Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/byI5NqOvzvVzfG-RC_B3k4Nz7Zw.roa
File: byI5NqOvzvVzfG-RC_B3k4Nz7Zw.roa (raw, json)
Hash identifier: +eEV/LoHMKDYLBT/96n7+TGtsdw7xHGFZT9v2UhNsfg=
Subject key identifier: 6F:22:39:36:A3:AF:CE:F5:73:7C:6F:91:0B:F0:77:93:83:73:ED:9C
Certificate issuer: /CN=9df6d163593deb8aeff072feca58e6f3f1c4e7e5
Certificate serial: 0AC965
Authority key identifier: 9D:F6:D1:63:59:3D:EB:8A:EF:F0:72:FE:CA:58:E6:F3:F1:C4:E7:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfbRY1k964rv8HL-yljm8_HE5-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/byI5NqOvzvVzfG-RC_B3k4Nz7Zw.roa
Signing time: Fri 27 May 2022 08:57:14 +0000
ROA not before: Fri 27 May 2022 08:57:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207048
IP address blocks: 185.123.52.0/24 maxlen: 24
2a12:60c0::/29 maxlen: 29
2a10:ec0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 706917 (0xac965)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9df6d163593deb8aeff072feca58e6f3f1c4e7e5
Validity
Not Before: May 27 08:57:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f223936a3afcef5737c6f910bf077938373ed9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7c:d7:ed:cc:ca:64:3c:03:24:86:c9:7a:09:
6b:b1:fe:3a:37:f2:34:b5:68:98:b9:6e:3b:4d:57:
ef:a0:a0:ee:e9:73:9f:91:6a:db:0e:d3:ab:19:5f:
ce:dd:f0:84:cb:67:d7:8e:6d:68:54:87:e0:72:2c:
8b:9b:49:a6:64:82:3e:f5:51:4c:95:71:f0:3a:f5:
61:a8:43:3b:52:fb:a8:97:8d:2b:cd:9e:3b:1e:23:
78:d6:67:a3:c6:61:6a:8d:6d:50:c1:7f:a9:e5:a5:
3e:0c:2c:c4:e4:6e:ed:8b:91:9d:d6:49:d8:d2:64:
4d:14:ce:bf:51:f2:68:4f:7e:43:fd:54:dc:35:be:
32:89:b3:1a:c1:b7:d1:35:35:f3:4c:f9:d2:02:2b:
32:c2:ea:b6:8b:85:ad:99:2c:2a:d2:80:b7:3c:7a:
c0:3d:f2:93:47:76:60:d1:aa:0f:57:05:9d:79:ca:
df:9d:21:25:3f:1a:66:80:0a:93:b4:5c:36:da:bd:
a7:4a:ac:10:82:da:34:22:c0:34:07:9c:2c:23:cc:
15:51:ff:9e:71:e6:df:d1:86:b3:71:be:15:49:79:
8e:38:ca:42:0d:59:b7:cd:30:26:21:91:cf:19:e5:
04:f0:62:32:86:ed:8a:76:9f:ef:46:68:2d:df:9b:
78:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:22:39:36:A3:AF:CE:F5:73:7C:6F:91:0B:F0:77:93:83:73:ED:9C
X509v3 Authority Key Identifier:
keyid:9D:F6:D1:63:59:3D:EB:8A:EF:F0:72:FE:CA:58:E6:F3:F1:C4:E7:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfbRY1k964rv8HL-yljm8_HE5-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/byI5NqOvzvVzfG-RC_B3k4Nz7Zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/nfbRY1k964rv8HL-yljm8_HE5-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.52.0/24
IPv6:
2a10:ec0::/29
2a12:60c0::/29
Signature Algorithm: sha256WithRSAEncryption
9a:2a:0f:8d:d0:5b:26:2d:a2:dc:c7:03:d7:5e:1b:9b:be:42:
cd:65:7a:91:26:0d:48:7a:70:cf:be:6b:ca:8b:ba:e6:ff:1c:
f0:89:c6:f5:2c:df:92:92:96:f0:1b:56:07:c7:f1:2a:68:e0:
f8:af:eb:09:3b:76:ab:b3:04:4b:24:66:47:1a:f5:25:b9:eb:
27:08:60:de:e5:c6:43:9b:29:91:3b:3f:a2:a2:03:a6:f1:43:
44:47:a0:47:08:ff:69:50:94:6a:30:09:5e:95:42:61:93:09:
b6:d0:9f:28:e1:d8:f7:71:99:46:2a:70:d3:1f:b4:0e:38:61:
ba:d4:d5:52:c5:20:fd:ce:36:46:e5:f9:71:87:2c:fc:f2:50:
c4:2f:0a:af:e0:cd:4e:ae:f7:f1:78:5b:e7:82:e6:10:4f:3d:
55:97:e8:5b:df:f9:09:0c:61:03:ae:1c:14:93:90:cf:7c:bc:
38:ab:db:e3:86:69:d3:c2:82:0c:ca:56:c7:08:d2:37:0f:e2:
83:f0:aa:2a:23:a5:6e:5d:c5:2d:a4:7b:e9:5b:73:15:f1:43:
4c:d1:93:fc:7f:9c:f7:4d:46:d7:d8:ab:13:73:3f:8c:48:84:
9d:42:2e:39:05:85:02:61:dd:e7:3b:56:09:2c:34:99:64:1b:
29:50:44:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:45 2024 by rpki-client on console-fra.rpki-client.org