Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/taMUbFtX3H9c_aayEUeRK6tw21k.roa
File: taMUbFtX3H9c_aayEUeRK6tw21k.roa (raw, json)
Hash identifier: fnz7YZQFvEc/yvk2jmeo4ce+zPKU/hAbi3nrN8N6kQk=
Subject key identifier: B5:A3:14:6C:5B:57:DC:7F:5C:FD:A6:B2:11:47:91:2B:AB:70:DB:59
Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Certificate serial: 0182457490194A087CD999B231882196B31D
Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/taMUbFtX3H9c_aayEUeRK6tw21k.roa
Signing time: Thu 28 Jul 2022 15:37:23 +0000
ROA not before: Thu 28 Jul 2022 15:37:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30848
IP address blocks: 185.116.62.0/29 maxlen: 29
185.116.62.0/32 maxlen: 32
185.116.62.0/24 maxlen: 24
185.116.62.0/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:45:74:90:19:4a:08:7c:d9:99:b2:31:88:21:96:b3:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Validity
Not Before: Jul 28 15:37:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5a3146c5b57dc7f5cfda6b21147912bab70db59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:81:9c:30:c2:a0:3a:5e:de:4f:0f:8e:06:66:
18:18:cd:41:d1:3a:1f:81:b9:c7:90:81:a7:2c:59:
d3:20:bb:74:ad:d7:9e:b6:59:53:30:5a:47:82:c0:
00:1b:db:6e:b7:0e:cc:2d:4f:2e:06:4e:87:9c:3a:
dd:b7:06:3a:6c:7a:8c:d4:5f:d4:e4:2c:dc:ce:2f:
2b:a2:bc:ec:c2:61:15:cc:76:08:9f:c0:83:53:1a:
9e:31:d6:7e:6c:83:63:64:1f:12:42:21:80:2f:b7:
58:a3:64:64:55:ca:66:00:28:d0:cc:dc:db:34:7c:
f4:d4:6f:d2:80:4d:f6:c3:11:d2:d9:d5:84:77:7d:
9b:d6:41:93:ed:c9:b6:95:85:ec:7c:0c:f8:a6:ea:
de:b3:0f:8d:21:66:19:bf:c4:f8:b6:7e:ba:5e:98:
60:ee:51:8f:e5:d3:05:57:e7:ec:3b:10:cd:9b:7a:
56:50:4e:5c:61:f1:87:08:1f:0c:f0:ba:75:a9:8e:
d5:38:90:b1:25:1a:4a:94:12:5b:33:b2:40:46:da:
f2:7c:c0:bf:b7:ce:1e:4a:63:bb:9c:a5:df:46:c5:
09:7c:f9:3e:b4:f3:90:f0:b4:4b:75:1d:72:47:d7:
e8:ad:61:87:af:82:7a:ca:7d:fe:aa:2d:3e:c7:48:
12:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A3:14:6C:5B:57:DC:7F:5C:FD:A6:B2:11:47:91:2B:AB:70:DB:59
X509v3 Authority Key Identifier:
keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/taMUbFtX3H9c_aayEUeRK6tw21k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.116.62.0/24
Signature Algorithm: sha256WithRSAEncryption
75:f2:c8:2a:40:d4:28:77:35:32:41:9f:35:9f:8d:55:2e:81:
83:a3:b3:10:3b:46:8f:c1:66:6b:f6:9e:9b:b9:61:40:2a:65:
86:90:79:3f:2d:aa:5c:af:0c:c7:c5:55:58:b0:a2:9f:58:a3:
2c:54:6f:57:da:2c:28:71:46:cb:79:81:e1:8d:3d:5e:0b:e5:
0c:51:e8:5c:b8:8f:a5:0d:0e:d2:67:71:ac:a8:a6:7e:4d:77:
f7:65:17:1c:f9:e8:f9:06:c2:02:55:9a:d0:b4:35:c4:23:94:
de:b7:e0:ca:2c:63:b9:61:c7:07:97:bb:5c:c3:0b:f0:a2:7b:
7a:26:b6:0d:e2:dc:72:a4:3e:c6:49:65:14:e2:bb:25:71:13:
36:8b:85:7e:93:3b:26:c0:52:71:b2:c0:f9:38:a9:e6:65:02:
c5:fd:c5:05:81:e3:4e:56:f1:4d:bc:09:0a:e8:3a:7d:42:1e:
2e:36:23:2b:b2:c7:46:67:b9:11:c6:f0:83:9a:16:a8:ac:fa:
7c:f2:0c:81:ad:22:4d:b9:fa:c6:98:e7:5b:f9:44:3a:f8:f1:
0f:45:82:63:cc:6c:3b:49:5b:eb:19:5a:b1:e1:2e:05:79:79:
58:46:14:fb:6a:fe:e0:7b:1d:a5:1e:62:c9:93:bd:05:e3:94:
bd:26:4e:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:00 2024 by rpki-client on console-fra.rpki-client.org