Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/SgASmVs9jrFtURDw6j8sM3aV1ck.roa
File: SgASmVs9jrFtURDw6j8sM3aV1ck.roa (raw, json)
Hash identifier: cPfXfqxn50tfLmHiRgB4dZHMFiomRkJV/gbCnL2GcBY=
Subject key identifier: 4A:00:12:99:5B:3D:8E:B1:6D:51:10:F0:EA:3F:2C:33:76:95:D5:C9
Certificate issuer: /CN=63c34455c0d4e4fc3ba2f1c46f08b475c8f6d980
Certificate serial: EFAF
Authority key identifier: 63:C3:44:55:C0:D4:E4:FC:3B:A2:F1:C4:6F:08:B4:75:C8:F6:D9:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/SgASmVs9jrFtURDw6j8sM3aV1ck.roa
Signing time: Mon 30 May 2022 10:52:13 +0000
ROA not before: Mon 30 May 2022 10:52:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20860
IP address blocks: 185.201.60.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61359 (0xefaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63c34455c0d4e4fc3ba2f1c46f08b475c8f6d980
Validity
Not Before: May 30 10:52:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a0012995b3d8eb16d5110f0ea3f2c337695d5c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:16:31:72:fe:3d:60:71:e9:03:c5:ee:75:f4:
da:0b:c6:d0:60:38:f7:16:a7:59:e9:96:3b:a3:c3:
a5:b4:27:5f:e0:26:d8:ce:27:f3:94:83:0c:f1:e8:
9c:8e:1d:1a:51:96:30:1c:86:99:e4:12:23:85:df:
46:09:0c:76:a0:32:44:5e:f5:b4:e4:f4:91:85:a9:
a9:e9:6c:01:39:aa:af:a4:6e:b8:cd:06:df:60:6d:
01:8e:82:8f:d5:48:cc:31:7e:31:cc:c0:26:cc:3f:
39:c4:05:ed:db:62:47:3f:10:14:cf:22:c6:40:bd:
ca:fb:19:51:2e:3a:cb:7d:21:e4:a4:44:8a:4a:f9:
23:4f:9f:26:d5:dd:2a:4c:e2:49:0c:8d:f5:84:f9:
96:71:02:5a:50:73:89:8c:68:32:23:3c:c6:cd:fc:
e3:93:1a:72:ad:04:2e:dc:c7:56:0b:20:fa:5b:d0:
ac:09:e6:87:35:24:13:a0:c6:fd:d5:32:77:a7:1d:
07:b8:9d:a9:0b:6b:04:94:06:63:42:47:96:13:f1:
6f:82:41:39:7a:90:14:41:a0:8d:a0:b0:49:b1:40:
88:dd:0b:12:a3:ee:75:5e:c4:70:9a:c6:1f:a6:81:
af:85:2d:22:8a:6c:6f:41:fd:81:33:ab:f5:85:38:
f9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:00:12:99:5B:3D:8E:B1:6D:51:10:F0:EA:3F:2C:33:76:95:D5:C9
X509v3 Authority Key Identifier:
keyid:63:C3:44:55:C0:D4:E4:FC:3B:A2:F1:C4:6F:08:B4:75:C8:F6:D9:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/SgASmVs9jrFtURDw6j8sM3aV1ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.60.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:78:a5:0f:96:6e:ea:cc:2c:8f:d9:4d:08:92:29:03:e2:85:
d4:d3:2b:3e:e1:1d:54:51:8f:49:de:30:be:7a:8e:03:8f:b9:
7f:9b:1c:82:34:0e:25:ea:3c:79:3f:9b:3a:95:be:f2:47:07:
a4:5a:e2:a8:ff:6f:97:d2:12:ba:5d:66:db:2f:e7:db:9b:06:
78:4c:f0:4e:1a:01:ea:3c:2f:72:a9:dc:53:ef:10:57:9c:ae:
4d:85:d3:e6:da:f5:57:e3:7d:cb:b2:24:1c:67:e7:d7:f6:e8:
58:62:31:df:2f:1f:a6:2a:69:42:11:16:5b:4e:cc:f6:52:15:
69:64:28:fd:f7:a9:f0:e4:93:c7:64:e5:19:4a:a6:72:01:cc:
e9:14:0c:01:c3:a9:da:90:09:69:2b:c9:f7:05:db:1f:a4:87:
26:1a:f3:24:62:5a:34:b4:f8:08:0d:6f:f0:74:d5:f2:d5:15:
36:bb:71:9c:b6:12:bf:76:7f:a1:73:70:46:81:51:d8:b7:de:
13:a6:ed:32:58:c6:67:52:90:45:be:13:61:69:db:29:b2:e2:
45:2e:9c:e5:40:0d:6d:6e:d5:27:13:bc:a0:bd:45:1f:e0:1d:
e1:81:92:73:6d:e6:e7:c0:2d:2f:70:fc:06:f9:af:fa:7e:4a:
ba:27:8e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:02 2024 by rpki-client on console-fra.rpki-client.org