Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/aMB3uCwJ1O2PsA3S9TXuk-zvS6E.roa
File: aMB3uCwJ1O2PsA3S9TXuk-zvS6E.roa (raw, json)
Hash identifier: cfCQQDR0ZzxToz7QV6LZOvQC1/h7LVuIHmaBMJGIjdU=
Subject key identifier: 68:C0:77:B8:2C:09:D4:ED:8F:B0:0D:D2:F5:35:EE:93:EC:EF:4B:A1
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 18D1F984
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/aMB3uCwJ1O2PsA3S9TXuk-zvS6E.roa
Signing time: Sun 20 Feb 2022 14:58:07 +0000
ROA not before: Sun 20 Feb 2022 14:58:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25926
IP address blocks: 185.120.7.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 416414084 (0x18d1f984)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Feb 20 14:58:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68c077b82c09d4ed8fb00dd2f535ee93ecef4ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:de:25:8d:8a:a4:21:b8:1e:8e:8c:01:0a:27:
57:7e:d6:a0:ab:6b:87:92:7f:84:3b:55:8d:2c:f1:
4f:17:f1:90:a6:4c:7a:71:90:aa:b6:b0:27:02:32:
a9:a7:42:61:b6:e9:4f:56:f1:78:cb:a6:a5:41:f2:
32:2b:d9:fe:bd:4d:65:45:76:36:b3:87:19:3a:5b:
4f:a9:07:a0:42:a6:28:31:1b:39:17:4e:9e:7d:e4:
73:83:ad:ac:67:71:88:06:7a:ec:80:d8:8d:a8:cc:
61:2f:50:ee:6a:90:b6:a2:7d:e3:9e:e8:6e:72:94:
4b:cd:45:9c:74:01:d6:5d:72:e9:93:00:30:7a:cf:
d1:c9:7d:64:fb:ab:6b:3b:14:16:d0:1e:85:d9:33:
18:be:50:07:a3:19:dd:15:fa:67:13:f8:d2:77:84:
fa:83:a2:41:5f:67:23:0c:48:0e:63:1e:89:3c:8b:
29:a9:f6:ee:89:1d:6e:4e:bc:5b:79:c3:56:7e:21:
ff:6d:cd:92:8d:6a:56:df:0e:ae:f4:02:b9:f3:09:
78:3d:7f:e8:92:5e:eb:d3:da:bd:99:40:60:93:43:
e0:24:59:c8:64:5e:5f:c8:3a:8e:be:23:92:22:2b:
5b:76:5e:2e:58:79:db:85:f7:22:b8:c7:fe:0e:91:
db:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C0:77:B8:2C:09:D4:ED:8F:B0:0D:D2:F5:35:EE:93:EC:EF:4B:A1
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/aMB3uCwJ1O2PsA3S9TXuk-zvS6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.7.0/24
Signature Algorithm: sha256WithRSAEncryption
60:44:82:05:fe:f4:53:5a:c0:2a:c5:81:3b:54:61:38:a3:8c:
7e:9e:f9:f6:8c:f3:91:d5:f5:3e:2a:00:a0:b7:c9:5f:67:3a:
96:a2:29:fa:8a:fa:08:c5:62:17:b6:5b:d1:7a:25:e3:9c:13:
da:ca:3f:5d:cb:4b:f0:79:f7:48:27:27:7f:f8:cf:02:4a:21:
5d:4d:12:f0:99:92:13:03:02:b6:40:97:94:56:d0:f3:24:7c:
25:0e:b8:4a:54:7f:26:8c:b0:8d:f9:bb:fb:70:bb:e2:fa:a6:
d8:23:ba:b8:3f:a8:03:77:ee:2c:fd:f9:35:dd:0f:cb:7d:d7:
40:1a:3e:3b:07:34:77:48:2e:00:75:5e:ef:bb:9f:5b:27:f9:
d9:99:c1:24:2b:6d:a8:cd:a3:7c:ec:2f:c4:1a:c3:dd:6b:02:
e9:69:57:f0:ea:ca:9e:16:0d:3c:ae:43:a8:ee:37:82:db:30:
91:a0:ab:91:da:a5:7b:e5:18:0c:71:9b:e8:ff:60:d7:cc:38:
ee:32:ae:5d:c8:d7:06:db:b7:c9:22:5e:56:b0:b6:c5:1e:6b:
fd:8d:44:04:65:e9:34:49:d1:47:66:9e:39:6f:0b:40:95:5c:
d3:cc:a3:dd:85:24:83:85:7c:19:2b:18:cf:25:8d:1e:3f:64:
57:17:2c:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org