Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/trVjrhcC7zP_KuzYeVbNjz-tmSk.roa
File: trVjrhcC7zP_KuzYeVbNjz-tmSk.roa (raw, json)
Hash identifier: kxZT6o2Wm2dYgRwrNkPz3NBfHBrOtX12Oq8qeIyL/0I=
Subject key identifier: B6:B5:63:AE:17:02:EF:33:FF:2A:EC:D8:79:56:CD:8F:3F:AD:99:29
Certificate issuer: /CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Certificate serial: 05BD621A
Authority key identifier: 6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/trVjrhcC7zP_KuzYeVbNjz-tmSk.roa
Signing time: Sat 01 Jan 2022 06:54:10 +0000
ROA not before: Sat 01 Jan 2022 06:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204004
IP address blocks: 185.107.16.0/24 maxlen: 24
185.107.17.0/24 maxlen: 24
185.107.19.0/24 maxlen: 24
185.107.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96297498 (0x5bd621a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Validity
Not Before: Jan 1 06:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6b563ae1702ef33ff2aecd87956cd8f3fad9929
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:95:a3:0f:31:18:7d:2d:e3:14:81:16:ff:5d:
3b:94:5d:96:82:8d:e8:96:de:6e:c7:99:34:f8:20:
11:7a:59:3d:bb:3f:c5:96:1a:62:2d:e5:30:96:a0:
02:9b:04:5f:81:80:ca:3c:4d:88:c7:c3:0e:a1:43:
f1:8b:f4:19:12:ed:c5:e7:6c:20:6d:70:c6:71:b4:
71:2a:5f:04:79:36:82:84:5f:ab:25:1b:74:9b:87:
cf:01:b4:34:c3:f8:9a:52:72:3b:e4:5e:1f:03:8b:
02:e5:3d:fa:00:4c:62:cb:70:ad:63:5d:f0:3f:d6:
4d:a5:35:f2:49:2e:3b:e3:1a:2b:04:9f:bf:61:82:
b6:dd:a1:34:ce:fb:0e:d4:63:b9:9b:77:cc:9c:eb:
6d:3d:b7:70:ce:ba:c1:a8:e2:cd:e6:e9:74:5e:1c:
42:94:44:bb:d2:30:7a:d4:22:4c:2f:3f:68:11:1b:
d3:a5:2a:a1:68:da:7d:ba:70:7f:37:12:05:c7:42:
0b:30:62:8b:95:c2:e2:bd:78:9b:08:5d:d5:ee:37:
a4:05:9d:e5:81:0a:8f:79:dc:ce:23:10:44:0f:c5:
38:78:b4:12:7d:c8:0d:22:3b:95:df:99:a0:8f:2d:
ee:30:4e:cd:87:74:cb:ea:76:6c:ef:45:1f:8b:b4:
1c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:B5:63:AE:17:02:EF:33:FF:2A:EC:D8:79:56:CD:8F:3F:AD:99:29
X509v3 Authority Key Identifier:
keyid:6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/trVjrhcC7zP_KuzYeVbNjz-tmSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/a8XefXJVt9WCYMZaEgsWTvEO-QM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.16.0/22
Signature Algorithm: sha256WithRSAEncryption
16:db:cd:cb:dc:3f:b4:c0:78:1d:f0:9e:3b:90:46:20:f1:a5:
e8:5e:0c:1d:a5:33:0f:df:c5:66:b0:13:f4:1f:c1:a4:2a:9e:
c7:2c:f3:09:1d:16:1b:51:89:ff:88:3e:37:f3:10:99:05:ea:
e1:1e:3c:1a:44:1c:6a:cc:be:74:04:4d:0c:dd:b6:62:ee:07:
fb:32:24:95:4f:28:e8:75:53:f5:f6:ae:e2:77:f5:02:42:59:
52:83:7c:77:ba:d0:e5:bf:4f:fb:fb:00:6b:3d:04:56:e8:32:
24:51:e9:21:3e:0b:ba:88:f6:17:ab:9d:cb:e4:5c:9d:91:5b:
30:97:f4:b5:38:50:9d:2b:6f:08:ca:c0:8c:fd:45:51:2c:ba:
a2:50:d3:ba:3f:12:5d:91:24:e4:01:91:ad:0e:42:5c:87:55:
74:5b:a6:63:1e:67:6f:4e:b7:86:77:bc:a9:da:28:cb:f9:4e:
91:85:f8:2b:7b:1a:f2:6f:9c:49:41:62:ed:40:76:cf:0e:6f:
28:4c:b1:02:ec:ef:21:55:25:96:de:49:5c:47:7f:4d:b5:50:
ee:e6:93:68:ed:d8:c3:16:fe:82:56:dd:e5:d0:97:4d:2d:00:
a1:8f:93:2c:4d:41:68:90:92:ad:0b:10:53:80:74:09:17:44:
35:3c:38:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:54 2024 by rpki-client on console-ams.rpki-client.org