Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/6vfceubcnXXt-N3q5cUz6FfLcwg.roa
File: 6vfceubcnXXt-N3q5cUz6FfLcwg.roa (raw, json)
Hash identifier: 1mA4VvJgK5tiSLa04yuTshNDu4d9ee/q1g61XWQlVCk=
Subject key identifier: EA:F7:DC:7A:E6:DC:9D:75:ED:F8:DD:EA:E5:C5:33:E8:57:CB:73:08
Certificate issuer: /CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Certificate serial: 07AF02F5
Authority key identifier: CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/6vfceubcnXXt-N3q5cUz6FfLcwg.roa
Signing time: Sat 01 Jan 2022 09:59:16 +0000
ROA not before: Sat 01 Jan 2022 09:59:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62077
IP address blocks: 185.33.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128910069 (0x7af02f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Validity
Not Before: Jan 1 09:59:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eaf7dc7ae6dc9d75edf8ddeae5c533e857cb7308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1b:60:1c:c5:7e:d6:98:d4:5f:97:b4:5e:da:
6d:3f:16:58:13:fa:37:b9:ab:e5:68:e1:11:e9:32:
bc:e3:ff:8b:85:07:d4:b9:f9:85:14:9a:9a:83:a6:
7b:df:dc:56:c5:fc:e4:f0:98:2d:38:2c:cd:e7:a7:
78:95:36:7a:cb:2c:50:41:3b:af:c3:34:70:89:f0:
a9:00:71:f8:25:b2:d7:3e:37:0a:3a:24:52:92:42:
a8:51:20:4f:b5:d9:a3:15:2d:dd:ef:ea:c0:2c:08:
5f:38:0b:12:5d:58:51:87:d8:48:d4:80:6c:42:ea:
9f:c7:25:b7:4d:ee:25:5a:65:e5:5b:60:bf:03:80:
2e:96:c0:7a:0e:e0:79:93:4f:ca:ee:f7:b6:ee:98:
38:88:3c:2b:83:e4:b2:03:50:0f:3c:84:ea:01:b8:
1e:2f:30:24:ef:a9:f4:b9:6f:22:d9:95:2b:03:df:
f3:fe:79:9a:78:d1:89:71:a0:97:77:11:21:89:f1:
cb:b5:5c:4b:73:83:84:c1:f7:5c:3f:34:1b:89:12:
15:7d:b4:c0:45:05:f5:5d:6c:8f:fd:a3:ac:db:98:
2e:50:36:89:0e:18:41:3a:b3:1d:d1:ba:e4:bb:1e:
8c:23:73:f2:00:5e:21:6f:d7:62:eb:79:73:09:fd:
84:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:F7:DC:7A:E6:DC:9D:75:ED:F8:DD:EA:E5:C5:33:E8:57:CB:73:08
X509v3 Authority Key Identifier:
keyid:CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/6vfceubcnXXt-N3q5cUz6FfLcwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.60.0/24
Signature Algorithm: sha256WithRSAEncryption
44:b6:4c:b4:cc:f1:8c:7d:08:cc:94:fc:e0:7e:76:09:b6:d4:
bf:33:d5:d1:07:2f:4e:bb:6f:3a:9a:be:92:1d:d9:60:1b:9b:
b2:c3:37:aa:54:c1:63:4b:a5:c5:07:66:f2:37:9f:35:10:9c:
bc:11:f3:ea:8f:89:d0:4a:b7:bf:33:94:d3:7a:3b:be:61:e7:
e9:59:f4:6f:4c:ea:e3:0b:00:7f:77:25:e3:e0:1b:f0:56:37:
ad:5a:a8:de:97:0e:e3:33:00:e5:a1:15:27:44:d0:b3:5a:c4:
bf:7b:27:57:7d:47:b0:7f:f1:23:22:8c:ac:2d:cb:0f:19:e6:
c6:ec:cc:09:72:fb:13:c5:be:b2:bc:98:11:da:a9:b6:7b:71:
98:95:4d:5d:5d:3c:e3:79:93:e8:ad:e9:dc:c6:da:37:da:aa:
8b:34:d3:e7:85:a5:82:ee:99:04:82:e1:e1:9e:41:e4:26:46:
33:10:f5:fb:a4:17:8c:66:9d:36:71:be:ab:33:f4:e1:67:18:
9d:ab:b8:2d:61:48:e8:1b:ac:6b:64:56:2e:80:f1:e3:f9:e0:
8b:09:e4:bf:81:13:bb:c3:56:29:03:1d:8a:f7:a6:31:15:8a:
21:d0:85:0b:72:bf:6c:4c:b2:d6:9c:e7:76:59:cb:40:a4:a3:
f9:95:05:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:36 2024 by rpki-client on console-fra.rpki-client.org