Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/4e0580-8b2f-49a7-abd8-5c38c7475aa9/1/bdcnz9wnhurb-LlhQGmbpGatyck.roa
File: bdcnz9wnhurb-LlhQGmbpGatyck.roa (raw, json)
Hash identifier: HhYJYw8jv59MHVDA4ScslJG1nYmzAGdWbEXZi6kLa+4=
Subject key identifier: 6D:D7:27:CF:DC:27:86:EA:DB:F8:B9:61:40:69:9B:A4:66:AD:C9:C9
Certificate issuer: /CN=9246785f469be8aa7151e3333e47465d478fd0e7
Certificate serial: 1BC52FC1
Authority key identifier: 92:46:78:5F:46:9B:E8:AA:71:51:E3:33:3E:47:46:5D:47:8F:D0:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkZ4X0ab6KpxUeMzPkdGXUeP0Oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/4e0580-8b2f-49a7-abd8-5c38c7475aa9/1/bdcnz9wnhurb-LlhQGmbpGatyck.roa
Signing time: Sat 01 Jan 2022 13:54:41 +0000
ROA not before: Sat 01 Jan 2022 13:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43142
IP address blocks: 185.24.18.0/24 maxlen: 24
185.24.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 465907649 (0x1bc52fc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9246785f469be8aa7151e3333e47465d478fd0e7
Validity
Not Before: Jan 1 13:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6dd727cfdc2786eadbf8b96140699ba466adc9c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1f:10:c6:ac:c0:8e:6b:b2:7a:ea:54:3f:84:
1c:bb:fb:5e:f5:b8:96:e3:d5:a4:a6:0f:68:71:19:
49:5e:53:9e:23:fd:43:ad:d2:e6:c8:e6:d4:be:a8:
6c:e9:d6:3f:92:3d:82:c3:1e:4b:57:99:ec:ed:0a:
a8:59:03:db:3e:c2:e6:25:08:88:1d:1f:7e:00:4e:
6d:c4:64:a5:5a:79:c8:3a:9c:73:17:73:91:cb:c1:
f8:1a:80:24:84:23:f2:f6:ef:fb:14:5f:f3:61:90:
84:cc:7a:3e:0f:d6:34:5d:7d:05:26:3e:d6:74:9d:
22:0e:19:47:e8:4d:ed:69:34:ee:75:61:c8:e6:12:
08:bb:f9:62:9d:c2:b1:80:de:6c:ec:2c:55:37:ef:
68:9f:4f:65:5d:e4:2f:27:97:d5:d5:e2:c0:07:74:
4b:ea:2e:b5:e7:b1:99:dc:e8:ea:20:1a:a1:20:80:
07:32:1a:a1:fe:ae:b1:4c:c1:aa:9d:2e:23:23:6f:
89:5e:ff:36:d8:76:5c:fc:58:f9:ee:cc:76:8f:3e:
8b:3b:e6:10:e4:8e:48:e7:44:d7:34:30:4d:49:d9:
17:b1:b2:1b:5d:60:70:b7:55:f7:fd:50:c8:49:d8:
e6:59:19:0e:61:f8:8f:ec:66:1b:57:11:21:8a:50:
f2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D7:27:CF:DC:27:86:EA:DB:F8:B9:61:40:69:9B:A4:66:AD:C9:C9
X509v3 Authority Key Identifier:
keyid:92:46:78:5F:46:9B:E8:AA:71:51:E3:33:3E:47:46:5D:47:8F:D0:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkZ4X0ab6KpxUeMzPkdGXUeP0Oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4e0580-8b2f-49a7-abd8-5c38c7475aa9/1/bdcnz9wnhurb-LlhQGmbpGatyck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4e0580-8b2f-49a7-abd8-5c38c7475aa9/1/kkZ4X0ab6KpxUeMzPkdGXUeP0Oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.18.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:5c:4a:e7:ad:81:5e:38:22:01:dd:34:4a:e5:ad:73:97:d2:
f9:99:3d:25:77:59:bb:24:24:1b:7e:9e:bd:86:fe:36:a2:10:
6c:74:f1:55:e9:8e:ce:36:3e:48:7c:a1:b0:17:24:82:9b:22:
ec:bd:7f:a0:3b:f6:56:d3:1d:e5:67:cb:88:3e:f6:ab:6a:f8:
09:01:cf:04:3f:b6:05:62:a0:67:cb:07:51:d2:bc:92:91:3a:
8c:08:af:8a:43:40:d0:8e:93:b2:af:25:4f:48:90:7b:18:7d:
ba:f3:40:3b:99:c9:ac:ad:dc:c9:93:d1:17:18:67:d9:3c:c2:
41:4d:a8:77:8a:7d:d0:6c:e6:1b:e3:c6:50:2d:b0:fb:36:32:
26:57:1f:a3:db:c5:75:17:5f:53:ef:e5:f8:d8:dc:ad:f4:86:
e4:f7:dd:80:d7:da:9a:af:1b:c3:8a:2a:47:d0:57:22:fa:84:
1d:24:20:07:d8:7f:1c:eb:6f:58:9f:c2:5d:f8:b5:3f:97:88:
47:b2:14:c5:65:99:ba:c4:2a:6c:d9:db:b6:9c:4a:87:4a:5d:
7f:17:b0:9d:e1:58:02:63:2f:52:00:7f:f9:18:ff:c0:3a:b6:
38:33:bb:d1:f5:25:ae:10:8e:51:3f:85:d5:d6:f6:6e:80:5c:
e8:0e:c3:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:20 2024 by rpki-client on console-fra.rpki-client.org