Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/ARiDhyqgyZARwEt4ZzDeWtgv4qE.roa
File: ARiDhyqgyZARwEt4ZzDeWtgv4qE.roa (raw, json)
Hash identifier: +8yIKr3VRGHSHP2Fz2stOl2sB//coAPwq0MvikxWhYk=
Subject key identifier: 01:18:83:87:2A:A0:C9:90:11:C0:4B:78:67:30:DE:5A:D8:2F:E2:A1
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42C44DF9
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/ARiDhyqgyZARwEt4ZzDeWtgv4qE.roa
Signing time: Sun 01 May 2022 07:18:26 +0000
ROA not before: Sun 01 May 2022 07:18:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49169
IP address blocks: 86.105.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1120161273 (0x42c44df9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 1 07:18:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=011883872aa0c99011c04b786730de5ad82fe2a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:29:3c:c5:f3:c7:59:df:ec:76:8f:e7:fa:7c:
5f:93:6b:db:34:2e:bb:fd:cf:11:c8:1e:37:45:d8:
82:b1:f4:ef:4b:0d:48:f1:1b:f9:c8:17:e6:1c:31:
d3:9e:1d:18:cc:c4:fb:86:dc:88:f5:32:ff:a5:25:
90:1e:d1:ed:0c:b1:c5:16:91:66:8f:e5:5a:03:fb:
3f:b7:a2:ef:94:e0:33:9a:8f:4b:11:5a:a1:75:63:
ea:39:d9:f7:0c:0d:21:15:cc:89:7d:78:70:a5:47:
25:87:f7:a2:5e:35:02:fa:98:2b:6d:09:ce:ed:c9:
c2:af:14:d7:db:70:1c:f5:40:dc:9c:f4:a8:d4:99:
e0:e3:30:2b:07:00:ca:be:f8:8a:f9:3b:b8:c5:a7:
e8:0e:69:d5:b5:1a:45:0c:fa:f7:04:13:91:16:37:
af:80:e5:04:b8:74:f0:c5:e5:43:29:c1:ce:a4:b0:
ab:67:9c:f6:1c:f5:89:a9:f6:d9:5e:37:ad:80:a1:
38:dd:dd:fa:c0:75:58:72:22:13:c7:bd:76:91:e9:
6e:c7:97:95:36:61:87:9e:9c:98:4b:85:ff:fb:f6:
ed:e1:e8:0a:a3:04:28:df:dd:78:db:fe:1b:01:ea:
53:fd:90:c0:44:91:f0:c8:b5:47:7c:ef:56:8b:86:
e3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:18:83:87:2A:A0:C9:90:11:C0:4B:78:67:30:DE:5A:D8:2F:E2:A1
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/ARiDhyqgyZARwEt4ZzDeWtgv4qE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.154.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:ba:38:f1:70:fc:c2:6f:a0:8f:bd:3f:81:5f:80:53:7c:6f:
5c:cf:a0:ce:4c:50:36:f9:e3:94:f5:09:30:4d:d8:7c:71:e7:
cb:ee:5d:32:e9:36:02:e1:5d:70:f2:9f:65:85:ce:83:48:5d:
60:e0:20:d7:8d:ab:3e:6f:0a:57:79:6b:77:4f:fc:08:78:8e:
2b:e3:8f:83:3c:75:57:9a:f2:5e:48:12:be:7e:da:39:8f:4d:
ba:f0:bc:ab:af:3e:59:13:94:0b:b2:ac:b4:e7:fb:76:8a:d4:
d7:a2:05:1c:b5:91:23:c9:4a:5e:f9:b5:e6:0e:eb:7d:f2:db:
c0:7a:8b:da:bb:9e:a4:af:eb:b7:30:13:b1:61:ac:b3:10:de:
48:80:e2:51:51:2b:3d:28:25:00:f1:71:94:cf:75:9a:b9:e4:
1d:67:56:95:6f:97:44:f3:19:d7:09:59:02:2e:f5:34:ae:c6:
56:ec:ed:15:2c:bc:23:81:eb:a3:78:60:a9:17:e5:3a:82:f0:
01:36:ed:37:77:9c:be:af:db:51:a5:bd:5e:b1:1d:ce:b2:9c:
38:1a:24:fb:7b:ce:c8:c4:b2:ba:d6:d4:c6:32:bb:d6:d3:0f:
f1:dd:43:63:7b:e0:fa:7c:98:19:4c:e5:4d:b5:95:1b:6a:6d:
4a:bb:e6:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:52 2024 by rpki-client on console-ams.rpki-client.org