Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/6D0K8Yb3GoVmXOI7fVssDqVQnl8.roa
File: 6D0K8Yb3GoVmXOI7fVssDqVQnl8.roa (raw, json)
Hash identifier: i0TBUcjKBtpHVmf50Gm3hCgKeGB5AXQjgBykB7cLmaw=
Subject key identifier: E8:3D:0A:F1:86:F7:1A:85:66:5C:E2:3B:7D:5B:2C:0E:A5:50:9E:5F
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 13E071DD
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/6D0K8Yb3GoVmXOI7fVssDqVQnl8.roa
Signing time: Mon 21 Feb 2022 07:49:06 +0000
ROA not before: Mon 21 Feb 2022 07:49:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60025
IP address blocks: 185.36.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 333476317 (0x13e071dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Feb 21 07:49:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e83d0af186f71a85665ce23b7d5b2c0ea5509e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e3:2e:fd:b2:ed:e1:3a:ec:23:83:71:3b:f2:
bd:5a:8c:3c:5e:e5:69:6f:dd:76:73:4f:15:3b:e9:
32:72:64:50:ab:a9:c1:11:d8:75:6e:57:a6:c4:9f:
f6:33:44:09:86:cb:7b:29:7b:f4:65:a9:35:4f:43:
79:87:d6:1b:f5:66:ed:02:43:32:3a:c2:ae:e5:0b:
e1:51:7c:bd:33:7c:20:6c:ca:27:36:c1:43:b1:4c:
13:f2:5f:be:ba:af:52:d6:8d:35:37:8b:dd:6d:3e:
ae:c9:95:1f:79:14:22:d3:15:ab:5a:97:46:ea:eb:
d3:96:83:81:41:04:75:cd:1b:7b:3e:97:8f:cb:88:
d8:17:e1:55:e1:e7:6a:5b:fc:88:9e:fa:c3:a6:8c:
27:49:a1:c1:e3:ea:be:74:89:b3:eb:30:7d:ea:f8:
ed:d3:fa:bf:bf:58:40:9d:96:4c:bb:60:e7:08:34:
1c:0d:5f:04:45:43:f8:a6:db:8f:8c:0a:69:e7:a1:
60:20:fd:d1:81:da:9d:bd:18:fa:01:d0:16:bf:a3:
d9:5f:aa:49:7e:cc:05:82:36:bc:73:3f:f4:be:a0:
13:66:06:ce:f8:f2:d4:7e:5e:ec:81:f9:73:05:e7:
1e:e9:0a:e2:c6:11:28:40:2c:74:6c:87:94:8e:ac:
32:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:3D:0A:F1:86:F7:1A:85:66:5C:E2:3B:7D:5B:2C:0E:A5:50:9E:5F
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/6D0K8Yb3GoVmXOI7fVssDqVQnl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.192.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:88:af:24:e9:8f:f3:d0:81:c9:99:ed:39:70:56:34:5f:5c:
5e:7c:f1:f5:27:8a:02:c8:b7:ac:5d:b1:8e:b7:9d:5a:bb:9a:
ff:02:56:f2:61:d9:7d:08:e4:58:6f:5d:94:f5:2a:a7:b3:9a:
1f:91:76:19:2b:7b:6a:54:af:b3:26:b6:81:e5:93:1f:47:01:
b5:3b:cc:d2:9e:c1:16:a3:1d:90:e3:df:84:3b:ec:63:12:18:
58:87:32:a5:3e:97:4c:cd:26:61:2a:fb:ff:b3:95:92:8a:b2:
76:d3:6a:51:b0:63:f2:f9:00:e9:29:86:11:29:a2:73:ad:f8:
86:49:0e:7f:63:fa:06:9f:c8:ae:cb:f1:24:d4:af:3d:96:cf:
e3:ed:75:cd:ff:b0:70:5c:b2:24:ed:3b:0d:52:13:80:49:b7:
fa:55:dc:93:ab:73:6e:94:68:1a:41:94:64:2a:81:3a:98:c9:
0e:e1:27:94:45:00:17:82:2d:f0:f6:21:54:7c:a4:8e:6a:de:
fe:fb:95:bb:cd:de:d9:24:cf:db:2e:a8:33:38:65:c1:49:cd:
c5:73:51:8e:0f:6f:43:88:b2:0e:2c:94:97:1e:6c:56:b4:c6:
51:17:4a:9e:bc:d8:1b:2d:fe:92:bb:16:25:81:59:3e:94:88:
cb:b1:62:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org