73:6f:a6:d2:2a:50:e3:
8f:41:c5:da:ce:77:c6:a5:f9:8c:9b:5a:32:75:5c:
49:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C0:7D:56:BC:F6:DD:E9:BB:EC:8F:C7:F9:5B:B2:69:76:97:25:6A
X509v3 Authority Key Identifier:
keyid:54:6F:05:D9:BE:28:99:1C:3E:61:9A:33:14:95:80:E5:0C:C8:6C:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VG8F2b4omRw-YZozFJWA5QzIbMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/8a0dc4-e402-4118-93a2-a3d8257803e5/1/M8B9Vrz23em77I_H-VuyaXaXJWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/8a0dc4-e402-4118-93a2-a3d8257803e5/1/VG8F2b4omRw-YZozFJWA5QzIbMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.4.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:04:4a:26:a2:90:49:eb:71:f8:f5:8e:4c:30:39:c3:f2:51:
13:77:3e:84:b7:83:03:91:e4:08:c1:dc:47:80:0b:ac:2a:33:
f2:db:4d:90:61:6e:80:a8:f2:dd:99:1f:39:ee:42:4f:41:7a:
79:f6:45:76:28:7b:59:3a:a8:a7:55:94:d6:1e:14:15:e8:78:
fa:20:57:02:0f:46:c3:b8:7d:eb:26:5a:14:34:fa:95:0b:6e:
f6:ac:f4:2e:22:a3:4a:72:3b:c9:ee:cb:0b:4b:9e:39:9c:a4:
d6:a6:71:8b:41:d2:6a:49:ff:f8:73:ea:04:7d:73:bd:1a:47:
6c:a2:d4:f7:74:6e:b8:7a:89:cb:8e:ee:f2:3b:52:03:f3:dc:
55:bd:74:97:7b:26:26:15:70:d1:4c:04:41:eb:0a:ea:4f:6a:
bc:f3:d7:63:23:d5:df:a2:d5:ed:c2:aa:ca:25:65:0c:af:f2:
ed:da:c9:e1:c0:e0:01:62:c9:03:b8:77:d5:05:56:e0:50:9a:
51:ff:61:43:e3:c6:5d:71:8a:11:39:0f:53:f9:76:68:de:8e:
4b:38:1f:19:9f:c9:d9:53:c0:57:be:ec:df:9c:cf:86:15:62:
5d:a1:60:b4:34:c8:5d:55:ac:46:70:fe:ae:bb:34:bb:3d:a8:
b7:b8:fb:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:43 2024 by rpki-client on console-ams.rpki-client.org