Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/baa4bc-924e-4364-9f13-a5c96e211605/1/5rw8C435mBrFkDpxuJtS581HV7M.roa
File: 5rw8C435mBrFkDpxuJtS581HV7M.roa (raw, json)
Hash identifier: ka0pXVHlJ0DFxSBQocRdpIMtQ2TUp5xyZWFEmkdwP6I=
Subject key identifier: E6:BC:3C:0B:8D:F9:98:1A:C5:90:3A:71:B8:9B:52:E7:CD:47:57:B3
Certificate issuer: /CN=4806b9e62f1b00f2cf98d0dcc583292afacb522f
Certificate serial: 0203ADAA
Authority key identifier: 48:06:B9:E6:2F:1B:00:F2:CF:98:D0:DC:C5:83:29:2A:FA:CB:52:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAa55i8bAPLPmNDcxYMpKvrLUi8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/baa4bc-924e-4364-9f13-a5c96e211605/1/5rw8C435mBrFkDpxuJtS581HV7M.roa
Signing time: Sat 01 Jan 2022 05:53:50 +0000
ROA not before: Sat 01 Jan 2022 05:53:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211850
IP address blocks: 185.235.207.0/24 maxlen: 24
2a10:86c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33795498 (0x203adaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4806b9e62f1b00f2cf98d0dcc583292afacb522f
Validity
Not Before: Jan 1 05:53:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6bc3c0b8df9981ac5903a71b89b52e7cd4757b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6c:28:83:fe:b0:01:c2:e2:06:de:72:43:6c:
25:f5:de:44:65:25:4c:ee:07:d0:f4:6f:3c:db:1d:
ac:fd:b7:5b:ca:2b:98:02:08:a7:0e:96:9c:2f:a5:
8d:4e:85:51:f1:ce:24:bb:5b:4c:de:9b:72:7e:b4:
c3:88:9b:b6:8e:b5:8b:32:f9:dc:5e:ce:6c:64:6b:
c7:f4:4e:79:b8:32:cd:69:eb:a3:24:30:cd:27:4d:
24:88:be:7c:90:cd:c1:a1:7a:de:94:3b:1a:68:f9:
40:87:8e:30:ba:e6:6a:ad:db:39:77:ed:ff:2f:59:
92:4e:b7:bb:f5:4f:fa:e6:f0:d1:ad:c2:a2:f6:69:
0e:cc:b1:95:d4:20:44:e6:3c:a8:d6:06:69:cc:5c:
57:7a:12:4f:30:89:fb:55:df:a3:fe:d8:2c:98:2b:
4d:a6:a1:33:c0:1f:71:ea:e4:9f:e3:12:2a:42:65:
63:c3:d7:12:0e:0a:db:bc:b7:5d:1d:f6:36:0e:45:
0f:60:f9:29:34:69:5f:4f:6d:01:75:7d:44:8b:bc:
41:43:53:74:56:11:ae:94:1c:d8:47:87:2d:80:68:
19:9e:cd:52:99:93:13:44:88:0f:b4:c7:42:f0:1a:
55:71:ba:da:a7:24:17:d7:9f:2f:40:a1:85:a3:57:
ed:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:BC:3C:0B:8D:F9:98:1A:C5:90:3A:71:B8:9B:52:E7:CD:47:57:B3
X509v3 Authority Key Identifier:
keyid:48:06:B9:E6:2F:1B:00:F2:CF:98:D0:DC:C5:83:29:2A:FA:CB:52:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAa55i8bAPLPmNDcxYMpKvrLUi8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/baa4bc-924e-4364-9f13-a5c96e211605/1/5rw8C435mBrFkDpxuJtS581HV7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/baa4bc-924e-4364-9f13-a5c96e211605/1/SAa55i8bAPLPmNDcxYMpKvrLUi8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.207.0/24
IPv6:
2a10:86c0::/29
Signature Algorithm: sha256WithRSAEncryption
a8:fa:56:49:48:0d:bf:8a:22:22:82:97:70:e9:6d:6b:1b:28:
1e:04:35:ce:1b:5f:39:cc:20:56:e0:6b:c2:1e:e6:28:a6:12:
d0:7c:47:ed:37:7c:87:ff:1b:30:f6:83:0a:7a:ed:69:33:e8:
b4:35:6e:40:6e:32:7b:21:75:53:ee:0d:d6:03:2f:e4:6c:ea:
bf:b6:9f:a0:1f:b5:14:d7:21:e9:db:25:35:8e:b7:73:b3:e3:
0f:f2:aa:f4:5c:c9:55:93:bd:26:5d:3c:3f:e3:78:fa:a5:cc:
05:b8:2c:86:49:64:9b:b8:b8:80:14:68:a2:7d:21:de:84:0d:
d3:12:c6:7c:7f:e8:5d:5e:d1:ad:b8:e6:e3:8d:8b:eb:52:ee:
f1:79:db:2a:4a:2a:5e:cc:98:9a:f6:de:a7:23:45:13:8c:0a:
fc:cc:e3:e6:d9:2e:af:6b:98:62:9f:75:46:bc:8f:13:46:27:
a0:40:bd:06:d5:b4:db:68:48:2f:e8:be:55:1d:5f:0c:82:ec:
d7:16:d5:03:2d:ed:4e:e9:6d:b9:a0:8d:a5:a5:1e:0b:e8:be:
55:9b:4e:3f:b2:69:66:a1:6d:de:d5:6d:83:72:87:f5:6d:7d:
65:ba:10:7f:a9:0f:6e:28:8a:9b:80:51:0f:e5:10:5a:a0:5e:
9d:7a:af:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:31 2024 by rpki-client on console-fra.rpki-client.org