Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b34642-c7ec-4d47-9d6f-271a155eeb92/1/EU1KtIbod3hJ8y4ztZcsYpG6mdI.roa
File: EU1KtIbod3hJ8y4ztZcsYpG6mdI.roa (raw, json)
Hash identifier: D8Ir+DitXruBr4uKnZF6Z+xEHusOJAw2zMdgAosrqYE=
Subject key identifier: 11:4D:4A:B4:86:E8:77:78:49:F3:2E:33:B5:97:2C:62:91:BA:99:D2
Certificate issuer: /CN=ac6cc8603353d732e4b1ccba7eaca0b6cee4c4cf
Certificate serial: 090C7B36
Authority key identifier: AC:6C:C8:60:33:53:D7:32:E4:B1:CC:BA:7E:AC:A0:B6:CE:E4:C4:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rGzIYDNT1zLkscy6fqygts7kxM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b34642-c7ec-4d47-9d6f-271a155eeb92/1/EU1KtIbod3hJ8y4ztZcsYpG6mdI.roa
Signing time: Sat 22 Jan 2022 17:05:02 +0000
ROA not before: Sat 22 Jan 2022 17:05:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50629
IP address blocks: 185.223.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151812918 (0x90c7b36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac6cc8603353d732e4b1ccba7eaca0b6cee4c4cf
Validity
Not Before: Jan 22 17:05:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=114d4ab486e8777849f32e33b5972c6291ba99d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:81:c8:ac:b6:34:58:86:0c:4c:0a:28:5e:51:
fc:a4:81:d7:e5:7e:19:5a:59:f5:b6:cd:a4:51:7b:
5d:72:5e:55:23:ad:b3:f3:d4:ad:28:46:1b:2e:f3:
b8:f3:d9:3c:c9:61:30:9e:d7:27:cd:09:a6:3f:44:
86:e2:e7:a8:59:cc:61:12:1d:08:91:56:0c:94:3c:
dc:73:32:fa:2d:fa:68:0d:25:05:d3:90:58:c5:4f:
18:d3:72:0c:2e:67:48:a6:38:db:70:f7:0a:6f:58:
42:94:cf:32:56:d1:91:bc:c6:a8:73:97:db:da:f2:
b2:98:5f:5e:8d:09:e6:4e:2e:a2:8d:46:28:1a:4d:
4f:31:3d:1b:77:a9:b8:b1:79:77:33:75:28:6d:3c:
7b:10:c2:1f:62:6e:c7:62:4d:28:fc:cf:0c:e3:49:
41:95:ca:e4:0c:0a:54:0e:48:a5:9f:45:e5:8b:b3:
73:08:5e:52:6e:e8:fd:2c:87:70:cf:91:36:fd:96:
e1:07:29:b8:ff:14:27:26:79:6f:e5:64:a7:8d:94:
a4:5c:b5:47:9d:d5:39:0e:bf:2a:6e:db:07:50:5c:
8b:3c:a6:a0:8a:2b:32:2a:32:2c:21:78:a1:8f:3d:
e2:be:68:0c:4f:85:75:3c:4f:38:db:a5:e9:9f:14:
cf:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:4D:4A:B4:86:E8:77:78:49:F3:2E:33:B5:97:2C:62:91:BA:99:D2
X509v3 Authority Key Identifier:
keyid:AC:6C:C8:60:33:53:D7:32:E4:B1:CC:BA:7E:AC:A0:B6:CE:E4:C4:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rGzIYDNT1zLkscy6fqygts7kxM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b34642-c7ec-4d47-9d6f-271a155eeb92/1/EU1KtIbod3hJ8y4ztZcsYpG6mdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b34642-c7ec-4d47-9d6f-271a155eeb92/1/rGzIYDNT1zLkscy6fqygts7kxM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.144.0/22
Signature Algorithm: sha256WithRSAEncryption
18:2f:de:f5:48:ba:5a:1d:ff:e0:44:cd:24:6b:96:a0:e9:81:
9c:42:a9:ae:97:06:e2:66:7d:5d:ea:0d:d1:14:da:32:0a:cd:
6c:92:fc:4b:a2:9a:0f:0f:3e:ca:f8:e4:27:7b:7a:28:56:97:
34:8f:74:ba:84:8d:e8:d1:47:92:bb:94:bd:7c:a3:46:e2:cf:
bf:23:d8:f5:21:4f:71:71:de:a9:6d:9f:5a:ba:b1:91:3f:97:
16:f8:eb:a8:a9:d8:76:00:12:5b:2f:0a:16:98:7e:cf:31:75:
6b:9c:92:77:3e:40:88:e0:d1:a9:ae:36:39:89:10:b2:e3:87:
26:71:f8:48:8e:03:0b:9d:04:4f:5a:38:b7:f9:72:eb:0d:d3:
e1:fa:3b:cb:3d:a4:78:dc:16:bb:0c:c5:7f:ec:1c:fe:e6:9a:
ae:fd:43:82:05:f3:e0:17:a8:c4:8e:a1:65:ea:bb:9b:55:b0:
9e:b5:f9:db:1b:78:fd:6c:6b:f8:ec:63:cc:bc:be:a4:48:29:
e8:09:8c:40:b1:2a:88:c3:4a:d4:9e:b3:9f:71:56:1f:8b:31:
41:6e:e4:c8:44:ae:f2:bc:bd:70:93:8f:ee:e5:00:54:d1:a0:
28:74:27:99:c3:94:ca:4d:8f:de:96:fe:15:93:0e:aa:52:6c:
09:cc:9f:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:57 2024 by rpki-client on console-ams.rpki-client.org