Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/IT-DRJsil0y3O6V8rTms0fWgxOw.roa
File: IT-DRJsil0y3O6V8rTms0fWgxOw.roa (raw, json)
Hash identifier: E2OdirJBm8XA8KcObaoCEjpe0WL4jHJYT6YaixPi+0g=
Subject key identifier: 21:3F:83:44:9B:22:97:4C:B7:3B:A5:7C:AD:39:AC:D1:F5:A0:C4:EC
Certificate issuer: /CN=7c6dc7395815af045048f4ce3910d04008ff3a7c
Certificate serial: 0371EEBC
Authority key identifier: 7C:6D:C7:39:58:15:AF:04:50:48:F4:CE:39:10:D0:40:08:FF:3A:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fG3HOVgVrwRQSPTOORDQQAj_Onw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/IT-DRJsil0y3O6V8rTms0fWgxOw.roa
Signing time: Sat 01 Jan 2022 12:56:43 +0000
ROA not before: Sat 01 Jan 2022 12:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6724
IP address blocks: 185.132.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57798332 (0x371eebc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c6dc7395815af045048f4ce3910d04008ff3a7c
Validity
Not Before: Jan 1 12:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=213f83449b22974cb73ba57cad39acd1f5a0c4ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:fd:e9:3b:35:f2:4e:f8:94:60:74:30:a7:
64:d1:c6:c5:f0:2a:60:6d:c6:54:ca:10:11:55:45:
8f:2b:13:e6:39:84:a4:44:c4:1a:dc:da:e2:ae:6f:
5d:35:21:b8:51:15:2d:6e:d7:77:2c:92:de:e0:c6:
0e:db:ae:3a:57:50:42:b3:64:11:01:2d:c8:f7:1d:
19:8a:8b:87:9e:0d:cc:72:0b:51:75:ef:67:27:99:
48:79:8b:1f:8e:5b:b0:84:e5:b6:a6:d0:f2:c7:eb:
fb:3b:61:99:b0:e1:9a:c2:6c:8f:80:db:c5:ed:fc:
56:8a:4f:07:b3:9c:68:a2:a6:cb:71:ee:cd:90:6a:
2e:a4:9c:17:29:8b:d6:e2:63:c8:c4:96:44:96:99:
06:c4:65:84:1a:68:b6:75:ae:4f:72:c4:52:bf:72:
2b:6b:47:bf:eb:0c:57:dc:5e:e1:93:88:86:9d:26:
d7:f9:ba:69:2f:17:b8:87:40:9a:b0:c6:5c:de:ba:
4b:5d:e5:38:93:b8:67:dd:98:6e:0e:4d:c8:d4:92:
ac:46:b3:5a:9d:b1:c3:97:77:bb:88:e5:8c:80:b3:
a0:75:51:a4:4a:dc:35:21:67:04:93:68:7f:90:cb:
0c:da:e0:7b:8d:48:34:b7:b2:86:2c:44:7c:b6:12:
12:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:3F:83:44:9B:22:97:4C:B7:3B:A5:7C:AD:39:AC:D1:F5:A0:C4:EC
X509v3 Authority Key Identifier:
keyid:7C:6D:C7:39:58:15:AF:04:50:48:F4:CE:39:10:D0:40:08:FF:3A:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fG3HOVgVrwRQSPTOORDQQAj_Onw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/IT-DRJsil0y3O6V8rTms0fWgxOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/fG3HOVgVrwRQSPTOORDQQAj_Onw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.46.0/24
Signature Algorithm: sha256WithRSAEncryption
80:78:9e:c1:58:06:18:7f:ed:c6:a1:d9:9d:c8:98:ad:f0:cd:
82:ae:0f:84:e7:e0:f1:0d:68:51:a8:e3:e8:48:79:69:59:e2:
52:c6:df:2a:36:6f:4c:90:04:96:be:e3:a2:3a:c4:96:79:43:
5b:6b:31:0a:f2:0e:17:f8:a8:1b:7b:fc:bc:4a:31:e7:70:95:
52:00:01:e0:33:9f:64:83:47:ea:46:6b:64:c4:e7:b7:14:10:
b1:c1:25:5e:79:66:46:17:35:c5:83:7b:cd:93:30:2c:8a:d5:
9d:08:c9:b4:c6:2a:b1:0e:a2:47:49:07:e6:9b:bf:37:21:fb:
37:6a:9f:83:ee:fd:d9:ba:3b:68:a6:82:33:0e:45:eb:c3:b9:
f6:25:1e:ed:d9:bf:0f:80:a9:0d:58:ab:68:74:09:76:32:f6:
29:b0:a7:18:2f:21:13:0c:c4:74:3e:af:af:49:67:42:f2:62:
dc:89:d7:86:ce:9b:8b:91:f2:3c:24:b6:32:b6:fb:b7:29:7d:
9e:15:27:45:ab:14:9c:f4:63:09:71:5d:66:d1:36:37:71:a0:
a8:cb:f2:28:ef:63:7f:89:a5:d7:0a:52:d6:5b:27:a7:57:de:
ca:87:bb:68:32:cc:e6:69:dd:a3:d2:ff:8b:00:3b:ff:e9:a8:
ec:3e:70:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:46 2024 by rpki-client on console-ams.rpki-client.org