Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/t_0sa0LONPnFpUfvK626Pc9cuj4.roa
File: t_0sa0LONPnFpUfvK626Pc9cuj4.roa (raw, json)
Hash identifier: t4Fy+IZnGLGEbdLjtkZ7A8rhjaE73wM2lugdh21Sods=
Subject key identifier: B7:FD:2C:6B:42:CE:34:F9:C5:A5:47:EF:2B:AD:BA:3D:CF:5C:BA:3E
Certificate issuer: /CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Certificate serial: 07AEA0B9
Authority key identifier: CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/t_0sa0LONPnFpUfvK626Pc9cuj4.roa
Signing time: Sat 01 Jan 2022 09:59:16 +0000
ROA not before: Sat 01 Jan 2022 09:59:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 185.33.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128884921 (0x7aea0b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Validity
Not Before: Jan 1 09:59:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7fd2c6b42ce34f9c5a547ef2badba3dcf5cba3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a3:6f:c8:ee:29:a5:d9:c7:38:db:fc:79:e9:
0f:10:80:9f:a3:55:fe:be:5c:ef:b6:70:5b:e8:84:
e9:64:69:8c:a4:6c:5b:db:8d:74:6f:c0:ee:79:c7:
31:b5:3e:76:5a:13:90:78:e7:01:3d:ad:3c:0d:aa:
8a:61:02:bb:99:68:db:83:0f:ac:63:67:9c:9d:21:
c8:7c:9b:ba:8b:7d:a3:35:b9:3a:3d:9e:3f:d8:e7:
00:ae:5f:8a:54:01:32:f0:21:a6:7b:de:67:5a:d4:
36:fa:55:4d:ff:ad:4b:e2:d1:7d:ac:1e:fe:88:92:
6c:1f:0e:36:05:49:99:84:a9:8c:69:cf:71:d6:7c:
0e:dc:c0:56:ad:00:b8:60:99:29:80:db:ad:5f:42:
17:53:1e:1a:33:f8:49:fe:1e:de:db:91:2f:1f:1e:
dd:8a:f4:c9:28:f2:17:39:7f:41:ea:cc:4b:a8:91:
3f:85:c8:8a:b7:63:a7:ef:ed:f6:57:b7:4c:fd:50:
ec:87:e9:5f:7e:29:c2:f4:d1:47:63:bb:ba:89:61:
e4:72:a3:08:71:8f:dd:ba:6f:e6:77:13:92:c7:a2:
3a:e2:b9:7b:2b:36:db:c3:f1:d0:c0:af:86:78:6a:
02:10:2c:be:26:95:46:72:4b:15:7e:84:25:3f:bf:
d8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:FD:2C:6B:42:CE:34:F9:C5:A5:47:EF:2B:AD:BA:3D:CF:5C:BA:3E
X509v3 Authority Key Identifier:
keyid:CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/t_0sa0LONPnFpUfvK626Pc9cuj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.62.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:8c:c5:09:7d:83:78:a0:12:94:34:e1:03:c6:19:fb:a4:97:
a1:71:35:31:93:0f:b8:27:8c:be:48:ad:f0:c5:8b:f3:f3:0c:
55:44:61:31:1d:b9:c8:48:ff:77:3f:82:63:09:87:a6:7f:2b:
fb:56:0a:55:5f:2b:78:f5:ce:80:44:9e:80:c3:20:83:0f:d4:
f6:18:49:60:83:f4:25:e6:08:5c:64:90:f6:c6:9c:02:f4:f0:
df:e7:e3:70:31:71:11:80:d4:81:18:2f:f0:cf:17:17:02:b6:
bd:a8:fd:d6:c5:88:7e:f3:ee:7f:03:7f:5d:33:92:ee:32:46:
56:f1:e7:a4:a1:b0:d2:b3:b3:a6:e4:66:d5:3f:64:25:c2:cc:
b4:ff:50:39:5e:cf:a8:f3:98:ff:d7:b6:2f:ed:87:e6:4c:7e:
f4:68:cd:0c:09:e4:9a:c2:a2:f1:f4:d9:ea:d8:81:d9:72:0e:
07:af:62:98:3e:56:b9:89:c4:32:45:a3:e3:f6:f9:37:85:2e:
6e:e3:1c:47:d3:d7:6a:60:35:f2:d1:0a:68:b0:9b:f2:c1:c3:
90:7d:45:ad:94:0d:c1:bf:19:7e:ed:15:0c:02:d7:f4:0a:9c:
6c:45:b5:b6:75:44:da:af:e4:b5:a9:e1:6a:ac:eb:59:3d:31:
05:22:a3:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:36 2024 by rpki-client on console-fra.rpki-client.org