Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/be4a4c-f8c6-485d-a328-a3ce99643947/1/t_9zQkzv4uUPP_BgtOSoIwhzByQ.roa
File: t_9zQkzv4uUPP_BgtOSoIwhzByQ.roa (raw, json)
Hash identifier: WSLsgcnV3LV+leeUhYgNctStIDT2ilIwe0MVLXeRl0c=
Subject key identifier: B7:FF:73:42:4C:EF:E2:E5:0F:3F:F0:60:B4:E4:A8:23:08:73:07:24
Certificate issuer: /CN=e60bbe0be77c4e2f05791786eadcc8276b261b8c
Certificate serial: EEDFB1
Authority key identifier: E6:0B:BE:0B:E7:7C:4E:2F:05:79:17:86:EA:DC:C8:27:6B:26:1B:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5gu-C-d8Ti8FeReG6tzIJ2smG4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/be4a4c-f8c6-485d-a328-a3ce99643947/1/t_9zQkzv4uUPP_BgtOSoIwhzByQ.roa
Signing time: Tue 29 Mar 2022 08:55:58 +0000
ROA not before: Tue 29 Mar 2022 08:55:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202005
IP address blocks: 185.26.136.0/24 maxlen: 24
185.26.138.0/24 maxlen: 24
185.26.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15654833 (0xeedfb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e60bbe0be77c4e2f05791786eadcc8276b261b8c
Validity
Not Before: Mar 29 08:55:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7ff73424cefe2e50f3ff060b4e4a82308730724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f1:e4:6f:f2:e8:85:e2:62:95:54:89:4e:6c:
f5:a3:eb:f1:ab:1d:7d:6f:60:76:ec:58:b4:eb:7a:
95:fb:11:c2:bb:ed:5c:57:ac:ac:2e:c5:3b:35:0b:
67:75:f2:1f:d8:03:fe:e6:3f:88:0f:48:90:ab:1e:
7b:74:35:7a:16:bb:f7:21:4f:03:35:81:8c:50:18:
ba:e3:b0:20:9e:4f:1c:e3:15:a3:5f:17:27:ee:80:
87:7a:13:5d:b4:09:a2:f7:88:5d:57:3a:43:26:ad:
e2:95:a6:27:4f:94:6c:b5:8c:10:54:8b:f6:6c:ec:
3a:2f:8f:aa:ab:25:bb:d2:2d:16:d3:e9:e5:26:8b:
9e:1c:41:8a:1a:de:12:57:10:ee:11:1e:0b:82:08:
81:2b:96:3e:79:97:39:22:bb:44:41:4d:8f:69:fb:
98:4d:b3:92:52:71:19:6a:ae:1e:1f:6e:c1:43:d8:
96:04:63:67:97:27:90:6f:f6:ef:28:7c:f7:77:b7:
92:f0:35:96:2b:2b:08:59:e3:1c:12:83:2f:f7:a2:
4e:bf:2d:13:5e:83:eb:4b:6d:94:b8:8f:2e:6d:fe:
dc:71:09:5a:d9:f0:4f:f4:a6:9a:40:71:c4:4e:82:
4a:1c:0d:48:7b:7e:79:08:6c:87:5c:3e:70:65:3e:
e1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:FF:73:42:4C:EF:E2:E5:0F:3F:F0:60:B4:E4:A8:23:08:73:07:24
X509v3 Authority Key Identifier:
keyid:E6:0B:BE:0B:E7:7C:4E:2F:05:79:17:86:EA:DC:C8:27:6B:26:1B:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5gu-C-d8Ti8FeReG6tzIJ2smG4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/be4a4c-f8c6-485d-a328-a3ce99643947/1/t_9zQkzv4uUPP_BgtOSoIwhzByQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/be4a4c-f8c6-485d-a328-a3ce99643947/1/5gu-C-d8Ti8FeReG6tzIJ2smG4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.136.0-185.26.138.255
Signature Algorithm: sha256WithRSAEncryption
5e:1d:de:ac:0c:82:f4:3a:a1:45:fa:ef:09:8d:4e:5e:76:eb:
bf:f0:cd:a8:62:85:2a:f9:0d:cd:4f:20:81:5f:ce:5c:65:d2:
e3:ec:51:56:55:07:94:6c:84:5c:9d:2a:26:af:12:ee:44:40:
6f:bd:3d:bf:5e:21:80:d2:27:67:78:9c:87:00:51:14:da:ac:
85:96:0a:63:f4:26:d1:e5:de:74:2b:19:9b:aa:bd:4a:18:4f:
da:a4:11:38:1a:82:8b:75:f0:83:23:7a:b5:37:13:81:4a:60:
e7:84:6b:d0:39:20:3f:9c:d9:ef:fa:07:91:89:d9:9e:86:37:
41:40:04:ca:96:96:1e:ff:7c:d7:7e:c1:40:6d:b2:00:fa:01:
34:43:ad:6d:7b:9e:4d:b0:b4:ec:2e:43:1c:47:35:b4:a0:42:
0f:d9:01:25:03:57:4b:a4:0c:25:3f:e2:24:3e:dd:cf:31:7a:
3a:5a:bd:23:a6:19:05:02:cf:33:ab:d7:9c:59:0e:39:2d:c2:
0d:9b:a1:5f:d2:8f:28:31:60:bc:42:6c:a6:a1:39:5e:8d:ee:
8c:bc:09:a5:4d:b9:71:b8:f0:68:3c:dd:63:fd:1e:7d:cd:86:
9a:e7:5c:06:bb:e5:c9:7c:a1:26:5c:52:36:8e:fd:19:bd:54:
3e:27:93:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:15 2023 by rpki-client on console-ams.rpki-client.org