Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/d994dd-de52-4612-b0fe-14987243ac56/1/BrLQEhAN0hBoQlWTmUlmIgIDVFs.roa
File: BrLQEhAN0hBoQlWTmUlmIgIDVFs.roa (raw, json)
Hash identifier: zAB/5zk0TTD7Se3wKeDi/QeW315JoKqpmGBBs0XvwZg=
Subject key identifier: 06:B2:D0:12:10:0D:D2:10:68:42:55:93:99:49:66:22:02:03:54:5B
Certificate issuer: /CN=4d21cb9b2f8c5de9daa30889d9e2394537ba3e38
Certificate serial: 0889F65D
Authority key identifier: 4D:21:CB:9B:2F:8C:5D:E9:DA:A3:08:89:D9:E2:39:45:37:BA:3E:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSHLmy-MXenaowiJ2eI5RTe6Pjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/d994dd-de52-4612-b0fe-14987243ac56/1/BrLQEhAN0hBoQlWTmUlmIgIDVFs.roa
Signing time: Sat 01 Jan 2022 07:00:45 +0000
ROA not before: Sat 01 Jan 2022 07:00:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57119
IP address blocks: 185.175.148.0/22 maxlen: 22
2a0b:fd00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143259229 (0x889f65d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d21cb9b2f8c5de9daa30889d9e2394537ba3e38
Validity
Not Before: Jan 1 07:00:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06b2d012100dd21068425593994966220203545b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e9:fe:1b:ff:d5:c6:60:c0:da:0f:d2:0a:20:
f8:15:7d:a9:5b:f0:cf:8a:a0:c3:2b:f5:33:97:f3:
c1:ad:71:9a:d8:3e:32:34:12:c5:8d:44:ee:cb:da:
e9:f4:c3:b0:96:bd:18:cc:47:f0:ab:62:6f:92:16:
e2:ab:c7:0a:3d:e1:1e:a2:fa:bb:79:8d:0c:69:f5:
e6:94:2b:ec:36:01:1f:7d:48:fb:1d:22:42:a5:1c:
dd:a3:80:4c:1f:1e:b2:46:61:02:1c:55:70:15:de:
ac:a0:81:a1:21:1c:81:8f:df:a9:35:f1:28:b0:4a:
97:4a:6b:a3:fd:d0:53:f7:ae:bf:34:35:d0:be:53:
04:5d:2f:59:0e:9d:8f:9c:85:14:26:c7:07:0d:5e:
d5:8a:19:87:e6:65:8f:36:16:12:d9:47:66:2b:2d:
c0:85:07:da:e5:03:ed:9b:39:27:25:30:27:14:29:
da:0f:a4:52:85:31:82:3d:9c:80:b5:29:2d:a1:91:
a5:af:50:93:2b:09:1e:79:3f:d6:6e:fa:43:ad:29:
a9:6b:9f:5a:88:ed:16:09:6e:9d:bd:a5:dc:f4:a9:
53:57:09:a0:aa:d9:02:2f:7a:a7:a7:25:19:a7:d2:
05:b7:5a:8b:c2:59:ac:e6:42:3f:0a:ce:f0:be:be:
81:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:B2:D0:12:10:0D:D2:10:68:42:55:93:99:49:66:22:02:03:54:5B
X509v3 Authority Key Identifier:
keyid:4D:21:CB:9B:2F:8C:5D:E9:DA:A3:08:89:D9:E2:39:45:37:BA:3E:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSHLmy-MXenaowiJ2eI5RTe6Pjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d994dd-de52-4612-b0fe-14987243ac56/1/BrLQEhAN0hBoQlWTmUlmIgIDVFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d994dd-de52-4612-b0fe-14987243ac56/1/TSHLmy-MXenaowiJ2eI5RTe6Pjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.148.0/22
IPv6:
2a0b:fd00::/32
Signature Algorithm: sha256WithRSAEncryption
75:5c:ee:30:e7:12:fb:f7:2b:37:ca:12:5c:96:57:24:d1:c2:
43:c3:6c:67:8a:55:9a:3f:52:69:c1:bc:9c:c8:00:bf:40:e9:
aa:d6:c0:c8:c7:e0:ae:44:12:2a:fb:d7:a9:39:b4:70:0d:af:
49:4d:3e:29:55:8f:a7:16:74:b2:fb:d6:e3:62:38:ea:65:4a:
d9:0d:5a:26:a2:46:61:f2:20:3f:0a:70:64:b2:9e:fa:9f:13:
71:ec:3b:2a:9f:70:57:69:bb:d2:a4:9d:ef:64:6e:3c:63:46:
6a:7d:f6:e3:09:72:29:06:47:95:7c:8a:84:dc:de:5c:34:3e:
4b:34:ac:48:6c:a5:cb:94:95:3e:cf:e7:d2:24:33:82:ed:ec:
b0:8c:8e:8e:70:9a:5a:65:11:d1:dd:2a:09:e9:10:0b:a0:8c:
27:99:09:6f:dc:9f:c5:7c:16:4f:dd:2d:05:e3:9e:ef:5e:a5:
75:9f:90:09:cd:8c:15:53:07:a4:54:8c:7f:87:4d:bc:9a:28:
96:ae:5a:f6:7d:3e:e9:6a:ad:b1:85:50:3f:b5:2a:40:c9:cf:
a8:2f:c1:4a:f0:5a:3c:f7:96:93:44:37:83:44:a3:f5:57:4a:
00:df:8e:78:44:ad:67:f1:f5:f1:7d:58:34:29:a9:b3:cc:4a:
05:70:f4:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:29 2024 by rpki-client on console-ams.rpki-client.org