Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/1yIQewO0-wUImyL7HSXJkX_ZaC0.roa
File: 1yIQewO0-wUImyL7HSXJkX_ZaC0.roa (raw, json)
Hash identifier: MR3c6oyDkAx4lxtPIeV7m4JaV+iIzfk719CPZ/QX1PY=
Subject key identifier: D7:22:10:7B:03:B4:FB:05:08:9B:22:FB:1D:25:C9:91:7F:D9:68:2D
Certificate issuer: /CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Certificate serial: 0A6522CE
Authority key identifier: 14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/1yIQewO0-wUImyL7HSXJkX_ZaC0.roa
Signing time: Sat 01 Jan 2022 07:53:12 +0000
ROA not before: Sat 01 Jan 2022 07:53:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208035
IP address blocks: 185.35.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174400206 (0xa6522ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Validity
Not Before: Jan 1 07:53:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d722107b03b4fb05089b22fb1d25c9917fd9682d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a8:cd:a6:0a:e2:95:f2:28:65:17:04:d1:ff:
46:84:b7:93:1f:50:7c:fc:67:ab:fb:6a:a4:bb:55:
c9:dc:06:1e:99:ac:52:8b:7b:c7:20:59:39:8b:8d:
03:3c:f8:29:51:69:95:7e:ea:74:60:4b:f5:b0:59:
c2:32:80:ca:9c:12:b7:d7:b6:1b:f9:27:96:d1:cd:
69:8b:4e:4d:96:f7:dc:64:bf:16:19:68:bb:a2:ee:
9a:16:95:c4:1e:b9:be:04:fa:30:09:bb:d3:d8:7d:
3d:e1:0b:97:45:3b:07:39:c5:79:df:11:7b:4d:09:
5f:4e:79:ec:86:d3:f5:16:4a:f6:88:13:ec:c4:84:
50:65:84:41:77:21:6f:89:2f:a8:20:53:4a:cf:c6:
91:b3:87:b5:46:83:67:88:fe:0f:e4:d2:c0:9d:75:
12:3c:c0:f7:e3:e6:fd:ac:ae:a7:b0:15:60:b0:4a:
b0:78:ee:cb:fc:e7:f1:c1:0b:27:5d:b6:f2:dc:68:
4d:8d:e6:e1:62:8c:13:4b:d5:43:c5:bf:e1:b9:4a:
32:e8:50:b0:a3:a5:87:56:87:42:f1:0f:2d:82:dd:
e0:ae:81:1c:ac:95:1b:15:47:6e:0a:a1:2d:e3:f3:
7d:01:d8:b6:5b:d1:91:7f:98:e7:54:2c:23:15:57:
db:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:22:10:7B:03:B4:FB:05:08:9B:22:FB:1D:25:C9:91:7F:D9:68:2D
X509v3 Authority Key Identifier:
keyid:14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/1yIQewO0-wUImyL7HSXJkX_ZaC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.56.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:7c:97:0d:42:97:21:09:ff:59:77:b6:78:ad:d2:27:34:f5:
ed:9b:60:27:45:c4:a9:7d:81:31:de:22:11:33:ad:ae:13:a3:
ba:f8:b8:ac:62:d4:6a:73:56:02:36:a4:15:13:1d:3f:58:8e:
0d:53:4e:89:b2:a2:ee:fa:56:cb:e6:02:25:6c:84:0d:bd:a0:
5f:00:19:ab:88:71:4b:98:0e:01:cc:3a:17:a1:66:8e:e9:5e:
d5:39:cb:44:1a:ec:0a:d6:38:84:0e:e9:73:ca:00:79:6a:ac:
19:9b:47:11:82:32:27:a3:f7:b8:79:ca:8b:96:7f:79:b6:ae:
05:0a:5c:e2:4f:6d:9b:85:d9:4a:90:89:dd:0a:01:8b:5d:65:
f5:58:4e:86:e5:d1:53:ad:52:7b:25:33:68:55:28:5d:07:14:
54:fd:d1:44:94:4e:98:bb:9e:2e:52:73:df:e3:a4:6c:89:97:
c8:00:5a:8c:68:10:49:36:99:b7:99:aa:8a:82:2b:87:65:52:
85:aa:42:1f:38:87:48:d9:36:f4:09:c0:95:81:1a:bb:2c:78:
83:58:d0:95:88:33:55:7e:0e:9f:b6:9d:62:7a:49:13:52:92:
36:df:58:58:a1:24:84:42:ef:0f:61:4f:d3:1d:0d:77:d3:55:
8a:bb:5d:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:56 2024 by rpki-client on console-ams.rpki-client.org