Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/S6yHsnwOYApHa-FB4COmzJdqf5c.roa
File: S6yHsnwOYApHa-FB4COmzJdqf5c.roa (raw, json)
Hash identifier: fN4oHYIvNvlPMG0EuUBH+xPhcHa4S+BTgANPVE9ip44=
Subject key identifier: 4B:AC:87:B2:7C:0E:60:0A:47:6B:E1:41:E0:23:A6:CC:97:6A:7F:97
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 133D6083
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/S6yHsnwOYApHa-FB4COmzJdqf5c.roa
Signing time: Sat 01 Jan 2022 04:03:08 +0000
ROA not before: Sat 01 Jan 2022 04:03:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213136
IP address blocks: 185.218.4.0/24 maxlen: 24
185.218.4.0/23 maxlen: 23
185.218.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 322789507 (0x133d6083)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 1 04:03:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bac87b27c0e600a476be141e023a6cc976a7f97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:da:fa:0f:ea:dd:24:c8:5d:6d:67:59:d1:fc:
69:8a:18:ad:81:73:69:15:00:9c:da:e0:5c:e7:5d:
32:ff:14:19:06:d6:25:37:a4:6f:64:ad:2b:ac:4a:
f9:f5:b8:37:35:de:71:50:43:50:fa:78:f5:b7:7b:
aa:63:95:27:b7:55:21:02:f7:30:07:0e:ba:11:f1:
b7:98:f3:a6:e8:2b:8d:54:2f:8c:db:cf:99:a0:16:
3c:a0:2d:75:87:73:88:17:49:1e:2c:93:d9:e0:e7:
8d:98:84:3c:a5:82:85:e3:b6:83:ce:ba:02:a3:5b:
69:58:f9:2e:3b:f4:38:e5:a2:1c:2b:b1:3b:4c:aa:
5a:ed:0c:89:96:16:8f:37:8f:4a:20:72:da:4c:ef:
a5:5e:24:9c:8e:44:73:aa:50:db:bb:f4:4f:0d:cc:
b3:18:db:0f:63:02:4e:af:23:74:eb:ed:82:dc:6b:
e2:a4:a9:db:4b:ca:33:13:74:08:4e:a2:89:f3:71:
82:21:59:61:9d:38:8e:aa:45:e1:f3:de:3a:78:98:
87:03:b4:78:d1:97:5b:a9:49:c2:e0:45:b8:f0:e5:
aa:f1:6a:d1:4b:5c:e0:15:85:65:2d:eb:31:b1:7f:
c2:f8:df:5d:0a:f6:e4:4f:d9:da:8c:ed:65:84:67:
25:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:AC:87:B2:7C:0E:60:0A:47:6B:E1:41:E0:23:A6:CC:97:6A:7F:97
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/S6yHsnwOYApHa-FB4COmzJdqf5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.4.0/23
Signature Algorithm: sha256WithRSAEncryption
82:e8:b5:9c:04:3d:2f:45:72:d9:95:44:45:26:44:69:0e:2b:
20:ad:cd:f2:44:fc:f1:8d:fb:84:73:5a:80:cd:62:3d:40:7f:
9d:2a:3e:f6:1b:7f:39:8c:b0:98:7e:b6:f6:57:04:48:28:92:
74:fb:24:83:b9:b4:02:d8:15:97:21:32:9f:84:ae:92:9e:79:
e9:6b:91:b0:82:9f:a4:43:66:4b:a2:7d:2e:02:05:8d:44:ed:
21:a3:60:c5:41:70:07:78:f6:5e:88:3c:da:7d:e4:11:e9:b7:
3f:78:dc:f5:76:6d:37:32:fe:a6:9d:1d:33:be:fe:36:b8:d8:
68:24:d3:99:10:d0:17:95:a0:85:c3:d2:71:ac:69:a8:46:4e:
54:60:08:66:cc:b2:6c:ae:0c:45:53:ca:41:52:87:09:b9:de:
90:73:22:ab:91:8e:87:c0:82:9e:7c:76:26:36:7b:39:d4:b3:
ad:73:e1:d3:92:64:44:29:4c:d3:1b:80:07:40:63:86:0d:8c:
a2:53:b1:c0:99:e0:45:49:94:c5:a4:65:b8:ea:4a:f9:3d:09:
eb:23:e8:3a:d2:5c:29:41:95:5e:1a:8c:bd:24:50:f0:9e:be:
34:e9:f1:71:c5:64:a8:e0:63:bf:a6:fd:64:61:96:d6:0e:07:
13:92:bd:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org