Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/10b0ec-7055-4ebc-96fc-18e18d659d8f/1/2pwCmxvgMx1LcZj270YjbM-wyqk.roa
File: 2pwCmxvgMx1LcZj270YjbM-wyqk.roa (raw, json)
Hash identifier: 0OdSL6C8Yib+oBQWTuWsGBqWiR1LHQSPhcmMSuOTCfo=
Subject key identifier: DA:9C:02:9B:1B:E0:33:1D:4B:71:98:F6:EF:46:23:6C:CF:B0:CA:A9
Certificate issuer: /CN=6735a8295a30d7dfcac2a570b8decb25c4652140
Certificate serial: 064FF564
Authority key identifier: 67:35:A8:29:5A:30:D7:DF:CA:C2:A5:70:B8:DE:CB:25:C4:65:21:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZzWoKVow19_KwqVwuN7LJcRlIUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/10b0ec-7055-4ebc-96fc-18e18d659d8f/1/2pwCmxvgMx1LcZj270YjbM-wyqk.roa
Signing time: Sat 01 Jan 2022 00:52:26 +0000
ROA not before: Sat 01 Jan 2022 00:52:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59723
IP address blocks: 185.233.232.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105903460 (0x64ff564)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6735a8295a30d7dfcac2a570b8decb25c4652140
Validity
Not Before: Jan 1 00:52:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da9c029b1be0331d4b7198f6ef46236ccfb0caa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:71:b2:84:d4:b1:75:aa:64:fe:66:36:8b:b6:
43:26:04:b0:62:01:d3:58:e7:a9:0c:a1:c5:57:7f:
f6:12:2d:96:fe:42:c7:b9:f6:4a:00:67:4b:fe:be:
59:ba:0e:09:4f:e8:d0:5c:8f:7c:f7:07:50:49:81:
7f:79:6a:b4:92:9b:26:d1:6f:7f:4c:4c:2c:56:50:
17:2e:d2:8c:18:01:44:76:20:db:08:79:03:b4:bc:
f1:b7:8a:af:78:f7:74:bb:c1:e1:2b:28:e8:fd:ab:
12:e8:dc:a5:9f:7b:82:70:68:5f:43:4e:ae:eb:fe:
8d:cd:7b:34:79:df:db:27:5a:57:a0:10:ed:a0:fe:
e3:13:e3:5a:fb:80:4e:b0:ff:26:9c:d1:fa:c5:91:
24:56:19:a1:34:f2:f3:fd:50:fb:f6:f4:bf:1b:5e:
b1:43:06:1d:c8:e1:5f:48:e0:4b:76:a6:7d:f6:ac:
3d:85:bc:51:8b:b0:3a:8c:2a:48:5a:94:0a:1c:09:
77:a1:c2:47:08:bb:b2:11:39:56:d7:b7:28:c4:f8:
8a:63:af:06:c1:78:9c:ab:dc:53:b4:28:0b:aa:a0:
29:d6:6b:a0:19:88:ca:26:bd:05:ae:03:2c:03:b7:
ea:1e:16:aa:b3:f4:81:c2:5f:28:6a:43:f7:5f:7b:
37:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:9C:02:9B:1B:E0:33:1D:4B:71:98:F6:EF:46:23:6C:CF:B0:CA:A9
X509v3 Authority Key Identifier:
keyid:67:35:A8:29:5A:30:D7:DF:CA:C2:A5:70:B8:DE:CB:25:C4:65:21:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZzWoKVow19_KwqVwuN7LJcRlIUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/10b0ec-7055-4ebc-96fc-18e18d659d8f/1/2pwCmxvgMx1LcZj270YjbM-wyqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/10b0ec-7055-4ebc-96fc-18e18d659d8f/1/ZzWoKVow19_KwqVwuN7LJcRlIUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.232.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:f6:f3:2e:29:5e:77:fa:55:d7:e4:11:22:31:28:b7:7d:15:
7c:9c:02:c9:d8:2e:80:9c:33:7c:da:5b:f7:65:85:a6:2b:c3:
01:1d:61:40:5d:a7:fd:b6:88:78:f2:03:9e:63:13:9f:39:de:
3b:e5:b7:bc:31:56:4f:38:39:bb:f3:0f:c0:7d:75:9b:cd:8d:
76:7a:c7:f9:92:95:5d:ae:ad:6b:a4:cb:66:6c:92:44:dc:6b:
a5:2d:7c:8a:1f:27:71:8d:ed:34:60:0e:7a:70:e3:e8:80:09:
d3:b6:c3:a2:64:aa:ec:63:2b:bd:67:3e:71:81:b6:48:d3:0d:
89:fd:e2:9a:65:86:86:8a:d8:ba:16:93:c4:19:0e:12:f6:cb:
8f:12:4c:3e:4a:5b:b0:09:cb:85:ed:26:fd:29:49:f8:b3:26:
8d:52:e8:b9:53:bb:0b:3a:e7:b8:81:9a:b8:55:24:54:f8:59:
11:04:65:73:e6:1c:a7:d0:76:fe:dd:54:99:69:86:37:83:6d:
62:bf:9b:1b:0e:ef:3b:2c:0c:52:47:61:99:93:c4:4d:78:41:
83:ba:e6:e1:20:e2:6e:fe:a1:b3:90:77:36:3a:c4:c4:ca:23:
95:63:69:19:97:c4:11:9f:58:66:91:ce:f4:b2:bc:3b:6d:38:
e9:e5:80:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:00 2024 by rpki-client on console-ams.rpki-client.org