Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/9b34b0-301a-41a2-b4c5-a8866aa95c71/1/6c7QXnNCHiKzOVgYTJr-TnTt1qA.roa
File: 6c7QXnNCHiKzOVgYTJr-TnTt1qA.roa (raw, json)
Hash identifier: J55SwsYdKxQAqApOlt4Q6Ra1NZ2Ngcf1sI7ZCxkrR2A=
Subject key identifier: E9:CE:D0:5E:73:42:1E:22:B3:39:58:18:4C:9A:FE:4E:74:ED:D6:A0
Certificate issuer: /CN=3066ad61c162df0650ee0ab60c68075b29a211c8
Certificate serial: 0D7369D9
Authority key identifier: 30:66:AD:61:C1:62:DF:06:50:EE:0A:B6:0C:68:07:5B:29:A2:11:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGatYcFi3wZQ7gq2DGgHWymiEcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/9b34b0-301a-41a2-b4c5-a8866aa95c71/1/6c7QXnNCHiKzOVgYTJr-TnTt1qA.roa
Signing time: Sat 01 Jan 2022 14:54:56 +0000
ROA not before: Sat 01 Jan 2022 14:54:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41960
IP address blocks: 185.203.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225667545 (0xd7369d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3066ad61c162df0650ee0ab60c68075b29a211c8
Validity
Not Before: Jan 1 14:54:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9ced05e73421e22b33958184c9afe4e74edd6a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:53:75:71:b9:2f:c5:31:d3:65:bf:ca:c9:bb:
8e:7a:54:bc:be:24:19:2e:95:25:34:47:42:a6:78:
b2:9b:03:cd:b0:d9:cb:dc:26:0f:d4:ae:a8:fb:2c:
4a:06:7a:6e:72:a0:0e:ea:0a:ab:39:46:53:d0:27:
80:ee:7e:ec:5b:ce:66:fc:02:b7:ec:24:7f:7e:a7:
82:1b:f9:8f:4d:a7:38:6f:27:1c:11:74:81:76:93:
5c:8f:58:1c:9b:06:01:eb:0e:64:ea:33:05:9d:d2:
0b:53:f8:de:d5:91:14:24:3d:6f:23:5f:01:7a:28:
e6:be:5f:7c:a7:1e:84:59:1f:fd:75:7f:8e:4e:a8:
87:c6:aa:eb:27:11:3b:3a:1b:4a:24:a8:a3:05:ed:
79:2d:ae:1f:ed:1c:03:7b:e7:f3:ab:79:63:cb:70:
c0:6e:df:aa:1d:15:cd:e9:28:72:8d:88:8f:f2:65:
b3:33:cd:66:2c:0d:b4:c6:97:e3:61:29:03:87:c9:
95:18:8a:84:10:fd:20:5b:7f:e2:55:1a:01:bc:da:
0c:20:93:3a:4a:1a:04:bc:ef:3d:dc:27:79:c9:00:
ad:4c:3c:8a:94:32:51:88:a6:6b:94:49:f4:a5:ce:
44:c0:29:c2:80:de:8a:a0:13:a1:da:a1:f0:99:7c:
36:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:CE:D0:5E:73:42:1E:22:B3:39:58:18:4C:9A:FE:4E:74:ED:D6:A0
X509v3 Authority Key Identifier:
keyid:30:66:AD:61:C1:62:DF:06:50:EE:0A:B6:0C:68:07:5B:29:A2:11:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGatYcFi3wZQ7gq2DGgHWymiEcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/9b34b0-301a-41a2-b4c5-a8866aa95c71/1/6c7QXnNCHiKzOVgYTJr-TnTt1qA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/9b34b0-301a-41a2-b4c5-a8866aa95c71/1/MGatYcFi3wZQ7gq2DGgHWymiEcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.188.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:1e:7c:8f:b1:e2:f4:ad:ba:8c:dd:06:f6:3d:70:58:0d:71:
de:1c:d3:f3:af:6f:10:8b:1c:3d:b4:3b:03:63:d4:32:96:c1:
65:99:c2:87:b6:ff:17:5c:01:a5:da:5a:37:53:ef:b4:87:95:
20:04:44:e4:ed:04:c7:8e:80:19:9f:f7:8d:81:e6:4f:b2:cb:
66:f3:c0:d8:04:13:04:c5:a8:07:73:63:7e:da:d5:e8:38:ba:
9e:1a:dd:56:89:ea:e7:de:a5:5a:91:77:d6:dd:bc:6d:4e:93:
48:ce:26:d0:cd:23:d8:14:1a:59:56:23:08:7a:a0:47:a2:d7:
54:6e:a5:73:60:cd:fb:fd:c9:95:08:62:8f:8e:3b:bd:c5:68:
32:b7:65:56:b9:83:b6:43:d5:a4:df:db:85:a9:a2:bd:1e:9a:
a1:f3:22:dd:51:96:23:97:6b:e0:bf:90:de:71:ae:7b:36:d3:
b7:f3:91:c3:84:ed:19:e7:fb:c1:2a:e8:f2:9d:db:3c:e4:8a:
1d:6d:1e:2b:ba:94:a3:22:90:cd:e2:6d:df:5a:a7:7e:bc:75:
9f:54:3b:0a:4e:4f:20:b1:21:d0:4e:5c:9f:96:7b:2e:8f:7f:
20:c8:84:50:e8:0a:7e:af:be:bb:37:59:25:c5:74:68:4f:05:
0c:0a:7d:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:48 2024 by rpki-client on console-ams.rpki-client.org