Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/2c3f53-1bab-4d32-8380-d59108b57214/1/zIbuTrsfuC5gpYoBBNGW3qh6744.roa
File: zIbuTrsfuC5gpYoBBNGW3qh6744.roa (raw, json)
Hash identifier: DToDaacOF0b37Tn6WA7AcOwQSjMxPWyQAOrk44hmVgo=
Subject key identifier: CC:86:EE:4E:BB:1F:B8:2E:60:A5:8A:01:04:D1:96:DE:A8:7A:EF:8E
Certificate issuer: /CN=0cc8128491db132ccfcd82ade700deb306b2161a
Certificate serial: 086BFA5E
Authority key identifier: 0C:C8:12:84:91:DB:13:2C:CF:CD:82:AD:E7:00:DE:B3:06:B2:16:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DMgShJHbEyzPzYKt5wDeswayFho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/2c3f53-1bab-4d32-8380-d59108b57214/1/zIbuTrsfuC5gpYoBBNGW3qh6744.roa
Signing time: Sat 01 Jan 2022 10:05:09 +0000
ROA not before: Sat 01 Jan 2022 10:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16030
IP address blocks: 185.32.136.0/22 maxlen: 22
185.78.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141294174 (0x86bfa5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cc8128491db132ccfcd82ade700deb306b2161a
Validity
Not Before: Jan 1 10:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc86ee4ebb1fb82e60a58a0104d196dea87aef8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fb:a9:3c:9b:9b:42:a6:0c:ba:56:73:15:1f:
84:80:94:be:40:22:b4:97:b1:e7:a6:7c:5c:2d:33:
a7:81:bb:b7:b4:62:ad:81:cf:7e:84:d4:24:d3:73:
b8:3b:1a:a7:f5:e6:0e:10:f4:b3:23:50:9f:22:30:
fa:c6:4d:fc:86:53:d4:f3:0c:e5:ea:08:37:59:cc:
2e:2a:26:c0:34:ae:fe:b6:c6:d7:78:87:47:a7:06:
c2:91:77:84:bf:82:c5:f2:1c:0e:49:6b:c6:52:ee:
1d:4d:5b:45:27:58:0b:42:53:2f:7d:89:49:50:19:
d5:ec:5e:fc:ae:82:3c:dc:a0:53:84:97:e5:78:9d:
81:2c:c3:94:f1:56:cb:22:92:a4:02:8b:35:d5:18:
79:35:ef:6d:63:89:3a:a7:68:b5:50:55:43:ec:a1:
5b:a3:41:fa:39:4d:85:27:65:22:9a:19:ad:55:bb:
c3:d9:1b:7f:d2:7b:50:ae:39:64:00:45:ce:8d:ba:
8b:4c:9c:c9:e9:47:37:5a:4e:a9:ce:1c:be:23:7f:
fb:25:ad:9b:25:2a:22:05:e6:2c:6f:7e:59:c3:e0:
95:38:7a:8e:c7:2a:aa:31:09:a7:ea:22:fe:68:c5:
58:01:83:6d:a3:37:c8:4c:00:27:2b:cc:ad:86:82:
55:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:86:EE:4E:BB:1F:B8:2E:60:A5:8A:01:04:D1:96:DE:A8:7A:EF:8E
X509v3 Authority Key Identifier:
keyid:0C:C8:12:84:91:DB:13:2C:CF:CD:82:AD:E7:00:DE:B3:06:B2:16:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DMgShJHbEyzPzYKt5wDeswayFho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2c3f53-1bab-4d32-8380-d59108b57214/1/zIbuTrsfuC5gpYoBBNGW3qh6744.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2c3f53-1bab-4d32-8380-d59108b57214/1/DMgShJHbEyzPzYKt5wDeswayFho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.136.0/22
185.78.0.0/22
Signature Algorithm: sha256WithRSAEncryption
41:ac:5b:58:89:84:2c:19:52:78:86:18:38:b7:d3:46:a1:6c:
0e:ba:67:5c:58:66:59:7a:f4:8b:5d:3b:ce:ba:b4:e3:f4:2a:
24:70:2e:f6:d9:61:e9:a5:14:ee:0c:3c:51:69:82:48:2e:f8:
5a:1e:59:0b:70:3c:a6:eb:14:62:d6:98:b4:1b:05:f1:fb:f7:
4c:80:25:92:4c:ac:d0:75:2e:a5:37:7c:19:d9:30:7d:9c:18:
58:be:f8:37:ec:a2:5b:1b:75:27:df:81:70:f8:b6:0d:71:f3:
a1:c3:37:de:ac:d7:7a:34:20:37:b6:ed:2d:08:c5:22:ef:76:
bc:9e:92:36:2c:df:6a:6a:8b:4e:3d:75:a8:83:75:ee:4e:ee:
f1:7e:71:a6:07:c6:d7:69:32:8d:b6:f1:cc:ed:a1:f4:e0:8a:
c3:64:c5:86:ba:26:f3:ab:5e:1c:4f:a8:fd:74:fe:7e:f1:78:
93:4c:45:02:0c:73:46:39:e6:ed:29:52:0c:f3:29:cb:e4:e1:
b3:43:d1:69:fc:e8:b9:1c:74:f1:61:5e:34:2a:30:3f:f8:fe:
09:49:20:61:d5:83:2d:8c:05:46:70:09:af:03:a1:17:33:5f:
fc:e8:1f:93:67:f8:a1:27:25:bf:93:06:1e:f3:21:c1:09:54:
af:4e:df:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:00 2024 by rpki-client on console-ams.rpki-client.org