Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/wGrZgVDMPGD1sbXEIO7X__4375Y.roa
File: wGrZgVDMPGD1sbXEIO7X__4375Y.roa (raw, json)
Hash identifier: 73kyLo8EExyxMBvcnb4DW7IEcHyved1TyZ7r7Z1suXQ=
Subject key identifier: C0:6A:D9:81:50:CC:3C:60:F5:B1:B5:C4:20:EE:D7:FF:FE:37:EF:96
Certificate issuer: /CN=f0521128cf634aa6afa7ef52d531f3fcd55628f9
Certificate serial: 06E60C1E
Authority key identifier: F0:52:11:28:CF:63:4A:A6:AF:A7:EF:52:D5:31:F3:FC:D5:56:28:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8FIRKM9jSqavp-9S1THz_NVWKPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/wGrZgVDMPGD1sbXEIO7X__4375Y.roa
Signing time: Sat 19 Mar 2022 16:32:10 +0000
ROA not before: Sat 19 Mar 2022 16:32:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47602
IP address blocks: 185.131.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115739678 (0x6e60c1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0521128cf634aa6afa7ef52d531f3fcd55628f9
Validity
Not Before: Mar 19 16:32:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c06ad98150cc3c60f5b1b5c420eed7fffe37ef96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9c:77:d7:2c:07:55:84:ea:88:47:5e:8c:db:
08:53:2c:f9:b1:bf:3a:06:2f:5c:b6:04:78:ea:81:
bc:ab:a7:c2:c0:35:4d:56:57:0d:b4:c6:b0:c2:82:
bc:6a:5c:c2:60:04:9c:10:16:0d:aa:14:3c:44:4a:
a7:a2:85:6d:b0:39:ac:e9:85:42:8b:33:ed:06:76:
80:4c:5d:97:f2:2f:46:be:84:ec:c5:a7:2b:4e:0c:
6f:0e:83:d8:eb:ad:62:79:ad:e0:d4:74:c4:29:63:
82:1d:d2:32:42:a8:d6:67:18:cd:f6:74:c7:da:a7:
af:74:b9:fd:d8:2b:ef:f6:77:32:78:17:74:99:8d:
61:12:53:8f:9f:b1:4c:b9:55:4b:a1:be:f4:67:f5:
80:4c:01:b8:75:f1:da:9c:85:47:60:db:86:e6:19:
5e:ac:b6:53:38:46:4b:35:f3:98:87:8e:a0:f1:b9:
af:91:0a:35:c5:a9:91:7e:07:5a:3b:83:98:bb:ef:
8e:32:50:0d:30:47:a2:5e:65:db:72:66:09:c2:6e:
3d:d2:dd:72:63:3e:6f:7d:aa:47:17:6f:b9:0d:c6:
f4:8f:4f:47:cc:fc:ef:b8:22:55:e1:34:cb:d7:1a:
92:39:3d:20:2c:6d:7e:26:ed:b9:19:db:41:8b:c0:
91:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:6A:D9:81:50:CC:3C:60:F5:B1:B5:C4:20:EE:D7:FF:FE:37:EF:96
X509v3 Authority Key Identifier:
keyid:F0:52:11:28:CF:63:4A:A6:AF:A7:EF:52:D5:31:F3:FC:D5:56:28:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8FIRKM9jSqavp-9S1THz_NVWKPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/wGrZgVDMPGD1sbXEIO7X__4375Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/8FIRKM9jSqavp-9S1THz_NVWKPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.223.0/24
Signature Algorithm: sha256WithRSAEncryption
74:73:84:3a:d3:99:05:e1:ca:86:ae:97:b2:4f:b3:d6:67:76:
81:11:23:35:a6:b7:53:c1:f0:29:dd:b8:1e:5a:0f:b1:7a:84:
a4:26:20:21:3c:c3:82:ea:af:46:f2:05:33:fe:73:f3:16:e9:
bf:00:32:6f:1f:a1:fe:7c:79:f9:88:d6:87:fd:39:4c:a6:a8:
b4:b5:69:ad:d4:5d:90:51:0a:51:ee:f2:c4:53:b5:87:d6:26:
17:22:89:4c:ac:96:ef:38:cf:65:71:45:47:f5:49:1e:b1:d2:
21:50:a4:39:4f:70:b6:6c:3e:56:d5:79:1c:55:ad:b4:5d:c9:
d9:fa:fc:68:85:ac:b4:4a:11:d7:4c:00:6a:ed:b0:92:a5:eb:
7a:2b:b7:d6:5f:ca:3c:5f:62:e0:f7:fd:b1:7e:30:63:09:77:
ab:76:12:08:47:b5:ab:d6:22:b9:35:25:80:07:f0:82:16:b4:
8f:af:61:cd:ec:95:45:8a:e7:1d:e3:e4:04:75:25:1f:eb:e9:
17:31:0f:94:af:aa:cb:29:c2:1d:1d:f3:94:70:ed:7b:a0:de:
fa:62:4f:8e:6c:8f:4d:0f:78:4b:ff:a6:ed:c0:ce:1c:23:60:
e2:d1:87:d3:8b:9b:ce:a1:da:0a:46:34:85:af:ff:b4:25:d8:
96:c7:fe:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:50 2023 by rpki-client on console-ams.rpki-client.org