Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/QyJAwEaixbCF0l2H5f6DjFy0wdE.roa
File: QyJAwEaixbCF0l2H5f6DjFy0wdE.roa (raw, json)
Hash identifier: beJVrJHr/KYKX43I71sWGJXv7VKHOyZmJS8DQ+J3G5o=
Subject key identifier: 43:22:40:C0:46:A2:C5:B0:85:D2:5D:87:E5:FE:83:8C:5C:B4:C1:D1
Certificate issuer: /CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Certificate serial: 05A5C0A8
Authority key identifier: 61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/QyJAwEaixbCF0l2H5f6DjFy0wdE.roa
Signing time: Sat 01 Jan 2022 07:57:48 +0000
ROA not before: Sat 01 Jan 2022 07:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3549
IP address blocks: 185.27.249.0/24 maxlen: 24
185.27.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94748840 (0x5a5c0a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Validity
Not Before: Jan 1 07:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=432240c046a2c5b085d25d87e5fe838c5cb4c1d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d0:90:b3:e3:40:30:4f:de:02:cd:c5:26:03:
45:20:bb:63:32:f2:ed:86:45:91:d2:f6:e8:01:ca:
4e:f4:40:51:0f:89:49:8c:a9:24:c6:bd:bb:25:ea:
22:d3:ab:7b:32:91:55:bc:fc:a2:cd:3e:0d:94:86:
68:e4:37:c9:8f:8e:43:e2:9c:b4:62:d1:4f:a6:da:
27:e9:6f:a3:c5:8d:c7:4e:9a:09:76:39:8c:9e:32:
d6:1b:9e:ea:30:20:eb:09:95:cb:5a:81:07:61:50:
70:5a:eb:c7:21:d9:0d:3e:55:f7:0e:52:2b:2b:bc:
b9:8d:39:35:21:52:9f:c5:79:76:a7:94:b1:42:c5:
69:c0:7f:3a:84:27:52:ae:49:6e:5c:16:d4:a1:3c:
6b:4b:e0:fa:ee:f2:0a:27:d5:3d:32:5f:67:f1:3d:
a6:60:62:40:7c:0d:0d:73:e4:98:3f:68:79:34:13:
ea:58:3e:f7:6f:a2:69:85:11:91:49:aa:22:4d:bd:
e4:f8:41:7d:c4:31:df:5f:9b:cd:c2:2d:17:e0:10:
0b:0e:60:b9:1e:92:68:3d:10:7a:f8:63:a8:bc:c8:
7a:8c:b6:85:c0:d3:be:89:f1:fa:39:2f:44:ab:c8:
97:64:15:cd:11:81:e9:ad:35:bb:ef:34:e7:4e:11:
7f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:22:40:C0:46:A2:C5:B0:85:D2:5D:87:E5:FE:83:8C:5C:B4:C1:D1
X509v3 Authority Key Identifier:
keyid:61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/QyJAwEaixbCF0l2H5f6DjFy0wdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.249.0/24
185.27.251.0/24
Signature Algorithm: sha256WithRSAEncryption
61:90:63:b3:b3:e7:5a:46:0d:5c:64:1f:16:0a:2e:83:42:ab:
4e:ee:56:aa:61:a4:50:13:8c:46:10:0f:6d:7d:9e:dc:1e:11:
58:2c:d6:e4:0c:3c:e7:0f:62:c8:b7:9e:6f:5b:c2:03:f6:10:
fe:65:5f:d5:03:31:27:dd:3c:1f:52:56:ce:25:80:76:9b:29:
48:6a:b2:9c:0b:82:ff:37:74:65:4c:90:bb:cb:2b:dd:ee:a2:
7b:83:fe:f5:b9:e9:61:3d:fa:12:81:3d:2d:99:f8:d3:f3:25:
81:f7:38:14:03:68:15:6c:ae:73:44:46:0d:91:46:58:b0:aa:
3f:5d:75:c9:82:d2:7e:b0:76:34:4b:f7:c5:b9:10:46:0e:82:
da:b1:70:da:28:07:b7:31:01:8e:d6:d3:90:ac:48:c4:9d:4e:
98:8a:f8:2a:c7:07:8b:f4:21:04:5c:b0:54:ef:d5:d4:92:77:
d8:80:c8:9e:10:0a:c9:a6:22:6c:11:68:aa:2b:e2:ba:72:ab:
1b:d6:19:43:46:27:28:d3:d3:db:f0:43:e3:3f:bc:04:1c:03:
d5:ad:64:09:ea:73:31:27:d8:e5:e7:12:a2:ff:87:d9:3e:a4:
7e:78:9c:3a:b5:35:39:dd:3a:3b:0c:69:f2:4f:c5:98:f6:27:
b3:26:e9:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:20 2024 by rpki-client on console-ams.rpki-client.org