Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/d60548-8608-401c-a2b5-cd7b288d6ea0/1/Cu0gj8yIrqxOugpTW_zP4S-jFC8.roa
File: Cu0gj8yIrqxOugpTW_zP4S-jFC8.roa (raw, json)
Hash identifier: i4RGZv50ZgH/hRCEHqL/KH5Cb6LrFfCXLcI3UKMjVA4=
Subject key identifier: 0A:ED:20:8F:CC:88:AE:AC:4E:BA:0A:53:5B:FC:CF:E1:2F:A3:14:2F
Certificate issuer: /CN=bf2631a89940c779fbd9da231a1d2e9840c9c7c6
Certificate serial: 0D009219
Authority key identifier: BF:26:31:A8:99:40:C7:79:FB:D9:DA:23:1A:1D:2E:98:40:C9:C7:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vyYxqJlAx3n72dojGh0umEDJx8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/d60548-8608-401c-a2b5-cd7b288d6ea0/1/Cu0gj8yIrqxOugpTW_zP4S-jFC8.roa
Signing time: Sat 01 Jan 2022 09:53:07 +0000
ROA not before: Sat 01 Jan 2022 09:53:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50596
IP address blocks: 185.235.64.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 218141209 (0xd009219)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf2631a89940c779fbd9da231a1d2e9840c9c7c6
Validity
Not Before: Jan 1 09:53:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0aed208fcc88aeac4eba0a535bfccfe12fa3142f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1f:7b:67:94:80:af:7a:6d:43:a9:fb:db:04:
32:7a:2e:96:e2:1c:05:e7:c6:73:86:8b:e3:2d:7b:
73:06:53:4e:1a:23:69:b6:12:2b:eb:87:2a:23:95:
8e:0d:08:c8:b8:31:39:32:0d:da:9c:69:b2:10:2d:
a5:36:84:e4:7f:78:5b:c9:a4:ca:34:55:0c:78:30:
c7:24:c8:60:7a:1c:47:88:38:ea:1e:cd:d7:33:e5:
ef:8b:71:14:31:0e:e5:c9:af:8f:30:a5:1f:5b:f6:
c4:38:fb:36:4f:9e:d9:14:64:49:a5:c3:9a:05:92:
e3:ab:3e:c0:5d:e7:1a:07:d4:91:a7:26:1e:37:db:
70:ad:0e:bf:5b:7b:44:57:e0:c4:02:47:49:0d:5d:
87:8d:af:f7:ca:10:4f:7a:1d:40:6f:9c:b4:42:c5:
18:44:4d:72:f7:ef:a9:d4:77:ed:cf:28:d2:cf:af:
db:23:93:0b:d6:bf:e7:c9:7e:6e:f5:81:1d:93:24:
93:59:d5:f8:d3:e7:d5:87:0f:3f:cc:14:c7:7f:8e:
a7:85:12:ef:28:65:c0:7c:8b:b0:9c:fc:71:87:1b:
cb:22:ca:9c:93:8f:1d:ad:74:f8:1d:fa:d0:02:83:
76:d0:72:b8:eb:ca:bc:96:fb:2a:3e:b5:35:75:87:
d8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:ED:20:8F:CC:88:AE:AC:4E:BA:0A:53:5B:FC:CF:E1:2F:A3:14:2F
X509v3 Authority Key Identifier:
keyid:BF:26:31:A8:99:40:C7:79:FB:D9:DA:23:1A:1D:2E:98:40:C9:C7:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vyYxqJlAx3n72dojGh0umEDJx8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d60548-8608-401c-a2b5-cd7b288d6ea0/1/Cu0gj8yIrqxOugpTW_zP4S-jFC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d60548-8608-401c-a2b5-cd7b288d6ea0/1/vyYxqJlAx3n72dojGh0umEDJx8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.64.0/22
Signature Algorithm: sha256WithRSAEncryption
01:27:f3:8e:d3:a7:93:7d:3e:93:94:51:21:bb:e0:50:8f:73:
5c:c5:01:24:0f:d9:fd:1f:74:ce:25:cc:01:68:4c:27:1a:0b:
55:89:f8:23:fe:a7:2f:e9:ad:87:bb:cc:22:2c:8f:77:70:78:
ad:a4:17:ec:83:0b:89:1d:f1:58:57:63:27:5e:37:04:26:83:
ad:2f:e3:6b:35:b4:fe:97:b0:f5:13:fb:06:da:89:c1:75:18:
3a:0d:d8:39:f6:46:fa:b0:9a:9a:37:da:68:06:19:12:49:a3:
b8:f8:cd:f2:25:78:0e:ed:f5:07:42:8a:31:57:3e:51:eb:09:
2d:ce:bf:01:29:32:3d:c8:0c:61:80:b2:ba:48:87:06:b9:e6:
72:65:18:df:b0:bb:7c:0c:8b:6e:b5:87:51:e2:fc:75:a0:79:
06:b1:5d:33:7b:24:52:a7:3c:60:27:05:56:ad:79:54:2c:c5:
95:e3:7b:6c:a2:aa:b9:b9:6c:97:22:a9:cf:e0:7e:11:d5:13:
c7:ff:ec:f4:37:c3:d0:53:c1:c1:41:cd:ce:38:9a:2d:14:83:
fb:6b:0e:f1:b5:a7:f6:cf:93:e1:9d:d2:41:b8:a6:21:4c:83:
ee:2b:cf:cc:5f:7d:d8:53:18:f3:b0:d5:23:00:cf:cc:e0:34:
2c:f0:75:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:27 2023 by rpki-client on console-fra.rpki-client.org