Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/IyAjWUKRf_lPPksJDUZ-3QUVSyI.roa
File: IyAjWUKRf_lPPksJDUZ-3QUVSyI.roa (raw, json)
Hash identifier: dbDOc7lef/BS/EFtg+muGLrRUb5DCQPM6R855DalFqA=
Subject key identifier: 23:20:23:59:42:91:7F:F9:4F:3E:4B:09:0D:46:7E:DD:05:15:4B:22
Certificate issuer: /CN=4050bca29c1813ae3b11f381f0442aa2a8a931bf
Certificate serial: 052D72CF
Authority key identifier: 40:50:BC:A2:9C:18:13:AE:3B:11:F3:81:F0:44:2A:A2:A8:A9:31:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QFC8opwYE647EfOB8EQqoqipMb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/IyAjWUKRf_lPPksJDUZ-3QUVSyI.roa
Signing time: Sat 01 Jan 2022 13:04:47 +0000
ROA not before: Sat 01 Jan 2022 13:04:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61136
IP address blocks: 185.253.132.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86864591 (0x52d72cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4050bca29c1813ae3b11f381f0442aa2a8a931bf
Validity
Not Before: Jan 1 13:04:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2320235942917ff94f3e4b090d467edd05154b22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:de:eb:b5:b0:51:75:a6:0c:e4:6a:e5:fa:70:
90:30:ed:8a:9a:fc:f6:d2:c4:ff:2b:48:76:31:11:
15:61:f1:7f:03:bd:d5:e1:45:da:91:3e:55:40:72:
7c:47:58:8e:bb:ff:b7:e2:bd:b6:a1:6f:2a:34:cf:
a5:60:5c:63:a9:23:0e:89:46:b0:61:cc:81:88:ba:
db:e9:35:7e:97:57:ea:4d:20:14:4f:63:41:eb:00:
f5:00:5c:13:a7:da:bb:6d:d5:5b:e1:f0:56:60:af:
d2:fb:b7:91:32:e4:dd:ae:c7:04:1b:5d:35:af:94:
ac:1d:38:c0:25:45:b4:f5:2b:ad:fa:5d:2e:89:e1:
e8:76:5a:37:77:89:be:b2:21:d3:45:ce:b9:99:b6:
50:ac:36:04:2b:4d:34:a8:3e:67:f0:9d:22:e4:90:
12:32:c1:4d:05:f9:a9:68:5c:17:6e:39:4d:b8:6d:
79:ed:86:d7:59:fc:ea:02:0d:0c:28:2d:65:2d:67:
10:56:66:0d:b8:5b:e6:9b:27:89:79:11:ea:9a:e8:
f6:8e:67:72:fc:fc:45:5a:71:2a:7f:18:c3:50:a4:
be:6f:37:a8:4b:31:21:58:b7:0d:2e:6c:ac:a9:81:
5e:7c:c9:d2:06:94:f6:55:0b:3b:cc:ea:5f:a1:43:
cd:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:20:23:59:42:91:7F:F9:4F:3E:4B:09:0D:46:7E:DD:05:15:4B:22
X509v3 Authority Key Identifier:
keyid:40:50:BC:A2:9C:18:13:AE:3B:11:F3:81:F0:44:2A:A2:A8:A9:31:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QFC8opwYE647EfOB8EQqoqipMb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/IyAjWUKRf_lPPksJDUZ-3QUVSyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/QFC8opwYE647EfOB8EQqoqipMb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.132.0/22
Signature Algorithm: sha256WithRSAEncryption
95:8a:d5:f4:3f:4c:3c:f5:7f:da:d5:86:93:bd:57:20:cd:a1:
bf:a1:fa:11:55:bf:0f:59:c6:af:06:ed:b8:71:52:e5:ae:a0:
f7:8c:2d:50:cb:65:97:8a:e0:fc:07:ac:83:35:13:fe:17:ec:
4f:64:31:4b:29:34:67:0f:28:d9:c2:88:55:fd:0e:91:b8:43:
0d:02:e2:ae:20:35:e2:4d:21:80:34:8d:a6:07:4b:f4:20:de:
33:30:5c:92:bc:75:eb:cf:a0:1a:09:5a:cb:fd:f0:bd:d3:7e:
d7:b0:7c:f9:b4:fd:d0:fd:5c:4b:0d:69:de:ea:b1:9b:36:cb:
cf:34:a2:43:44:5c:db:ad:3e:9c:44:fb:f7:a8:ec:40:fc:6b:
e0:99:90:87:a8:74:ff:f1:ee:b5:4d:d6:8e:14:c9:13:b2:0c:
54:81:34:95:fb:d0:86:8f:c1:5d:38:57:80:53:c0:83:33:1c:
43:e3:b0:99:34:45:de:31:e7:b4:53:3a:a4:50:52:88:54:85:
7a:8c:ec:9a:6f:9c:18:d0:c9:c5:d6:7b:7f:ec:68:1a:d0:aa:
eb:72:f0:f3:55:24:ce:5d:79:4c:ee:91:b9:ee:9f:9b:a5:6d:
47:34:65:18:65:9a:e3:c0:f2:c3:13:8c:41:e5:69:92:f9:84:
90:ff:92:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:00 2023 by rpki-client on console-ams.rpki-client.org