Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/bBnscp2iZOTznFqMBmuCIuxy8f8.roa
File: bBnscp2iZOTznFqMBmuCIuxy8f8.roa (raw, json)
Hash identifier: idIqpcDDbqMTd6eMbprmtjC6TI+OlhiNHKYzWloLMhg=
Subject key identifier: 6C:19:EC:72:9D:A2:64:E4:F3:9C:5A:8C:06:6B:82:22:EC:72:F1:FF
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 13B4732F
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/bBnscp2iZOTznFqMBmuCIuxy8f8.roa
Signing time: Mon 04 Apr 2022 06:31:17 +0000
ROA not before: Mon 04 Apr 2022 06:31:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3215
IP address blocks: 185.145.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330593071 (0x13b4732f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: Apr 4 06:31:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c19ec729da264e4f39c5a8c066b8222ec72f1ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:89:8a:34:ed:b0:da:ce:25:a8:7f:2f:94:c4:
5b:45:96:9c:4c:8f:87:26:b5:68:0f:71:90:81:f0:
ec:e6:52:af:10:e2:29:95:2a:b6:61:56:4c:8d:f9:
9f:b9:5b:96:7d:a3:41:8c:fc:79:85:46:83:10:fa:
75:e1:ea:3e:86:4a:42:97:59:5f:33:17:1e:38:2a:
97:37:ca:35:4a:41:13:a6:b4:20:9e:cb:76:50:de:
74:32:92:b1:91:f4:75:1e:fb:da:a5:c6:98:35:25:
03:9f:0b:35:6b:9f:30:06:1d:8b:fc:ae:99:d5:ef:
f8:9a:7d:4e:41:01:df:ba:56:40:61:c0:6e:88:d1:
86:27:18:8c:31:c1:5d:65:23:a8:9c:06:0d:6d:7a:
f6:87:a1:86:9d:71:99:c9:24:e0:8a:46:da:bf:b2:
51:ad:11:a7:a7:87:51:38:2a:e4:46:c5:c2:cd:24:
26:a2:0a:78:0e:d9:a2:1c:d1:e1:53:39:71:52:9f:
57:56:5d:25:77:e2:5c:2b:43:06:da:06:e6:5b:0a:
82:c2:38:5c:f1:85:f6:87:b1:fe:70:cc:d4:f1:2e:
28:55:5f:36:5b:1e:96:b2:63:7f:d4:be:62:6c:4c:
ed:70:ab:50:a7:02:aa:83:19:fc:a3:69:48:88:3e:
71:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:19:EC:72:9D:A2:64:E4:F3:9C:5A:8C:06:6B:82:22:EC:72:F1:FF
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/bBnscp2iZOTznFqMBmuCIuxy8f8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.78.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:0a:de:6b:33:c4:69:91:29:4b:16:20:e8:30:7f:61:0f:ec:
08:f1:fe:a4:ea:8a:c4:5e:22:52:6d:16:c8:10:f7:0f:ce:32:
71:85:bd:2c:d7:2e:37:b0:dc:ad:02:dd:14:a6:f3:1a:0d:93:
93:79:0a:4c:bf:91:a8:43:ce:21:e3:f4:77:64:83:7e:c0:3b:
3e:3a:a5:74:1b:a5:f5:bc:70:69:ae:ac:d7:9f:06:8a:8c:82:
58:19:fc:f9:0f:3e:ab:c6:dd:4a:56:93:8e:65:5e:e6:1a:90:
09:18:7a:82:af:5e:cc:24:ed:c4:18:0f:62:e8:f1:5f:3e:a9:
92:3a:7f:c6:55:95:79:ea:21:69:70:02:e3:ba:aa:49:a3:13:
84:a8:53:91:a0:ef:fd:68:93:90:40:5f:46:95:44:d3:81:f1:
95:32:6a:a4:11:c9:ec:1f:84:31:50:7d:67:e7:b1:a0:5e:54:
be:17:6c:73:6c:28:02:83:bb:08:99:30:0b:5e:ec:24:e0:6f:
90:e1:da:b6:fa:6e:c4:5f:74:cd:7d:a7:56:11:3e:8a:03:16:
0c:a9:b5:bd:d1:cf:5a:b7:4c:39:ec:68:f1:ba:00:ec:99:53:
38:e4:b1:00:31:7d:c4:cb:2a:a2:20:7d:49:2e:51:80:1d:e6:
4c:e4:7b:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:31 2024 by rpki-client on console-ams.rpki-client.org