Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/B6U3Hw_IfzI6gqRUS14Q-7h84R4.roa
File: B6U3Hw_IfzI6gqRUS14Q-7h84R4.roa (raw, json)
Hash identifier: k7sOBseYUzTUUvzZqNzL50M9Xd/5iOHcuS90CL9IK5g=
Subject key identifier: 07:A5:37:1F:0F:C8:7F:32:3A:82:A4:54:4B:5E:10:FB:B8:7C:E1:1E
Certificate issuer: /CN=dfa7e00738d3f7b8de48de38627567768e2f89b6
Certificate serial: 1398DE3D
Authority key identifier: DF:A7:E0:07:38:D3:F7:B8:DE:48:DE:38:62:75:67:76:8E:2F:89:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/36fgBzjT97jeSN44YnVndo4vibY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/B6U3Hw_IfzI6gqRUS14Q-7h84R4.roa
Signing time: Sat 01 Jan 2022 12:02:21 +0000
ROA not before: Sat 01 Jan 2022 12:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199987
IP address blocks: 185.40.32.0/23 maxlen: 23
185.40.35.0/24 maxlen: 24
185.40.32.0/22 maxlen: 22
185.40.34.0/24 maxlen: 24
2a01:4ba0::/29 maxlen: 29
2a01:4ba0:2::/48 maxlen: 48
2a01:4ba0::/48 maxlen: 48
2a01:4ba0:3::/48 maxlen: 48
2a01:4ba0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 328785469 (0x1398de3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfa7e00738d3f7b8de48de38627567768e2f89b6
Validity
Not Before: Jan 1 12:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07a5371f0fc87f323a82a4544b5e10fbb87ce11e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8e:de:dd:06:28:6a:1c:f4:34:10:33:7d:16:
2b:fd:b3:e8:e0:ae:a1:b7:20:73:91:03:93:1d:a7:
3c:47:e2:33:94:88:7d:ae:18:08:a6:2f:00:e5:1e:
3c:a2:e1:93:cd:57:d3:0d:ad:f7:b3:9a:fc:15:72:
6c:3a:bc:11:d9:0a:ea:76:88:9b:9f:12:b9:42:0b:
3f:28:3e:71:b7:bd:e9:dd:54:01:f8:08:9d:49:de:
a9:5c:d6:ab:87:da:45:e2:36:2c:5b:d3:5b:d5:02:
4f:b3:88:6b:7f:c6:49:e1:9e:49:b7:97:a8:1a:43:
57:ff:6c:5f:67:f8:69:cb:d3:ed:d2:79:5b:44:01:
3a:02:23:7c:df:c9:bd:09:f6:f0:50:75:67:e3:4a:
35:97:43:e1:e0:fe:87:67:a5:93:93:76:69:9a:6d:
24:a3:3a:0c:66:b1:5f:3a:5f:d9:e9:ac:89:7d:6d:
95:e9:b2:46:d2:e1:2c:b4:51:5b:3d:bb:91:3a:1e:
62:2b:04:09:4b:1f:ea:6b:8d:92:bd:f4:ee:12:3b:
b9:6d:04:37:6b:0c:99:d3:cf:b8:93:5b:0f:9f:99:
c7:c2:b3:65:1a:97:05:89:7e:7d:b4:06:50:c4:af:
91:a8:7c:6c:22:1d:c4:a1:6e:ea:c5:d0:d3:76:1b:
e1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A5:37:1F:0F:C8:7F:32:3A:82:A4:54:4B:5E:10:FB:B8:7C:E1:1E
X509v3 Authority Key Identifier:
keyid:DF:A7:E0:07:38:D3:F7:B8:DE:48:DE:38:62:75:67:76:8E:2F:89:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/36fgBzjT97jeSN44YnVndo4vibY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/B6U3Hw_IfzI6gqRUS14Q-7h84R4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/36fgBzjT97jeSN44YnVndo4vibY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.32.0/22
IPv6:
2a01:4ba0::/29
Signature Algorithm: sha256WithRSAEncryption
23:bc:b7:ae:01:56:2e:64:58:2f:46:a0:a1:ce:59:07:5a:4e:
21:93:b9:6d:87:ca:41:af:d3:95:5f:b6:11:f7:70:ad:f5:e1:
4b:4c:bf:77:13:df:48:a3:8e:4f:e9:b0:28:da:e4:ad:fa:0b:
df:e6:5f:f4:c3:98:63:04:71:77:9f:48:5e:78:87:fb:97:47:
c3:af:a9:9d:8c:a9:6c:5c:2e:b2:10:68:c7:75:e5:92:50:08:
7a:b4:c0:56:61:fd:d9:3d:32:e4:06:b0:42:89:9e:0d:5e:12:
d9:2c:c2:0c:37:78:2d:96:e7:3a:0e:9f:0e:c5:aa:c6:92:0a:
5a:0f:4e:cc:6c:45:ee:2f:91:7b:46:19:44:23:06:5a:d6:ac:
f6:ca:0b:c8:c7:70:51:de:7a:e9:72:8d:24:00:87:bf:3a:8c:
bf:ae:dd:ea:aa:83:9d:95:85:b6:22:38:84:7f:90:6e:99:a2:
a8:b0:fa:27:72:88:58:f9:2c:a3:55:4c:d9:83:57:c2:d6:9e:
45:81:d7:f8:66:b6:fa:31:a3:a3:60:24:d3:a3:63:15:48:97:
de:09:ac:85:66:93:73:f0:2e:6c:33:fb:13:35:d9:79:ae:60:
ad:f0:dd:0c:6f:82:5d:e9:63:c2:06:52:98:8d:87:e1:82:56:
b6:d8:86:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:00 2023 by rpki-client on console-fra.rpki-client.org