Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4bd00a-83ce-4134-b592-7243d9347143/1/vBiYqOVDcQcNzTcOwtXN4tpy1NY.roa
File: vBiYqOVDcQcNzTcOwtXN4tpy1NY.roa (raw, json)
Hash identifier: YZou6XMvJ6+eKVDn1JxWiMB7gt1WVISRO3PTIrSja9Q=
Subject key identifier: BC:18:98:A8:E5:43:71:07:0D:CD:37:0E:C2:D5:CD:E2:DA:72:D4:D6
Certificate issuer: /CN=304d706d759b0213114fb319cb593315d7e3409b
Certificate serial: 0A90EC4F
Authority key identifier: 30:4D:70:6D:75:9B:02:13:11:4F:B3:19:CB:59:33:15:D7:E3:40:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ME1wbXWbAhMRT7MZy1kzFdfjQJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4bd00a-83ce-4134-b592-7243d9347143/1/vBiYqOVDcQcNzTcOwtXN4tpy1NY.roa
Signing time: Sat 01 Jan 2022 14:05:34 +0000
ROA not before: Sat 01 Jan 2022 14:05:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51747
IP address blocks: 185.236.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177269839 (0xa90ec4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=304d706d759b0213114fb319cb593315d7e3409b
Validity
Not Before: Jan 1 14:05:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc1898a8e54371070dcd370ec2d5cde2da72d4d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b2:42:e1:a2:06:75:04:16:2b:fd:b5:b9:20:
04:e1:ca:16:3d:68:d8:8d:2e:3d:c2:39:60:bc:79:
c8:5b:30:48:78:f2:8a:12:d6:0c:59:e7:ee:af:c1:
ae:23:e2:34:b7:8f:ac:5e:af:77:eb:ca:f9:f5:24:
35:02:74:9e:97:0b:c2:7a:4b:2e:03:7f:29:1a:ed:
33:c0:ed:4f:56:40:f2:7b:cf:68:a0:ec:d8:27:7c:
9c:6c:62:cd:9a:78:ca:af:ca:11:a7:5c:72:9f:bc:
e3:a6:4f:09:6a:f0:ca:57:99:27:af:95:0e:cc:b9:
44:22:a8:12:36:82:33:95:e1:39:22:6b:d4:2d:aa:
d0:89:53:d3:83:d4:7b:5e:7c:d3:ea:42:c7:ed:a2:
ad:3e:2c:a2:bd:64:e4:78:44:de:20:33:69:f5:39:
cb:e6:43:c2:28:0c:cc:a5:d1:49:d8:61:8a:1d:76:
2c:8e:97:ac:e8:41:a9:61:78:88:b4:cf:42:b4:5f:
f0:42:e6:b0:ad:3d:13:46:1a:3b:7b:41:46:85:a7:
f2:5a:6c:6e:b2:9a:ba:54:34:fe:48:e9:03:c0:66:
c8:90:6a:e7:4d:5e:26:39:f0:be:f4:a1:db:c7:f3:
39:d8:30:9b:f2:82:11:a8:fe:10:e1:c6:b1:df:cb:
b2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:18:98:A8:E5:43:71:07:0D:CD:37:0E:C2:D5:CD:E2:DA:72:D4:D6
X509v3 Authority Key Identifier:
keyid:30:4D:70:6D:75:9B:02:13:11:4F:B3:19:CB:59:33:15:D7:E3:40:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ME1wbXWbAhMRT7MZy1kzFdfjQJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4bd00a-83ce-4134-b592-7243d9347143/1/vBiYqOVDcQcNzTcOwtXN4tpy1NY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4bd00a-83ce-4134-b592-7243d9347143/1/ME1wbXWbAhMRT7MZy1kzFdfjQJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.40.0/22
Signature Algorithm: sha256WithRSAEncryption
57:2e:44:82:cf:b0:72:39:c9:52:59:c0:46:2e:eb:d8:24:f7:
3a:a9:57:6e:93:58:52:e7:96:af:e8:9a:13:e6:5d:88:f1:8b:
9f:50:e5:0e:c8:50:79:30:1f:08:f7:ac:92:cf:eb:bd:c3:a8:
29:c8:46:12:1b:88:55:75:fb:26:b9:1b:81:b4:42:73:cb:5f:
c6:20:ae:31:ba:f4:6a:e2:04:fd:f9:a6:65:83:0f:01:89:b0:
89:84:a6:5a:21:61:ce:c0:c0:65:a5:77:36:c1:2d:74:09:0a:
23:89:58:70:7b:f8:5a:84:4f:04:c6:b8:24:cc:b0:26:bc:21:
df:38:ac:f3:a4:3e:ee:62:c6:f2:2b:ec:38:41:29:18:5a:72:
99:b9:5a:f9:a8:d4:2a:8b:93:15:ab:80:6f:d9:a6:4f:bb:4b:
48:7a:cb:8b:ee:c3:f5:32:8f:3c:dc:16:92:f2:c6:5f:17:e3:
b8:09:a3:5c:36:b2:48:9e:83:3a:54:23:16:04:24:b0:b4:95:
eb:35:c7:e6:1a:d7:8a:fe:e2:ea:37:9e:04:9e:4a:86:3a:ce:
f1:57:66:61:f5:e6:b1:12:6f:40:88:8d:7b:e0:f3:fa:38:7e:
e0:1f:3d:2e:80:59:ce:ff:1d:09:34:c9:41:2a:ca:a1:5b:20:
8c:3c:88:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:54 2024 by rpki-client on console-ams.rpki-client.org