Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fcd516-88f5-4e48-9ab4-93df45003e7e/1/V1-NG3tGzabU0soXhtRTz9G0kZM.roa
File: V1-NG3tGzabU0soXhtRTz9G0kZM.roa (raw, json)
Hash identifier: s/xntz0enSo1Qa8TG54H3SyU+bTZiCvFFb8CMA3GfPA=
Subject key identifier: 57:5F:8D:1B:7B:46:CD:A6:D4:D2:CA:17:86:D4:53:CF:D1:B4:91:93
Certificate issuer: /CN=6ac72a734392f6cf792b3d0c3ed11820286f19f4
Certificate serial: 024A5A66
Authority key identifier: 6A:C7:2A:73:43:92:F6:CF:79:2B:3D:0C:3E:D1:18:20:28:6F:19:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ascqc0OS9s95Kz0MPtEYIChvGfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fcd516-88f5-4e48-9ab4-93df45003e7e/1/V1-NG3tGzabU0soXhtRTz9G0kZM.roa
Signing time: Sat 01 Jan 2022 12:06:48 +0000
ROA not before: Sat 01 Jan 2022 12:06:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212574
IP address blocks: 185.153.232.0/24 maxlen: 24
2a10:7240::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38427238 (0x24a5a66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ac72a734392f6cf792b3d0c3ed11820286f19f4
Validity
Not Before: Jan 1 12:06:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=575f8d1b7b46cda6d4d2ca1786d453cfd1b49193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:89:6b:a6:97:50:80:3e:e2:63:10:8f:fc:3c:
96:8e:6c:44:29:d0:cf:b2:61:8c:56:42:fd:b0:81:
40:0c:5a:19:a5:b6:cb:06:50:c8:d5:cd:7f:46:df:
6f:12:af:6a:ee:a0:a9:da:fc:47:57:04:00:3d:5e:
05:5c:b8:4d:20:a2:9c:5d:6b:06:e0:4b:fd:5b:8f:
a6:45:a5:dd:59:d8:94:c8:67:f0:71:60:91:3f:d7:
ba:da:f1:fa:fc:54:15:1e:51:c0:2c:d0:e9:e1:e1:
7f:fc:4f:06:50:18:34:fe:97:bf:5a:94:35:5f:56:
db:01:e5:15:99:15:56:f5:7d:12:26:49:91:df:40:
f5:82:4d:e4:01:6a:6a:64:ca:40:44:85:5a:ff:7a:
38:dd:bf:a0:25:b6:02:a2:a2:9c:18:85:9c:c0:7b:
ef:29:ab:1a:7c:20:39:2c:1d:5b:10:4b:99:06:49:
a4:a2:d2:41:14:c1:82:35:55:c5:54:64:a8:58:dc:
8c:b4:0c:8c:4e:26:3f:6f:64:9c:b3:c8:78:96:a2:
27:68:70:60:7f:52:e7:dd:d4:6e:38:7f:3b:f4:8c:
a4:be:79:d8:85:87:f6:f2:fa:83:5c:5b:95:e1:c9:
21:20:28:ed:fa:99:4b:f5:1a:b1:bf:f4:a5:e6:c5:
e4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:5F:8D:1B:7B:46:CD:A6:D4:D2:CA:17:86:D4:53:CF:D1:B4:91:93
X509v3 Authority Key Identifier:
keyid:6A:C7:2A:73:43:92:F6:CF:79:2B:3D:0C:3E:D1:18:20:28:6F:19:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ascqc0OS9s95Kz0MPtEYIChvGfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fcd516-88f5-4e48-9ab4-93df45003e7e/1/V1-NG3tGzabU0soXhtRTz9G0kZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fcd516-88f5-4e48-9ab4-93df45003e7e/1/ascqc0OS9s95Kz0MPtEYIChvGfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.232.0/24
IPv6:
2a10:7240::/32
Signature Algorithm: sha256WithRSAEncryption
94:13:33:f2:09:e7:d7:18:61:af:af:17:30:f1:54:5b:dd:37:
07:68:de:5e:e5:74:65:0a:e6:99:39:d4:97:7b:c6:25:6a:a1:
69:cd:c0:bc:88:a8:42:76:37:74:37:22:2c:ac:fb:45:76:49:
08:24:28:19:74:76:26:cf:90:e5:f6:0a:25:52:e9:80:89:aa:
bf:e5:2d:3b:d7:ca:45:40:26:c2:14:fc:61:f4:22:2c:27:59:
9b:01:90:75:62:39:95:96:ed:58:7b:8a:47:be:8d:8a:aa:4f:
ff:d3:81:ba:53:d4:01:c8:a7:ca:f9:dc:33:8e:9c:29:d2:ef:
2a:3c:9a:23:83:eb:44:83:f9:22:a1:d4:74:eb:84:89:e6:ba:
b9:4a:d8:78:77:18:97:c4:1c:c0:60:d9:ac:f1:9b:68:7b:3d:
5b:36:ad:43:fa:f2:19:07:aa:16:57:d5:62:53:d5:d4:3b:66:
ff:55:1d:5b:6f:f5:56:2a:70:87:f4:d1:af:5b:7b:1a:a6:04:
f2:33:aa:31:be:7e:b5:f4:54:2a:7e:e7:2a:b1:2c:f4:34:20:
c9:37:09:d5:93:e9:d2:56:fa:d0:80:02:eb:ed:7b:f2:d6:83:
ef:25:13:81:b9:fe:22:1d:85:28:84:5e:c2:8b:07:ed:10:fe:
fb:2f:8e:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:13 2024 by rpki-client on console-ams.rpki-client.org