Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/884356-7e2a-4c2a-8ff4-3568e1d29d4a/1/25kkO85XPeOH_ByESdmBdM6vNDM.roa
File: 25kkO85XPeOH_ByESdmBdM6vNDM.roa (raw, json)
Hash identifier: uJ4jCeBkvqE21W3P5vuR1Ohm7YknsWugMUwXmW353Cs=
Subject key identifier: DB:99:24:3B:CE:57:3D:E3:87:FC:1C:84:49:D9:81:74:CE:AF:34:33
Certificate issuer: /CN=767c1766fbbdcff68bbc34a3c6be69a0c8a03ab9
Certificate serial: 270549
Authority key identifier: 76:7C:17:66:FB:BD:CF:F6:8B:BC:34:A3:C6:BE:69:A0:C8:A0:3A:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnwXZvu9z_aLvDSjxr5poMigOrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/884356-7e2a-4c2a-8ff4-3568e1d29d4a/1/25kkO85XPeOH_ByESdmBdM6vNDM.roa
Signing time: Tue 08 Feb 2022 11:18:38 +0000
ROA not before: Tue 08 Feb 2022 11:18:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57000
IP address blocks: 185.143.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2557257 (0x270549)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767c1766fbbdcff68bbc34a3c6be69a0c8a03ab9
Validity
Not Before: Feb 8 11:18:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db99243bce573de387fc1c8449d98174ceaf3433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:72:1a:8c:f1:df:02:6e:dd:e0:a5:59:9c:b0:
7b:93:69:32:f5:3a:14:27:df:69:38:d1:4f:2d:3b:
9b:c2:46:f9:eb:1a:fe:e6:34:2e:a3:32:db:6f:8b:
a5:30:7c:64:1a:21:1f:72:35:a4:bc:7e:87:84:0d:
a5:58:94:73:d5:a2:16:f9:50:78:cc:9c:c8:07:82:
3b:53:27:f9:66:b1:00:ef:5f:28:8b:b9:75:e8:db:
ee:0d:5f:55:e4:6b:5f:fb:e2:a9:ba:35:ba:bd:7b:
7d:c3:b7:d0:35:ad:a1:85:f3:95:e2:90:ac:ab:cf:
77:01:a9:99:ca:53:fd:67:84:dc:0e:36:d3:67:1f:
e1:8a:e2:7d:60:c4:a6:ad:25:e3:7e:44:d1:87:e8:
aa:8b:35:8c:cd:af:8a:e2:ec:c6:b2:65:24:0c:eb:
1f:fc:08:f8:9e:54:ea:45:05:27:d2:c9:b4:40:94:
1f:81:26:0a:2c:b4:6a:66:62:58:a3:2a:10:31:00:
4d:26:0d:02:63:59:98:59:92:f9:82:7e:b1:85:7d:
49:64:81:69:c3:20:88:05:a9:51:aa:ac:2d:82:d7:
8a:ee:d3:b0:36:9a:c0:fb:c3:3d:31:af:e4:95:2c:
ac:9b:50:5e:8c:98:46:5e:cd:1d:9a:06:ec:f9:3b:
7b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:99:24:3B:CE:57:3D:E3:87:FC:1C:84:49:D9:81:74:CE:AF:34:33
X509v3 Authority Key Identifier:
keyid:76:7C:17:66:FB:BD:CF:F6:8B:BC:34:A3:C6:BE:69:A0:C8:A0:3A:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnwXZvu9z_aLvDSjxr5poMigOrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/884356-7e2a-4c2a-8ff4-3568e1d29d4a/1/25kkO85XPeOH_ByESdmBdM6vNDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/884356-7e2a-4c2a-8ff4-3568e1d29d4a/1/dnwXZvu9z_aLvDSjxr5poMigOrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.42.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:d7:dc:e1:62:77:f6:3b:a3:b1:8d:4e:e7:9a:4c:ab:88:c0:
57:88:ac:31:7b:2e:7d:e5:c7:46:26:64:41:8f:3f:c7:20:41:
7b:6e:61:70:9f:96:be:d5:37:8d:07:ae:6d:95:2b:ff:01:df:
c7:2a:f5:27:e1:40:24:bd:e5:eb:cf:e2:7e:8e:76:57:a5:85:
41:f6:7e:7b:13:ba:52:46:d9:6f:1b:89:ed:02:fe:48:09:04:
62:f8:1e:ee:70:0a:b5:9e:f2:da:0e:97:6f:21:bf:c5:57:6a:
4f:4b:1b:7c:d4:e3:47:fe:78:2a:8b:0e:9a:47:3e:74:f8:49:
d2:d9:e1:c8:bb:46:02:c2:5d:3a:4d:2e:50:fb:25:5d:c8:81:
32:f3:da:00:1e:ed:d7:f1:b1:42:1b:66:fd:bb:43:05:e4:4e:
09:05:79:95:50:06:31:75:b5:ba:e5:e8:60:8a:98:3e:99:04:
00:ac:88:4e:d6:67:71:49:b5:db:ab:64:5e:3b:c0:23:d3:1b:
4a:1c:48:35:c7:b6:78:ab:13:94:03:bd:79:cb:80:57:07:cb:
4f:8d:55:e8:b9:8e:04:27:e6:ad:94:22:08:8f:23:19:1b:00:
58:f8:7c:8f:bd:1c:f2:5d:20:41:c6:a1:5f:b9:0b:e6:fd:10:
86:d2:21:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:47 2024 by rpki-client on console-fra.rpki-client.org