Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/W3sD4a22tdSZgicC-57-UZRHndo.roa
File: W3sD4a22tdSZgicC-57-UZRHndo.roa (raw, json)
Hash identifier: NjrwVkCHLCjmegYErfBu06QXTckNS/ZGJ5ws/HRjZKk=
Subject key identifier: 5B:7B:03:E1:AD:B6:B5:D4:99:82:27:02:FB:9E:FE:51:94:47:9D:DA
Certificate issuer: /CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Certificate serial: 01DBD7
Authority key identifier: BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/W3sD4a22tdSZgicC-57-UZRHndo.roa
Signing time: Mon 27 Jun 2022 10:18:40 +0000
ROA not before: Mon 27 Jun 2022 10:18:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60111
IP address blocks: 185.143.252.0/22 maxlen: 22
2a07:39c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121815 (0x1dbd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Validity
Not Before: Jun 27 10:18:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b7b03e1adb6b5d499822702fb9efe5194479dda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0b:11:c1:c3:de:99:c2:e0:fa:1c:11:ba:f4:
ad:a6:6c:90:14:dc:7f:30:87:a4:4e:44:0e:00:e7:
02:29:27:ba:d1:15:4f:86:45:93:7e:2d:ce:c9:fa:
a1:04:80:2f:58:6f:47:9c:d0:ae:9d:4d:e0:4c:2c:
99:f0:c1:00:dd:af:89:30:7b:9d:18:be:d6:e1:c4:
37:4c:a8:e4:0b:0b:cb:b4:a5:44:ea:e2:f8:f1:d7:
75:34:90:86:2a:e1:97:b6:72:0c:56:56:d3:f8:62:
34:e7:b5:8d:1b:73:f5:f3:9e:4b:4a:51:93:71:79:
1c:95:02:26:88:09:38:ac:27:0f:40:cd:9f:b7:a3:
b6:c1:ad:e6:49:5e:2a:aa:4e:6d:78:76:6b:a6:dc:
5a:21:2e:18:b3:ef:d7:05:88:13:86:64:91:b0:93:
b3:5b:a9:6e:b0:f4:df:9d:1e:23:75:46:26:94:ec:
01:5c:18:70:6b:c3:2b:05:4b:40:34:d2:56:b1:7f:
32:c9:ae:63:8f:1c:c2:b3:36:fd:62:c4:42:1a:0b:
87:36:5b:6c:df:d9:02:a6:8c:89:a4:99:63:eb:88:
2b:5a:92:4c:cb:4d:94:65:d8:bd:d3:b8:33:b2:b2:
3e:49:63:8d:1f:c3:70:a3:95:90:9a:34:6a:ac:16:
a7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:7B:03:E1:AD:B6:B5:D4:99:82:27:02:FB:9E:FE:51:94:47:9D:DA
X509v3 Authority Key Identifier:
keyid:BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/W3sD4a22tdSZgicC-57-UZRHndo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.252.0/22
IPv6:
2a07:39c0::/29
Signature Algorithm: sha256WithRSAEncryption
2a:63:cd:5f:e7:1e:02:54:90:99:ac:8c:4f:fa:94:eb:d2:8e:
31:26:42:56:03:f2:25:61:19:7d:49:cf:f3:07:6b:b9:ec:d9:
13:03:29:e3:79:8e:3c:ab:3d:b1:be:bd:61:9c:d4:5e:58:8f:
dd:fd:12:12:5e:73:f7:37:4a:93:d9:f1:c6:87:67:53:ca:e6:
48:55:52:cd:94:7f:eb:fc:3b:d6:b4:2a:e6:d8:ac:a0:51:64:
ef:ef:b0:ef:45:c2:77:31:57:14:ad:fc:66:ea:7b:d0:16:89:
e1:dd:88:05:0b:6e:a0:bd:24:77:e0:23:ac:a8:e6:ff:3c:d2:
ae:5b:79:a0:6f:a8:11:6c:07:73:99:25:ca:43:a6:ed:3e:ab:
52:d3:da:05:7b:b0:30:35:2b:a1:6f:1f:c8:af:91:d1:fe:b3:
11:10:a3:47:77:be:34:c8:55:42:4d:94:41:39:00:8c:04:7d:
0d:ec:3c:8e:c5:95:3e:28:83:18:de:54:44:16:c9:b7:b0:82:
55:ad:29:e8:3a:49:02:3d:f6:f9:8b:0b:65:c1:8d:81:2d:a5:
29:ca:cd:6b:a1:93:9d:fc:f6:99:2c:2f:9b:53:2f:ca:0c:43:
c8:10:64:3f:d4:4c:09:d1:62:c3:c5:b6:e4:80:35:61:90:9e:
27:24:93:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:53 2024 by rpki-client on console-ams.rpki-client.org