Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/cczBhgoVkYd7QobnXTU9CTHYRbs.roa
File: cczBhgoVkYd7QobnXTU9CTHYRbs.roa (raw, json)
Hash identifier: 9ChzGY8VJ9O8fnTkXdwn7X7DbEZcYrFuZjNNxjV0KZo=
Subject key identifier: 71:CC:C1:86:0A:15:91:87:7B:42:86:E7:5D:35:3D:09:31:D8:45:BB
Certificate issuer: /CN=a3a82ee9aa1106ed720d63c3844e666440e34438
Certificate serial: 01836070062873F121261BCD8BDFA911D13E
Authority key identifier: A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/cczBhgoVkYd7QobnXTU9CTHYRbs.roa
Signing time: Wed 21 Sep 2022 14:24:57 +0000
ROA not before: Wed 21 Sep 2022 14:24:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12826
IP address blocks: 185.23.132.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:60:70:06:28:73:f1:21:26:1b:cd:8b:df:a9:11:d1:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3a82ee9aa1106ed720d63c3844e666440e34438
Validity
Not Before: Sep 21 14:24:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71ccc1860a1591877b4286e75d353d0931d845bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:46:74:11:69:9b:96:4f:e1:c7:da:a4:87:09:
c2:e5:79:b3:a2:81:4f:9c:3e:44:da:d0:bc:2e:be:
fe:6d:01:0e:95:73:d5:3c:b2:12:2a:ee:59:3e:48:
ae:91:98:8b:db:f8:30:96:07:8a:d3:1e:4f:e9:87:
38:a1:a8:40:86:20:83:2a:48:f5:25:f7:9e:c1:fa:
27:ee:43:33:29:95:f1:e4:54:c7:09:61:9d:49:41:
47:07:1c:eb:67:44:23:4a:39:52:97:76:e0:d2:fe:
c2:1a:af:48:26:4d:15:62:5c:51:85:b1:c0:2f:5e:
4b:46:bc:79:59:ad:47:2e:12:0d:f9:be:98:97:c3:
8d:cd:04:95:20:55:a0:74:0b:8a:a1:fe:40:22:58:
0c:7d:2a:83:90:89:03:a7:5e:df:ad:12:87:5f:c8:
a8:56:7b:97:1d:71:0b:03:aa:60:21:f8:41:e8:9c:
d7:5d:82:55:5e:51:cd:a3:1f:eb:b7:47:0c:d7:7c:
a8:62:b4:fe:f7:38:da:39:87:0f:d8:dc:3a:e2:ef:
55:fe:71:9e:1c:43:12:c7:c3:45:0c:00:9d:a4:c6:
83:81:09:17:90:bc:1f:9d:66:8c:a1:ff:4a:2a:b9:
eb:27:75:ee:f8:bb:1b:1b:e4:d7:00:61:64:9c:d9:
0c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:CC:C1:86:0A:15:91:87:7B:42:86:E7:5D:35:3D:09:31:D8:45:BB
X509v3 Authority Key Identifier:
keyid:A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/cczBhgoVkYd7QobnXTU9CTHYRbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.132.0/23
Signature Algorithm: sha256WithRSAEncryption
28:e6:1f:e1:b4:e0:b2:12:b9:d2:f9:ea:03:33:f5:05:a0:9a:
dd:e4:6d:3b:3f:f3:3c:ae:20:d6:fa:d0:9a:34:81:fc:90:d2:
ec:f5:cf:88:1e:56:c0:bf:b8:47:1a:ff:be:53:9d:e9:b6:40:
8d:8b:0c:e4:24:dc:9d:0a:a6:c0:ef:f8:3c:3d:84:6b:fb:d2:
c7:e9:9a:50:3f:4f:98:06:fe:50:c0:9d:13:96:ca:c3:9d:3b:
7e:47:3f:f0:4f:a6:53:d9:4f:ab:68:3f:7c:db:ab:7d:0a:e8:
0f:b1:f9:58:c7:3a:1e:49:4b:40:f4:67:d7:07:f4:bc:af:ed:
81:38:ee:e1:ac:7d:c1:84:24:0a:65:8a:d3:3d:22:de:c3:00:
84:29:18:eb:b0:b3:97:f2:53:45:8e:56:fc:b2:2d:43:8f:2f:
fd:74:e1:8e:21:77:a3:44:42:63:96:fa:f5:22:16:43:40:a3:
5e:54:64:12:2e:a1:f0:da:92:8e:dc:e0:af:60:db:1e:85:f0:
dc:b3:ac:2c:f9:2e:86:50:1b:51:47:ed:be:6e:fc:f5:a8:76:
06:86:00:4f:a4:a1:b1:af:2f:60:23:95:51:81:a2:d8:fe:3a:
59:73:c7:98:c6:ae:eb:22:cb:47:9f:50:cc:37:b9:40:c4:65:
61:f8:ee:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:14 2024 by rpki-client on console-ams.rpki-client.org