Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/ccf444-a22c-4fcd-bf1a-0f937ccf02e0/1/s6sVzYt5WZ2EsM_-cDfuTVSVIks.roa
File: s6sVzYt5WZ2EsM_-cDfuTVSVIks.roa (raw, json)
Hash identifier: Zj3RaU6rxrpsC2gHLagyrnLR/kmWMF/3ijrCul6xavo=
Subject key identifier: B3:AB:15:CD:8B:79:59:9D:84:B0:CF:FE:70:37:EE:4D:54:95:22:4B
Certificate issuer: /CN=4518b89c7dce2b5edc05581516cfc19d7a3174e8
Certificate serial: 046F43B0
Authority key identifier: 45:18:B8:9C:7D:CE:2B:5E:DC:05:58:15:16:CF:C1:9D:7A:31:74:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RRi4nH3OK17cBVgVFs_BnXoxdOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/ccf444-a22c-4fcd-bf1a-0f937ccf02e0/1/s6sVzYt5WZ2EsM_-cDfuTVSVIks.roa
Signing time: Sat 01 Jan 2022 02:51:55 +0000
ROA not before: Sat 01 Jan 2022 02:51:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60103
IP address blocks: 185.57.152.0/22 maxlen: 22
185.57.153.0/24 maxlen: 24
185.57.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74400688 (0x46f43b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4518b89c7dce2b5edc05581516cfc19d7a3174e8
Validity
Not Before: Jan 1 02:51:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3ab15cd8b79599d84b0cffe7037ee4d5495224b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:73:08:ee:a4:35:77:7c:96:67:27:88:ef:fa:
fd:9e:40:03:ea:e7:4d:d8:20:cf:f2:9f:0f:29:7e:
b5:00:f4:5f:a4:c0:57:c5:c4:ed:8d:86:83:af:57:
37:9a:c6:11:56:c5:6a:84:5d:12:f2:7e:ca:23:f4:
1e:32:a8:28:ab:d9:4a:b3:c6:14:ac:6d:c0:34:b2:
58:6e:17:a5:6f:0a:50:80:a5:16:f9:07:4d:ed:ca:
c4:ca:7f:46:b8:62:27:2a:fe:eb:07:97:cd:0b:df:
7b:5f:ef:b9:61:db:7f:0e:1e:c5:c4:97:27:65:ca:
92:de:06:bf:94:45:96:90:6d:5d:a9:d0:f2:c0:b8:
05:0e:0a:98:64:89:4e:0f:72:ec:44:9b:8f:28:6b:
91:da:34:e2:2e:20:97:46:60:53:97:8c:81:48:88:
ab:22:d8:24:1b:05:76:65:46:54:cd:ba:15:ed:70:
fe:5f:bc:92:60:73:e0:3f:7a:4b:fd:db:7d:a3:20:
14:31:f4:1e:ad:23:ed:20:16:40:1d:af:91:f7:40:
90:3a:66:3b:05:bd:f0:cd:65:f2:cf:31:67:ba:64:
eb:f2:b2:39:74:8b:e9:be:47:8e:b5:bc:c8:5d:a1:
df:2a:58:39:30:db:1e:6f:b5:4c:85:cd:37:a9:ae:
6d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:AB:15:CD:8B:79:59:9D:84:B0:CF:FE:70:37:EE:4D:54:95:22:4B
X509v3 Authority Key Identifier:
keyid:45:18:B8:9C:7D:CE:2B:5E:DC:05:58:15:16:CF:C1:9D:7A:31:74:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RRi4nH3OK17cBVgVFs_BnXoxdOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/ccf444-a22c-4fcd-bf1a-0f937ccf02e0/1/s6sVzYt5WZ2EsM_-cDfuTVSVIks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/ccf444-a22c-4fcd-bf1a-0f937ccf02e0/1/RRi4nH3OK17cBVgVFs_BnXoxdOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.152.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:dc:d6:91:93:44:6c:d5:5f:b3:23:a7:14:1a:f6:47:0e:aa:
74:54:09:8d:54:98:70:dd:e1:4b:ce:80:61:e6:17:07:54:76:
e9:42:4b:77:18:9f:f8:95:c6:b1:93:f6:36:af:93:c2:a4:cd:
96:a2:d7:5c:8f:b0:77:16:c1:4c:88:e8:3b:f7:b8:44:9e:45:
5f:0b:51:c9:94:92:31:e9:75:a8:0a:7d:68:0d:1c:bd:a4:df:
f7:a3:d6:4b:ba:cd:4e:64:6a:a0:e8:b3:3b:27:7c:15:b4:38:
76:5a:6c:32:de:be:8b:54:1a:08:02:49:15:ec:e3:d1:d0:14:
64:52:1a:43:ae:bf:33:6e:d9:03:ed:64:81:28:42:07:04:58:
65:c1:fd:e7:2d:7e:70:71:eb:84:ac:12:a9:9c:3c:87:ce:8e:
65:ae:2c:0d:f2:9d:ad:b7:5f:3b:2d:66:c2:33:0e:44:c9:76:
8d:0a:26:b8:1b:ec:6a:6e:45:1e:3f:d7:bc:ad:da:01:9b:5f:
b5:f7:de:3b:49:09:63:43:76:5f:52:dd:8e:43:ac:33:e1:ec:
7f:ae:83:38:bd:d4:f5:a5:2b:83:a1:cf:f6:97:ea:ad:ff:1f:
9c:55:8b:03:d2:ae:cf:35:72:db:4d:f1:07:3b:43:03:b5:21:
36:5f:64:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:44 2024 by rpki-client on console-fra.rpki-client.org