Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/2bf00b-bfbc-4f6b-a13e-f10f73a9ecb3/1/H4iXxsDUHBaVL1s5mkOB-bghuxU.roa
File: H4iXxsDUHBaVL1s5mkOB-bghuxU.roa (raw, json)
Hash identifier: YOEKiWRXOLodpXG4TbC7rACRLP3fDyX7+xBHRdejSMU=
Subject key identifier: 1F:88:97:C6:C0:D4:1C:16:95:2F:5B:39:9A:43:81:F9:B8:21:BB:15
Certificate issuer: /CN=36b55fb34d29f962545132a025b52644fdffbf6f
Certificate serial: 02DA4336
Authority key identifier: 36:B5:5F:B3:4D:29:F9:62:54:51:32:A0:25:B5:26:44:FD:FF:BF:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NrVfs00p-WJUUTKgJbUmRP3_v28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/2bf00b-bfbc-4f6b-a13e-f10f73a9ecb3/1/H4iXxsDUHBaVL1s5mkOB-bghuxU.roa
Signing time: Sat 01 Jan 2022 04:59:11 +0000
ROA not before: Sat 01 Jan 2022 04:59:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.206.123.0/24 maxlen: 24
2a10:ca00:4::/48 maxlen: 48
2a10:ca00:2::/48 maxlen: 48
2a10:ca00:3::/48 maxlen: 48
2a10:ca00:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47858486 (0x2da4336)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36b55fb34d29f962545132a025b52644fdffbf6f
Validity
Not Before: Jan 1 04:59:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f8897c6c0d41c16952f5b399a4381f9b821bb15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2d:29:fd:b6:65:7d:dd:26:36:37:27:a1:26:
05:10:ed:13:0d:db:07:8f:f1:cf:2a:39:43:7f:b1:
19:ca:d1:2d:7b:5e:8e:ff:aa:08:84:6e:3e:f1:a8:
63:1a:f9:06:ec:dc:df:6b:f8:da:42:41:b0:35:f9:
63:3b:f0:8a:a4:21:3d:27:f2:e9:9b:00:3e:25:33:
71:fb:82:25:92:fd:7d:e9:26:a4:08:fa:49:c8:af:
f0:a9:3d:b8:55:ba:a7:a0:fc:20:13:2d:cd:55:51:
f5:9a:67:4e:d8:64:2c:1d:a1:ca:b2:4f:a1:0e:dc:
da:df:21:60:04:8e:14:be:81:de:39:a5:52:7c:79:
e1:3c:43:3b:28:8d:54:a7:d0:4e:1e:c1:2d:99:e4:
81:92:b4:76:39:6f:e3:d6:fe:17:ee:e4:26:3f:40:
5a:ee:35:e1:c9:17:39:25:f0:10:e8:3f:18:2d:85:
c4:0d:72:89:98:02:d5:93:82:0a:8f:68:d6:5d:85:
de:90:6e:77:d6:ca:96:4a:5d:04:05:a6:e9:85:d9:
b8:37:7b:a1:4d:d0:1b:25:73:1e:34:ea:38:d4:2a:
51:0e:a1:3c:4d:52:38:7e:5d:4a:71:4a:66:2a:86:
6c:a3:6a:8a:a1:70:9f:30:12:77:da:ca:c9:17:8a:
ac:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:88:97:C6:C0:D4:1C:16:95:2F:5B:39:9A:43:81:F9:B8:21:BB:15
X509v3 Authority Key Identifier:
keyid:36:B5:5F:B3:4D:29:F9:62:54:51:32:A0:25:B5:26:44:FD:FF:BF:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NrVfs00p-WJUUTKgJbUmRP3_v28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2bf00b-bfbc-4f6b-a13e-f10f73a9ecb3/1/H4iXxsDUHBaVL1s5mkOB-bghuxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2bf00b-bfbc-4f6b-a13e-f10f73a9ecb3/1/NrVfs00p-WJUUTKgJbUmRP3_v28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.123.0/24
IPv6:
2a10:ca00:1::-2a10:ca00:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a8:e8:5f:2a:84:61:a7:6e:48:c3:9e:ff:67:5f:94:b0:a0:9d:
b9:b7:cf:87:82:02:c3:1a:e0:38:e4:b4:23:1a:29:a6:6f:8a:
51:26:b9:9e:ca:e0:41:cb:2b:55:49:aa:7f:b9:45:05:41:ed:
b1:a8:35:31:19:9e:55:91:99:5e:16:0c:bb:c8:1c:b0:e5:d9:
60:ca:b5:eb:be:58:2a:8e:ce:84:27:d4:c8:f0:fc:03:eb:9c:
85:34:32:04:49:6a:94:b5:25:69:ec:7d:0a:26:9d:cd:0b:58:
c9:2e:eb:03:ca:26:41:8c:77:9e:7c:84:1f:39:2f:d4:af:66:
11:d0:b4:74:da:52:06:7b:3b:63:f3:6e:fc:89:43:97:c0:2b:
83:c0:68:cd:01:fb:cf:81:fa:59:37:26:9d:1e:d5:5f:0e:a1:
7d:c3:15:f7:af:ff:0b:87:bb:65:2f:8b:64:2c:e2:ed:d4:11:
ba:5f:43:9f:21:53:d3:ce:5f:6d:c9:12:5f:52:09:91:fa:eb:
f4:53:59:8c:61:4a:6c:e0:78:5b:46:e6:83:df:a9:18:01:67:
b4:e8:ea:d9:cc:d1:36:67:d5:f7:3e:bb:50:53:aa:68:7d:b4:
58:dc:82:c5:7b:4c:f6:90:13:5a:a6:92:7a:c8:73:0a:34:22:
8a:15:81:e5
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:42 2023 by rpki-client on console-ams.rpki-client.org