Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/84QYfbkbGxrCEKdbAvfDl8GXh7Y.roa
File: 84QYfbkbGxrCEKdbAvfDl8GXh7Y.roa (raw, json)
Hash identifier: MVNNH8kkHYYXoo7Stx1gnklgERmcHgrvWNZF/uoe0+M=
Subject key identifier: F3:84:18:7D:B9:1B:1B:1A:C2:10:A7:5B:02:F7:C3:97:C1:97:87:B6
Certificate issuer: /CN=f5346d3edbec6da72780722c0a41abeea63661d8
Certificate serial: 09CBC7AE
Authority key identifier: F5:34:6D:3E:DB:EC:6D:A7:27:80:72:2C:0A:41:AB:EE:A6:36:61:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9TRtPtvsbacngHIsCkGr7qY2Ydg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/84QYfbkbGxrCEKdbAvfDl8GXh7Y.roa
Signing time: Sat 01 Jan 2022 09:06:35 +0000
ROA not before: Sat 01 Jan 2022 09:06:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60044
IP address blocks: 185.57.216.0/22 maxlen: 22
2a04:dec0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164349870 (0x9cbc7ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5346d3edbec6da72780722c0a41abeea63661d8
Validity
Not Before: Jan 1 09:06:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f384187db91b1b1ac210a75b02f7c397c19787b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:26:e5:4b:9b:d2:ec:9e:54:20:9b:5b:33:71:
11:bb:72:b6:29:68:fd:69:36:f2:4d:7e:29:81:0b:
c8:34:a6:e4:86:13:fd:e0:52:f8:c2:bd:cc:69:29:
7a:d0:6c:ac:e7:b0:09:a9:0d:53:56:42:44:e3:a5:
69:fe:d1:e3:62:05:87:34:e1:4c:2c:c7:2b:58:f0:
45:85:be:ee:12:dd:f7:77:df:c3:29:a2:40:89:37:
f1:c9:48:7b:49:fc:e2:34:54:18:f3:6c:0d:36:d1:
13:23:d1:86:53:de:50:da:a4:ab:ef:86:a2:66:fe:
a4:fa:e4:f5:b2:0a:82:64:dc:04:22:ef:55:cb:b3:
f8:f2:c9:aa:fe:41:6c:76:f5:96:ba:47:94:99:60:
a3:4e:4e:fe:aa:80:c0:fe:26:05:28:23:55:00:e1:
12:c5:a7:69:93:6b:be:b0:24:c1:c6:e7:d6:e1:a0:
55:3f:0c:cd:0b:3f:ca:81:28:5e:2e:33:0f:f2:44:
a5:af:e0:75:9f:b7:fc:48:e5:75:c8:8c:93:59:f8:
08:36:c0:80:28:d8:67:36:db:65:83:7c:f3:90:44:
3e:e1:38:0d:7c:fd:54:46:f2:51:f7:05:8d:e2:14:
d5:20:c3:31:0f:60:ac:ec:0e:fe:d7:b3:df:f2:7b:
ea:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:84:18:7D:B9:1B:1B:1A:C2:10:A7:5B:02:F7:C3:97:C1:97:87:B6
X509v3 Authority Key Identifier:
keyid:F5:34:6D:3E:DB:EC:6D:A7:27:80:72:2C:0A:41:AB:EE:A6:36:61:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9TRtPtvsbacngHIsCkGr7qY2Ydg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/84QYfbkbGxrCEKdbAvfDl8GXh7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/9TRtPtvsbacngHIsCkGr7qY2Ydg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.216.0/22
IPv6:
2a04:dec0::/29
Signature Algorithm: sha256WithRSAEncryption
a9:6d:fc:a2:3d:61:21:d5:c0:0b:9f:5e:68:77:30:58:8f:2f:
f1:38:79:81:6f:45:0e:51:b2:76:3f:55:52:8c:2a:e1:00:3c:
b8:0a:2a:17:e0:d8:2a:89:8a:0d:ab:24:3d:d6:14:a7:59:67:
ee:00:ac:6c:66:bc:e4:da:27:80:a4:d7:5b:25:18:1b:83:2c:
25:19:08:65:89:da:3d:96:7c:7e:ca:a2:50:be:97:19:c5:05:
e5:7c:8d:d3:cb:c5:be:82:be:75:6a:e4:bd:ae:6f:8c:93:43:
14:c7:5d:eb:a0:e7:ac:ee:15:94:c9:1d:c7:ec:de:71:1b:70:
08:5d:4e:f9:df:50:ba:7f:ee:a4:7d:e3:fe:db:b9:1c:e8:d2:
76:b5:cf:5e:12:9b:2f:2f:b4:1e:ee:b3:02:02:67:b1:ba:9c:
72:69:2b:72:5e:16:10:5b:33:59:69:cc:27:1c:13:85:37:d7:
6e:fa:5d:dd:32:d5:22:92:68:00:5a:a1:b3:e1:47:e4:5d:5f:
ba:ec:5f:23:90:86:61:d1:0e:16:cc:fd:4c:12:fc:83:9e:af:
e4:e5:2d:c0:88:7e:18:5b:06:f7:8b:a3:f0:17:7e:82:b3:6c:
79:f2:cf:f6:01:43:3e:47:e1:e3:ee:ba:24:7a:07:ae:fc:27:
71:74:a0:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:35 2024 by rpki-client on console-ams.rpki-client.org