Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/bfWdX7GTFXzxy37AK7CAMk6vJZg.roa
File: bfWdX7GTFXzxy37AK7CAMk6vJZg.roa (raw, json)
Hash identifier: BBtWxRz1VVeSWrY+Ny6EEPXm6qzSXVdEvO2Hd8iGYH4=
Subject key identifier: 6D:F5:9D:5F:B1:93:15:7C:F1:CB:7E:C0:2B:B0:80:32:4E:AF:25:98
Certificate issuer: /CN=7a17259a863c3d637d457e119b750df95e003fd6
Certificate serial: 06C6638A
Authority key identifier: 7A:17:25:9A:86:3C:3D:63:7D:45:7E:11:9B:75:0D:F9:5E:00:3F:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/bfWdX7GTFXzxy37AK7CAMk6vJZg.roa
Signing time: Sat 01 Jan 2022 14:06:58 +0000
ROA not before: Sat 01 Jan 2022 14:06:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33915
IP address blocks: 185.222.228.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113664906 (0x6c6638a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a17259a863c3d637d457e119b750df95e003fd6
Validity
Not Before: Jan 1 14:06:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6df59d5fb193157cf1cb7ec02bb080324eaf2598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8a:d6:ea:f0:3e:2c:4d:12:d6:da:85:08:22:
3c:70:ec:bf:91:93:5d:e7:57:13:f8:e0:2a:b7:24:
e7:12:c1:da:0e:99:5a:f1:d4:24:66:fe:86:24:2d:
8c:c1:79:6e:25:86:25:85:f2:78:f5:c4:c0:ed:51:
59:97:fa:95:d0:16:78:f0:c3:5b:dc:bc:79:b9:5f:
1d:37:8b:54:64:8c:06:ac:4c:15:79:dd:17:b8:fc:
fc:cd:ad:ac:7d:3c:4f:4d:ea:7e:73:61:21:8d:2c:
00:a8:87:73:d6:d6:49:27:df:a8:9b:91:32:e6:a5:
ad:b6:14:0d:6b:51:8a:2e:b0:8b:38:67:c3:45:ea:
d0:08:5c:e7:a6:f8:2a:40:a9:43:07:58:86:5c:a9:
b1:28:6b:71:dd:60:1f:88:40:28:c7:4e:82:ec:9d:
07:ee:c6:f8:72:74:5a:02:4b:b8:dd:e6:d1:03:1f:
94:3c:f0:19:22:b7:f9:5d:1a:a9:cb:dc:79:06:e9:
b3:6f:25:7b:16:a8:b0:3b:bb:03:ce:63:ff:11:51:
54:19:2c:bb:d6:87:80:16:02:43:1a:e7:15:2d:70:
02:c6:e2:e1:49:e4:40:37:b2:05:ae:ac:14:14:ac:
6b:07:5b:bb:96:63:b4:99:e0:e2:8e:e3:85:2e:37:
90:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F5:9D:5F:B1:93:15:7C:F1:CB:7E:C0:2B:B0:80:32:4E:AF:25:98
X509v3 Authority Key Identifier:
keyid:7A:17:25:9A:86:3C:3D:63:7D:45:7E:11:9B:75:0D:F9:5E:00:3F:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/bfWdX7GTFXzxy37AK7CAMk6vJZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.228.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:dd:f7:b2:05:46:09:3b:29:50:11:fa:69:9a:a4:12:e9:ca:
e6:bf:0d:d7:a2:55:93:90:cf:e8:a7:c5:07:2d:fa:16:e3:e9:
0a:5d:38:0d:6e:e3:c7:63:40:4c:66:ac:5b:34:65:43:e0:b0:
05:ef:9c:45:88:47:6c:e9:f1:c8:0c:8c:54:b0:e5:3a:c5:eb:
2a:91:cb:21:09:f5:87:51:c3:17:43:5b:fb:d7:0f:b6:5f:39:
ea:bf:6c:86:42:c5:de:d6:d6:66:42:f8:ce:36:b6:33:b3:03:
e4:07:80:9e:f1:68:4d:c2:6a:ff:cb:e1:95:ac:86:40:b2:45:
49:51:48:af:61:5d:07:05:d0:b5:ec:03:7b:6c:4a:51:4a:34:
46:98:2d:75:b2:01:ee:74:51:e6:cb:21:e2:97:f4:c0:af:14:
70:ee:d1:6d:a6:bb:24:49:dd:2a:c9:db:15:19:f1:94:64:62:
0b:a6:b1:69:ce:ee:b2:1b:2c:88:9c:1c:c5:d7:8c:23:49:5d:
b3:0b:e1:a2:a8:8e:1e:06:fb:64:34:56:00:85:d0:d0:a2:7e:
83:98:96:86:4a:48:cf:c3:0e:02:30:25:a3:4a:19:e1:69:0b:
1f:b1:cb:90:61:f0:99:c7:0c:96:e6:c6:db:f8:07:c3:da:68:
6b:0b:21:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:30 2023 by rpki-client on console.sobornost.net