Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Vs4nY3SZMn-S9VvzGYxJieSZsOw.roa
File: Vs4nY3SZMn-S9VvzGYxJieSZsOw.roa (raw, json)
Hash identifier: EgAZGGJ4jMIAVEblHmOC3e7io0v7XIA5yaEuvGuXCBQ=
Subject key identifier: 56:CE:27:63:74:99:32:7F:92:F5:5B:F3:19:8C:49:89:E4:99:B0:EC
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185304F140642E4D3AC4F369321D0E9D19F
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Vs4nY3SZMn-S9VvzGYxJieSZsOw.roa
Signing time: Tue 20 Dec 2022 16:12:46 +0000
ROA not before: Tue 20 Dec 2022 16:12:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39744
IP address blocks: 185.216.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:4f:14:06:42:e4:d3:ac:4f:36:93:21:d0:e9:d1:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 20 16:12:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56ce27637499327f92f55bf3198c4989e499b0ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:8e:ff:62:5f:f0:d1:99:25:79:58:fd:9a:cf:
84:d7:0a:76:4d:3f:83:ad:d0:a5:61:bd:1d:7b:e4:
c7:07:15:9b:43:83:af:71:5f:bc:66:f0:85:3c:7b:
46:f0:8d:c2:a4:fe:d4:21:68:0d:45:01:86:c1:06:
f3:db:6a:58:d9:e5:a5:70:41:d4:89:af:cb:69:89:
8e:3c:76:be:52:97:c0:f0:45:20:40:ef:df:e5:f2:
ff:81:47:dd:26:dd:60:83:54:3c:b4:a5:29:21:d1:
f2:c6:4e:87:65:cf:03:08:58:5d:3d:4b:d2:bf:6d:
de:65:c7:98:a4:4d:7e:5f:60:29:d5:2b:01:20:31:
59:c7:05:4d:87:09:30:89:e1:0c:0f:fb:58:a7:82:
8f:6c:53:13:7a:68:d7:22:2b:71:6d:59:25:50:b7:
f0:b6:04:00:6a:dd:a3:24:d0:b6:48:d5:66:0f:86:
28:6f:1c:3f:60:ac:4c:f2:78:b8:6d:e8:1f:55:d7:
11:91:51:cf:40:e1:f8:a8:b3:3c:1b:f9:2e:6e:e9:
b5:45:5c:ec:06:83:d7:76:08:39:0a:8a:ed:71:d0:
d3:39:34:56:6f:09:c4:1d:90:08:5d:eb:55:0a:46:
11:bb:ab:85:ce:55:5a:ce:31:b6:cf:8c:aa:a3:17:
b2:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:CE:27:63:74:99:32:7F:92:F5:5B:F3:19:8C:49:89:E4:99:B0:EC
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Vs4nY3SZMn-S9VvzGYxJieSZsOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.168.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:7e:65:a5:5a:cc:3f:c3:1b:d4:72:18:d7:06:5c:f5:aa:6a:
18:5d:38:b4:2f:a4:36:39:df:07:a4:46:9f:8b:99:22:b7:78:
1c:dc:7e:b3:a9:36:e8:6a:3d:e3:95:0e:ff:c7:e0:25:d4:c8:
82:68:fd:26:aa:f6:63:6a:f7:9d:ae:e9:56:0e:37:a3:a3:2e:
b0:2e:ea:6d:a7:d1:79:ab:37:c5:21:aa:f4:15:dd:5b:55:43:
0a:1c:33:fc:2f:38:fb:6d:31:bb:76:dd:af:ab:20:1f:3a:13:
02:d6:af:22:c3:8f:b5:fe:7a:bf:10:ab:9e:40:1b:4a:85:12:
58:f5:be:31:b8:24:5c:13:eb:a8:76:71:10:22:fa:c6:4e:e1:
18:e6:a6:91:78:eb:c8:08:b0:2c:ef:40:0a:71:49:23:e4:51:
c5:b5:a1:eb:20:02:87:fe:53:82:a7:75:bf:d3:d9:7e:c3:37:
50:ae:a6:5e:05:39:39:1e:e0:6c:91:b8:ad:89:20:df:79:1b:
25:b1:95:54:89:37:c2:04:c3:c4:43:db:28:bc:8b:88:17:6e:
40:e7:bf:f3:5a:ff:b1:c6:57:cb:e3:18:0d:6f:3a:d8:5b:6a:
35:74:6e:1c:97:17:de:2b:7c:51:76:cb:05:12:ea:f2:bc:63:
c4:e9:57:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org