Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/BLkSBUbSLdQTgG6ByygHaSrY19s.roa
File: BLkSBUbSLdQTgG6ByygHaSrY19s.roa (raw, json)
Hash identifier: DIzqjnzSE9lh6wfCJJhOCjh+X3yLR4cFnfXEq+6G3Ns=
Subject key identifier: 04:B9:12:05:46:D2:2D:D4:13:80:6E:81:CB:28:07:69:2A:D8:D7:DB
Certificate issuer: /CN=ce958f181fb507a0a2a821856b8be0d54b118b85
Certificate serial: 02371579
Authority key identifier: CE:95:8F:18:1F:B5:07:A0:A2:A8:21:85:6B:8B:E0:D5:4B:11:8B:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zpWPGB-1B6CiqCGFa4vg1UsRi4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/BLkSBUbSLdQTgG6ByygHaSrY19s.roa
Signing time: Sat 01 Jan 2022 14:03:46 +0000
ROA not before: Sat 01 Jan 2022 14:03:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398772
IP address blocks: 185.174.88.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37164409 (0x2371579)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce958f181fb507a0a2a821856b8be0d54b118b85
Validity
Not Before: Jan 1 14:03:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04b9120546d22dd413806e81cb2807692ad8d7db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fd:af:04:59:eb:46:37:17:c7:32:e5:21:cb:
cf:57:c7:31:69:33:7e:aa:92:49:f3:ac:4c:09:80:
f6:bf:35:27:8b:bd:45:00:f6:c7:13:c3:13:b8:52:
d6:38:aa:d9:15:2a:e5:ce:7e:fb:46:c9:9b:1d:ac:
03:9a:71:d5:51:09:bf:ef:5e:6c:39:af:1f:e0:07:
1b:c9:7e:95:2d:28:7a:ec:58:dd:54:35:ec:69:14:
f9:cb:3f:94:40:70:f9:4d:68:f2:b9:bb:15:99:13:
a6:02:95:ff:b9:5c:5a:82:e3:7b:31:92:6f:26:d3:
43:63:68:e7:4b:ad:3e:0a:9d:ac:ae:fc:bc:5d:9f:
12:0e:e5:8c:58:50:43:2c:e1:7f:2d:af:57:33:c3:
16:76:bd:72:3c:67:45:a4:c0:fd:02:ba:0a:ef:c7:
cd:63:8d:62:15:54:36:ad:6b:ca:20:e9:c0:c7:24:
b1:ed:b4:f1:9c:4e:e6:77:d9:ac:3d:77:bc:e3:4d:
55:ef:e8:eb:41:b9:d5:bd:81:c1:35:e2:91:6c:e2:
0a:ef:5f:8c:21:ca:ef:da:d2:79:50:15:be:38:a1:
05:10:91:b9:49:c8:88:80:f5:5c:69:9a:3f:51:31:
1a:2f:f4:b9:a5:b8:45:c4:6a:f8:1f:ba:e1:58:d5:
62:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B9:12:05:46:D2:2D:D4:13:80:6E:81:CB:28:07:69:2A:D8:D7:DB
X509v3 Authority Key Identifier:
keyid:CE:95:8F:18:1F:B5:07:A0:A2:A8:21:85:6B:8B:E0:D5:4B:11:8B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zpWPGB-1B6CiqCGFa4vg1UsRi4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/BLkSBUbSLdQTgG6ByygHaSrY19s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/zpWPGB-1B6CiqCGFa4vg1UsRi4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.88.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:73:53:7f:c9:49:dd:88:aa:a9:5f:34:a6:c2:1f:fc:01:66:
d3:3f:8d:bd:db:7c:e9:2b:fd:6f:ed:6e:60:2e:5b:cc:e0:f3:
94:d6:6e:dd:f4:e2:fb:fe:84:94:30:67:0c:dd:36:a8:82:67:
59:a9:63:7d:96:eb:14:3c:c0:c0:75:0f:d1:18:0e:6e:6d:c6:
04:b0:ac:3c:f4:87:24:ae:af:5c:f7:57:eb:db:57:16:44:05:
07:8f:5f:f0:9d:6c:c4:2e:26:bd:6c:e4:46:08:94:73:05:8a:
70:69:f7:be:69:70:03:2a:21:cd:c6:90:95:05:96:6a:57:19:
79:a2:26:1d:8a:1e:8f:e6:87:c4:9d:c4:f8:dd:68:97:f4:73:
95:cf:46:96:1a:c8:b4:26:c7:4b:e2:da:11:34:d8:41:8f:5f:
ba:2d:d6:28:3b:7f:32:a1:83:c5:ad:dc:dc:ec:e2:59:da:24:
39:fd:04:cf:19:22:0b:23:b5:76:9b:83:3f:8a:45:76:19:62:
7b:e6:7c:9c:25:78:b6:38:8d:7d:3b:ad:6b:d6:2c:5a:dc:2c:
6a:f1:69:9f:aa:37:3e:67:7b:25:b7:9f:be:bd:c1:b0:7e:1d:
d3:de:fe:9e:76:e1:e6:3d:7e:cd:19:12:68:30:f0:78:c3:45:
74:94:fd:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:48 2024 by rpki-client on console-ams.rpki-client.org