Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/U6btiJAMZnpG5MFqNQ5yb6cU1AY.roa
File: U6btiJAMZnpG5MFqNQ5yb6cU1AY.roa (raw, json)
Hash identifier: vIdBYCc0nmiUBSZCWsmhM75kCdrXzcW9af2n9w29XOM=
Subject key identifier: 53:A6:ED:88:90:0C:66:7A:46:E4:C1:6A:35:0E:72:6F:A7:14:D4:06
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0F84DC90
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/U6btiJAMZnpG5MFqNQ5yb6cU1AY.roa
Signing time: Sat 01 Jan 2022 08:05:05 +0000
ROA not before: Sat 01 Jan 2022 08:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60639
IP address blocks: 212.192.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 260365456 (0xf84dc90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 1 08:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53a6ed88900c667a46e4c16a350e726fa714d406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d3:a8:0e:f8:51:f7:79:8d:1f:45:00:b3:52:
fd:e2:9d:d5:db:f1:93:97:0d:b5:58:ca:a3:60:32:
53:73:82:f6:33:ed:37:c7:8d:ed:15:f9:c3:c1:e5:
c7:3c:7f:5a:44:d7:8a:c4:1e:07:15:a2:72:10:02:
1c:cc:d5:58:92:19:bd:9e:57:3d:c6:f6:d9:bc:e8:
37:6e:08:cc:3b:22:f6:1e:e7:32:94:c9:b0:fe:a2:
28:44:92:68:36:36:e0:b6:17:af:e3:61:3a:ca:ce:
21:99:94:5b:45:97:f9:84:40:54:e0:b4:b7:60:1b:
72:0f:b3:34:10:b6:38:24:fd:83:f7:f0:c0:00:76:
cf:9f:bb:ae:4d:0f:be:84:1a:c3:54:2a:46:f1:bf:
0a:5e:7a:23:52:26:a4:34:85:4b:d1:9a:2c:40:32:
22:39:a8:db:97:41:f4:c0:bd:5e:d1:fd:46:0f:ca:
9c:59:a0:28:5f:6d:f7:bc:99:d5:bd:0f:5d:e0:47:
06:37:cf:4e:ed:76:a6:dc:ef:6d:77:09:4a:ba:64:
df:82:a7:eb:d1:08:5a:81:1c:07:79:86:b4:45:48:
7b:23:6e:28:c3:14:49:9e:42:7a:1b:e5:24:92:3b:
09:7c:22:fa:b9:11:3a:d5:62:3d:92:c7:1a:08:5e:
f6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A6:ED:88:90:0C:66:7A:46:E4:C1:6A:35:0E:72:6F:A7:14:D4:06
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/U6btiJAMZnpG5MFqNQ5yb6cU1AY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.192.205.0/24
Signature Algorithm: sha256WithRSAEncryption
86:56:19:5b:5f:5a:b9:f7:4e:61:b9:b7:25:59:00:f5:b5:09:
8e:bd:9e:49:73:f2:24:fd:3b:62:95:17:6d:36:75:0b:6b:c1:
a3:67:82:9e:e5:53:4f:c4:86:24:d3:23:b1:9c:d7:b1:ed:13:
75:71:d3:ce:63:c2:da:47:ce:f4:16:5d:e5:ff:2e:bc:16:f9:
1a:68:f9:7a:e4:1a:b9:54:27:4f:ad:83:7b:a3:53:ad:1e:60:
57:cd:75:68:55:da:17:94:68:ed:14:0f:d5:6f:6c:fd:9c:e3:
8e:11:f8:82:a9:56:36:a7:50:a5:60:7f:7b:b4:48:bd:b7:26:
70:0d:22:53:d4:d1:63:0a:97:12:6c:11:2b:a2:26:0f:f6:1b:
c9:62:1f:3c:56:ca:16:e6:e6:66:68:af:b2:42:f5:12:c9:22:
77:46:3f:5d:b9:50:55:c9:15:15:91:b2:31:4f:58:99:32:e4:
ac:27:4f:84:bf:46:19:55:9f:d6:c2:15:7e:89:63:bb:18:7e:
35:98:02:79:c7:2d:92:ed:41:42:f6:1c:82:c7:63:c3:6a:65:
6a:0b:37:cb:21:f8:36:bf:27:22:9d:4e:68:58:17:7b:0f:b5:
e0:df:21:25:3b:65:18:1e:f0:33:7a:d9:79:ee:1b:af:82:96:
e1:50:b6:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org