Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/viMOj6m_7jUftHYJg5LJnrg6YBM.roa
File: viMOj6m_7jUftHYJg5LJnrg6YBM.roa (raw, json)
Hash identifier: 9iW6DSy/93FiF4ZD8XojzZ+yHGWmp21AhmeJSgsyv1o=
Subject key identifier: BE:23:0E:8F:A9:BF:EE:35:1F:B4:76:09:83:92:C9:9E:B8:3A:60:13
Certificate issuer: /CN=bb4a0af156332d3c7ecb585faee3a90d9bf2a096
Certificate serial: 0482266A
Authority key identifier: BB:4A:0A:F1:56:33:2D:3C:7E:CB:58:5F:AE:E3:A9:0D:9B:F2:A0:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0oK8VYzLTx-y1hfruOpDZvyoJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/viMOj6m_7jUftHYJg5LJnrg6YBM.roa
Signing time: Tue 22 Mar 2022 06:42:10 +0000
ROA not before: Tue 22 Mar 2022 06:42:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203012
IP address blocks: 185.147.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75638378 (0x482266a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4a0af156332d3c7ecb585faee3a90d9bf2a096
Validity
Not Before: Mar 22 06:42:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be230e8fa9bfee351fb476098392c99eb83a6013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0d:df:7c:74:53:2d:1c:09:39:79:3b:04:d7:
20:64:a2:3d:75:a4:c2:60:33:81:50:67:91:1f:19:
b2:5d:fd:99:d9:b8:47:d1:2e:dc:10:cf:d5:6c:ae:
83:0a:9c:33:56:16:8f:f7:b9:e8:bd:4a:e5:20:13:
fa:70:e6:59:d1:c6:b9:ed:54:29:93:8e:d4:a3:d8:
fb:9f:e6:35:d1:f3:c0:30:16:ab:dc:bf:c4:37:61:
c3:32:a7:65:60:e8:f2:0d:ce:3e:74:29:a1:33:5d:
d3:9b:7b:58:14:a3:63:3e:c0:94:bb:f1:9e:3b:90:
4b:01:9d:fb:d3:1e:92:36:73:af:cb:71:93:ae:c8:
99:56:8c:90:3c:3d:27:c6:74:dc:d7:83:f4:fc:ff:
65:8b:8e:6b:36:c0:99:72:ea:19:88:a4:48:93:3e:
b3:bc:bc:19:1f:a6:0a:5b:58:2e:44:ab:ab:8d:63:
dd:16:18:dc:ef:71:dc:a5:1a:1a:4b:0e:f6:31:3e:
20:f3:a6:3e:b5:3b:91:59:f3:37:61:5c:2f:ac:3d:
e3:0e:69:7b:cf:b1:0f:76:ec:3e:d6:bf:b0:16:d1:
a1:f6:0f:26:9e:75:1c:d1:88:90:d3:d1:e5:48:19:
64:8e:33:c8:d9:dc:fd:f8:c2:1a:de:4b:9d:05:a6:
a1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:23:0E:8F:A9:BF:EE:35:1F:B4:76:09:83:92:C9:9E:B8:3A:60:13
X509v3 Authority Key Identifier:
keyid:BB:4A:0A:F1:56:33:2D:3C:7E:CB:58:5F:AE:E3:A9:0D:9B:F2:A0:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0oK8VYzLTx-y1hfruOpDZvyoJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/viMOj6m_7jUftHYJg5LJnrg6YBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/u0oK8VYzLTx-y1hfruOpDZvyoJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.16.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:75:da:57:0e:38:21:d8:33:cb:1a:ae:7d:ec:21:cb:d3:9b:
0e:d9:c4:c2:d6:a7:8f:80:d5:37:02:5d:fa:8f:28:8b:40:38:
71:b7:13:6b:54:da:b0:c7:5c:39:1a:7f:76:83:68:c3:5f:bd:
9a:46:02:3b:36:42:10:ee:d0:06:b7:a2:0b:11:c7:0a:d0:f6:
38:ef:40:ea:8f:15:08:f3:f9:93:68:43:4d:13:43:0f:eb:5d:
52:f7:41:d5:ae:30:01:20:40:4d:d2:ac:6f:a0:90:07:15:fb:
2f:b8:ff:3d:4d:f6:20:4b:d9:33:7b:43:d7:87:8e:7c:83:f7:
af:43:ac:d9:d8:24:e0:b3:ee:fa:52:3b:11:9a:bb:ae:97:63:
2f:b3:34:6f:84:d3:d3:0a:b0:86:86:c6:41:8a:6d:79:ef:f6:
ed:22:57:b7:97:48:d2:b2:a1:d8:3e:3d:12:ec:be:33:40:db:
63:8e:69:09:6f:e9:ba:14:57:94:22:f0:c2:9e:17:23:c3:87:
37:95:4f:e2:ad:62:d9:5d:06:04:9d:6d:73:27:a6:69:c9:aa:
4d:6f:dd:3a:4d:32:91:af:47:ef:87:1a:f5:52:ca:5f:f4:59:
85:54:08:97:a6:d0:fc:42:57:6c:40:e6:ff:62:8c:5d:7d:36:
c2:bd:6e:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:29 2024 by rpki-client on console-ams.rpki-client.org