Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/66bd3a-5121-490d-8c92-6ea94a961d4c/1/ankSfTz15Yt8ahiUD3mdqSAzqw0.roa
File: ankSfTz15Yt8ahiUD3mdqSAzqw0.roa (raw, json)
Hash identifier: BeQb6EixrtlGpxFztiBVog8GApYl2nW2TIUdAMMYpeo=
Subject key identifier: 6A:79:12:7D:3C:F5:E5:8B:7C:6A:18:94:0F:79:9D:A9:20:33:AB:0D
Certificate issuer: /CN=4f4da09fbbe90fb79f0f08b207f835f0f0da29fe
Certificate serial: 167B28BD
Authority key identifier: 4F:4D:A0:9F:BB:E9:0F:B7:9F:0F:08:B2:07:F8:35:F0:F0:DA:29:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T02gn7vpD7efDwiyB_g18PDaKf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/66bd3a-5121-490d-8c92-6ea94a961d4c/1/ankSfTz15Yt8ahiUD3mdqSAzqw0.roa
Signing time: Sat 01 Jan 2022 01:58:59 +0000
ROA not before: Sat 01 Jan 2022 01:58:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15576
IP address blocks: 185.75.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 377170109 (0x167b28bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f4da09fbbe90fb79f0f08b207f835f0f0da29fe
Validity
Not Before: Jan 1 01:58:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a79127d3cf5e58b7c6a18940f799da92033ab0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5c:07:0f:70:17:99:79:1a:7c:a1:e0:56:8f:
d4:e0:e8:ba:f7:ac:e5:a6:17:66:b0:83:47:ff:f2:
ca:24:09:84:cb:02:73:98:6d:85:85:4a:85:67:d8:
94:9f:3f:ab:c7:cf:a0:44:20:93:7c:9f:5d:3e:bb:
9d:56:9b:28:41:0a:88:ab:1e:41:77:bc:11:87:16:
a0:41:37:0a:9f:b5:2d:bc:24:8b:3f:5a:41:41:47:
39:6d:07:92:3b:42:8e:8b:f7:f5:f8:14:2a:ef:61:
c0:db:b4:28:ec:c6:c7:63:e3:48:24:e4:ae:27:ec:
80:50:78:fb:ce:84:78:4e:b0:48:e6:86:9b:90:6a:
a8:72:60:e0:48:03:97:e5:a5:cc:4a:11:be:76:3e:
15:38:b1:37:13:5a:79:a3:f7:2c:8e:3e:de:21:ad:
27:37:f4:90:fe:1c:d9:2e:ed:7f:4b:d0:5d:b0:ae:
e9:a1:d0:91:f9:f9:6d:c9:d5:bb:6a:08:60:32:d1:
ae:c5:1b:79:6f:7a:63:bb:e3:e6:1e:a0:3c:41:77:
34:4b:5f:26:61:a7:8b:35:20:b8:71:e0:90:0d:6a:
b3:e8:a5:af:f4:d0:4f:2d:89:24:e5:93:60:5a:99:
ea:de:8e:9d:f9:5a:70:2f:41:12:79:99:7e:c2:e2:
5c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:79:12:7D:3C:F5:E5:8B:7C:6A:18:94:0F:79:9D:A9:20:33:AB:0D
X509v3 Authority Key Identifier:
keyid:4F:4D:A0:9F:BB:E9:0F:B7:9F:0F:08:B2:07:F8:35:F0:F0:DA:29:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T02gn7vpD7efDwiyB_g18PDaKf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/66bd3a-5121-490d-8c92-6ea94a961d4c/1/ankSfTz15Yt8ahiUD3mdqSAzqw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/66bd3a-5121-490d-8c92-6ea94a961d4c/1/T02gn7vpD7efDwiyB_g18PDaKf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.153.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:9e:ff:03:b6:fb:50:1a:84:46:6a:6f:c8:0f:13:ae:35:68:
27:5f:aa:12:dc:94:d9:ca:f3:cb:67:32:8b:ea:12:f0:a9:a2:
73:4d:86:f4:38:4b:9d:21:92:fa:aa:7a:a9:20:a8:2e:8a:74:
57:99:94:f6:e2:3d:47:3e:1b:73:c5:f8:22:39:d9:55:e4:a9:
29:2b:1c:59:db:c6:b7:cb:1b:3b:dd:a9:58:2d:c6:7a:b8:d5:
ab:17:85:06:a3:b9:84:03:3b:56:9e:18:68:33:53:9b:4e:ce:
ec:71:19:6c:02:28:7e:ec:33:64:15:1b:d4:87:29:fd:f0:62:
7d:ee:83:58:89:1e:06:ae:74:d6:e2:17:aa:9d:c9:c8:f9:1c:
4c:b8:11:fb:e2:c8:21:70:5e:1b:f7:ea:ef:ee:e9:ac:ef:cd:
6c:81:dc:c3:d4:a2:77:cc:54:d6:33:c0:18:e0:77:ee:1b:96:
a3:51:29:f9:ed:a0:65:0c:4b:49:28:f3:47:f3:4b:b0:fb:a4:
d2:25:8b:0e:04:36:2a:87:58:62:99:35:d2:e6:40:ca:ed:5a:
ab:27:1e:f7:b2:bc:61:66:f8:c7:23:8a:bc:79:1e:47:37:83:
f5:74:23:e5:c9:a4:e0:ae:76:f1:a4:47:ab:e2:9d:80:a8:5e:
11:61:8c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:16 2024 by rpki-client on console-fra.rpki-client.org