Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/5af6ba-cec9-414c-b766-c015a9d4f8ef/1/hSyaIe-PcqSNmOcHzL0T044_Aiw.roa
File: hSyaIe-PcqSNmOcHzL0T044_Aiw.roa (raw, json)
Hash identifier: g6dk1F78bym2L8jYngosdPcftPUiXBUZ28UXIzwFLUs=
Subject key identifier: 85:2C:9A:21:EF:8F:72:A4:8D:98:E7:07:CC:BD:13:D3:8E:3F:02:2C
Certificate issuer: /CN=656e407a6b99c0f052932cc777ff0de9b3a1974e
Certificate serial: 063AC293
Authority key identifier: 65:6E:40:7A:6B:99:C0:F0:52:93:2C:C7:77:FF:0D:E9:B3:A1:97:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZW5AemuZwPBSkyzHd_8N6bOhl04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/5af6ba-cec9-414c-b766-c015a9d4f8ef/1/hSyaIe-PcqSNmOcHzL0T044_Aiw.roa
Signing time: Sat 01 Jan 2022 12:54:39 +0000
ROA not before: Sat 01 Jan 2022 12:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41847
IP address blocks: 185.187.56.0/22 maxlen: 24
2a0b:9780::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104514195 (0x63ac293)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=656e407a6b99c0f052932cc777ff0de9b3a1974e
Validity
Not Before: Jan 1 12:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=852c9a21ef8f72a48d98e707ccbd13d38e3f022c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ee:4e:32:23:59:0d:83:ae:b2:62:6b:f4:b3:
9b:f2:d7:bf:55:6d:63:6d:d9:78:f9:11:50:91:c7:
c8:ed:43:51:c3:0c:47:63:ab:ee:fe:d1:f8:0a:42:
7b:6d:fc:db:aa:97:df:8f:39:86:9c:3c:0d:11:08:
da:a7:5a:99:8c:13:67:05:23:a4:ef:d6:c7:2d:a0:
dd:66:48:75:a2:20:ff:33:c8:9a:98:7b:cb:f7:3b:
a5:5d:5d:e9:d1:f6:6d:93:76:b6:b1:02:3a:ff:50:
9a:15:aa:e3:ea:9d:af:28:47:94:0f:12:64:b4:14:
ee:00:d2:7c:45:57:e9:d9:1e:89:d8:0c:8d:7c:a3:
a2:73:77:36:27:d1:84:dc:b3:c1:0f:bd:21:5f:43:
f0:ba:9b:55:95:ce:c8:40:b6:b5:8e:7b:aa:af:ed:
e0:4e:4c:4c:4c:80:03:d2:e2:f0:30:7c:48:74:46:
f1:10:3e:ac:77:8c:2e:5b:ab:b0:a7:4e:72:7f:78:
0e:a2:a7:9b:9d:ed:d1:31:c3:4e:bb:69:67:6d:9d:
07:a5:58:7d:f2:df:e3:b0:ce:bf:59:7c:8f:f7:2f:
6a:c0:b9:1d:d4:7b:b2:9b:b2:06:c1:b8:f8:d2:77:
af:ad:af:49:7a:99:f0:4f:3c:5a:c2:c2:55:af:e2:
f7:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:2C:9A:21:EF:8F:72:A4:8D:98:E7:07:CC:BD:13:D3:8E:3F:02:2C
X509v3 Authority Key Identifier:
keyid:65:6E:40:7A:6B:99:C0:F0:52:93:2C:C7:77:FF:0D:E9:B3:A1:97:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZW5AemuZwPBSkyzHd_8N6bOhl04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5af6ba-cec9-414c-b766-c015a9d4f8ef/1/hSyaIe-PcqSNmOcHzL0T044_Aiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5af6ba-cec9-414c-b766-c015a9d4f8ef/1/ZW5AemuZwPBSkyzHd_8N6bOhl04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.56.0/22
IPv6:
2a0b:9780::/29
Signature Algorithm: sha256WithRSAEncryption
b6:5d:7c:b5:e8:10:f7:ff:1a:c3:39:fa:0c:58:84:2a:2e:60:
6d:56:21:d4:b5:50:14:07:e3:22:02:52:aa:57:d3:16:cf:a3:
a2:ec:32:c2:da:c5:a8:3a:a3:66:ee:8f:88:78:52:85:d9:cd:
7a:08:8e:8f:a4:1a:e4:06:a9:8f:10:47:f3:58:a4:dd:de:1d:
97:37:f1:b2:57:c4:0f:15:e1:68:ac:27:5b:42:cc:b4:e8:0a:
28:3d:8f:6d:0d:63:06:16:cd:96:c7:c0:05:8c:5e:9c:a5:b5:
da:be:19:16:19:0e:f7:39:fd:1f:75:97:2d:f5:75:2a:74:f5:
d6:ea:b5:f0:d2:58:d7:bf:10:9f:59:93:86:6e:c7:52:d6:d0:
af:3c:2e:fe:7f:77:88:6b:90:48:c0:4d:9c:8d:cf:e5:d6:60:
f6:3d:10:aa:82:f6:0e:46:da:55:7c:b1:89:1d:f7:d9:41:88:
70:54:fe:ef:ff:d9:e8:76:ca:f4:0c:59:c9:b0:ae:61:02:45:
c0:e5:c2:6f:a1:2c:fd:10:02:7d:7e:a7:be:d1:6b:bf:a2:63:
81:ae:fa:ec:fd:51:f3:d0:0d:8b:a7:87:6d:54:6f:20:cc:5a:
ad:d3:b6:99:99:13:da:84:42:28:37:85:0a:54:88:48:74:49:
ae:68:ba:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:22 2024 by rpki-client on console-fra.rpki-client.org