Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b06942-afc8-4336-97ee-aee696f83903/1/Xy0lNcSQ3C68z7VlYg-ZVfUnKQU.roa
File: Xy0lNcSQ3C68z7VlYg-ZVfUnKQU.roa (raw, json)
Hash identifier: NuH63rPCD4e3AvdOG8GUBYi3O+8E3sWAmu4mmckdvv8=
Subject key identifier: 5F:2D:25:35:C4:90:DC:2E:BC:CF:B5:65:62:0F:99:55:F5:27:29:05
Certificate issuer: /CN=39805a05b8d9f0dfc43834c664d624715439f0d5
Certificate serial: 352540C8
Authority key identifier: 39:80:5A:05:B8:D9:F0:DF:C4:38:34:C6:64:D6:24:71:54:39:F0:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OYBaBbjZ8N_EODTGZNYkcVQ58NU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b06942-afc8-4336-97ee-aee696f83903/1/Xy0lNcSQ3C68z7VlYg-ZVfUnKQU.roa
Signing time: Sat 01 Jan 2022 07:00:13 +0000
ROA not before: Sat 01 Jan 2022 07:00:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201370
IP address blocks: 185.68.252.0/22 maxlen: 22
2001:16f7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 891633864 (0x352540c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39805a05b8d9f0dfc43834c664d624715439f0d5
Validity
Not Before: Jan 1 07:00:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f2d2535c490dc2ebccfb565620f9955f5272905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cd:59:f6:b5:16:7f:68:c1:aa:27:16:0c:93:
69:fb:ed:56:fc:42:5b:1f:a3:d5:8e:ae:2e:2c:4e:
60:36:f5:b5:7a:39:49:c5:ff:ee:43:de:ee:83:2c:
d4:07:08:2f:29:9e:e2:44:54:de:3e:38:31:53:a9:
e6:79:44:3a:90:c1:7b:02:83:91:d5:3e:c8:26:ce:
88:f9:2d:d1:20:07:24:e6:34:41:86:0f:a6:06:79:
4c:9e:88:23:c0:f9:4e:bd:34:37:65:b6:55:f1:f1:
d8:39:a1:89:3c:91:83:da:3b:e1:ea:d4:43:35:dd:
b6:76:02:2a:48:ca:74:3e:b6:6d:b5:4f:88:ec:14:
48:3d:c8:34:c0:90:e8:fe:e6:b6:06:4d:9c:22:a6:
97:da:a2:78:d4:0f:34:60:f8:45:90:af:02:66:5c:
05:f6:df:72:f6:7f:a3:82:86:10:79:8f:1e:0a:3e:
87:11:a9:07:7a:cf:cb:a6:9f:f2:2a:76:b3:09:c5:
55:1a:e0:27:e9:ac:d3:a5:9b:fd:a2:11:10:81:da:
86:02:2d:8c:f8:15:89:88:70:e7:2e:77:44:65:e9:
0c:22:9a:30:99:5c:2d:b7:3a:9f:31:d2:01:17:c5:
b0:fc:6a:38:40:62:1f:17:9b:a9:d2:5d:6b:fc:28:
9b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:2D:25:35:C4:90:DC:2E:BC:CF:B5:65:62:0F:99:55:F5:27:29:05
X509v3 Authority Key Identifier:
keyid:39:80:5A:05:B8:D9:F0:DF:C4:38:34:C6:64:D6:24:71:54:39:F0:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OYBaBbjZ8N_EODTGZNYkcVQ58NU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b06942-afc8-4336-97ee-aee696f83903/1/Xy0lNcSQ3C68z7VlYg-ZVfUnKQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b06942-afc8-4336-97ee-aee696f83903/1/OYBaBbjZ8N_EODTGZNYkcVQ58NU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.252.0/22
IPv6:
2001:16f7::/32
Signature Algorithm: sha256WithRSAEncryption
bf:69:95:4d:49:82:b3:5e:2a:f4:ce:82:9e:23:c5:55:67:ef:
9f:4e:0f:87:52:c6:5a:da:6f:09:6e:5f:8e:5c:d2:53:0b:16:
4e:3f:40:d2:86:ee:93:9e:b8:6a:8b:ca:64:b4:5e:0f:a7:34:
07:63:ee:d3:ec:0b:e2:83:82:c4:4f:69:19:0b:84:4d:c0:44:
d8:0c:29:0e:80:2d:01:81:a0:39:26:80:10:34:62:3e:b9:ef:
84:c2:d5:76:c3:53:56:da:4e:4b:5e:65:c6:7e:3c:0b:e1:3f:
5c:de:a7:46:bc:de:82:f5:4c:df:03:80:53:95:3f:e0:6b:d9:
77:f3:65:58:14:03:fb:97:ed:0b:ca:42:32:46:c3:a6:a6:10:
fa:5c:ff:44:3f:8d:c0:eb:24:b4:92:ee:7f:80:9a:63:a4:fc:
ec:1f:25:31:29:4f:bb:4c:af:ba:53:71:84:e1:0a:72:06:fa:
17:0c:42:57:5b:85:63:ff:fe:33:b4:5b:0b:6c:be:a1:7f:db:
0b:08:83:12:c7:fb:85:cc:51:7f:7b:d5:72:aa:aa:a7:56:95:
7e:4e:2c:8e:72:01:6e:a6:88:b7:46:f9:b5:91:bb:ac:d2:53:
40:3a:81:b3:16:3c:bb:f0:4c:bf:95:99:fc:ad:b3:84:de:9c:
ba:24:73:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:27 2024 by rpki-client on console-ams.rpki-client.org