Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3a7e49-9d27-4e4e-aa36-6f6ccb6e2cda/1/bdjqjkgkYR5IDgHLgBKX2wcJSz8.roa
File: bdjqjkgkYR5IDgHLgBKX2wcJSz8.roa (raw, json)
Hash identifier: DQfaIcqNPr0Si/EHChgSykkGMtfxPNpcvS/7rQAsNwA=
Subject key identifier: 6D:D8:EA:8E:48:24:61:1E:48:0E:01:CB:80:12:97:DB:07:09:4B:3F
Certificate issuer: /CN=4ddd0f9dcd88949b8f3a3771063562a057679290
Certificate serial: 0B8AFC34
Authority key identifier: 4D:DD:0F:9D:CD:88:94:9B:8F:3A:37:71:06:35:62:A0:57:67:92:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Td0Pnc2IlJuPOjdxBjVioFdnkpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3a7e49-9d27-4e4e-aa36-6f6ccb6e2cda/1/bdjqjkgkYR5IDgHLgBKX2wcJSz8.roa
Signing time: Sat 01 Jan 2022 06:54:07 +0000
ROA not before: Sat 01 Jan 2022 06:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197991
IP address blocks: 185.239.56.0/22 maxlen: 24
2a0c:4b80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193657908 (0xb8afc34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ddd0f9dcd88949b8f3a3771063562a057679290
Validity
Not Before: Jan 1 06:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6dd8ea8e4824611e480e01cb801297db07094b3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e1:e8:db:67:64:99:41:c5:5a:aa:8f:45:ab:
00:d9:66:e2:bd:63:ea:36:66:be:d1:69:cd:e9:f6:
71:6e:c0:fb:b4:0c:dd:95:bd:47:82:c7:d0:2d:30:
c9:6d:4b:5c:8b:0b:be:49:f2:db:f9:7a:da:4c:87:
b5:4d:58:df:e6:1b:6d:9f:f5:7d:a5:e2:28:37:0d:
f3:d0:7e:7e:f6:25:62:f4:ff:dd:08:f2:67:f0:ee:
aa:bc:8d:9a:6c:f8:ba:50:90:ad:de:a7:54:b1:77:
9c:c6:6c:9e:dd:e5:0c:e0:46:98:29:80:cd:de:fe:
e3:be:d9:72:ba:9d:e9:c2:ac:ff:2b:cc:b7:6f:43:
84:40:a3:82:34:56:89:3f:ac:b4:b0:75:ab:1e:60:
f6:c1:ee:04:58:95:99:fd:b1:90:8e:02:9a:2e:e7:
ab:62:a9:25:8f:8d:d8:39:e9:78:e9:f1:3c:4c:6e:
d3:2a:fd:38:5a:44:46:23:20:db:6f:2e:c4:ff:df:
92:07:39:25:c4:9b:45:0e:6d:ae:37:62:82:03:9b:
4d:b7:2f:a9:85:b2:6f:6d:46:c9:ca:32:fb:02:43:
14:db:9f:8f:6e:df:0d:cf:2e:be:80:dc:5e:2f:7b:
b1:ad:8d:08:1c:34:d0:e2:ff:9f:12:bd:c5:61:bb:
ef:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D8:EA:8E:48:24:61:1E:48:0E:01:CB:80:12:97:DB:07:09:4B:3F
X509v3 Authority Key Identifier:
keyid:4D:DD:0F:9D:CD:88:94:9B:8F:3A:37:71:06:35:62:A0:57:67:92:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Td0Pnc2IlJuPOjdxBjVioFdnkpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3a7e49-9d27-4e4e-aa36-6f6ccb6e2cda/1/bdjqjkgkYR5IDgHLgBKX2wcJSz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3a7e49-9d27-4e4e-aa36-6f6ccb6e2cda/1/Td0Pnc2IlJuPOjdxBjVioFdnkpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.56.0/22
IPv6:
2a0c:4b80::/29
Signature Algorithm: sha256WithRSAEncryption
48:fe:89:01:15:2a:ed:13:55:43:13:f5:5a:6c:6b:d4:7b:0d:
ec:ce:ee:18:ab:31:c0:51:ae:ca:45:d3:51:cf:cd:ea:ed:f6:
16:f3:85:10:a7:d8:06:75:78:89:4b:ba:fc:ff:21:8f:fd:2d:
b0:94:47:f1:27:9e:82:54:45:bf:3e:e9:7e:76:40:0e:3f:d7:
24:d4:4a:2b:e7:4c:08:32:7c:20:c5:91:75:c3:1d:3d:d3:8a:
0b:e0:b4:b9:d8:62:af:d6:b9:39:06:4f:1a:7c:07:bc:33:f7:
02:f9:90:dd:16:b2:f7:cc:ec:17:15:79:c8:3c:cd:12:47:81:
df:17:ad:56:69:d2:cd:e2:94:00:16:71:46:e7:3a:d2:fc:b2:
80:49:fd:04:6b:d2:5f:7f:5d:65:96:29:60:68:37:a8:b6:77:
47:e7:73:ff:3d:26:1f:72:4d:bd:29:88:50:dd:20:29:3d:3e:
9b:e2:7d:2f:19:cb:6b:21:3c:f3:5f:b0:7b:eb:0e:74:6d:4d:
42:3f:26:a9:e7:c4:77:7f:82:e8:25:3e:0d:25:6a:18:ca:5e:
ae:2a:1d:6b:2b:35:99:c9:8b:a5:42:a2:64:28:33:b7:03:9b:
e0:a8:5b:19:88:1f:b7:11:52:bf:69:60:34:03:39:88:90:5a:
f3:2c:a3:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:03 2024 by rpki-client on console-ams.rpki-client.org