Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/1Ys7Z3IzFpEKFNDEzBN6zRZC3Ww.roa
File: 1Ys7Z3IzFpEKFNDEzBN6zRZC3Ww.roa (raw, json)
Hash identifier: AcLmHahC3SY87wESzyqHG1OpuIrqFRvGpwZyfT6mUP8=
Subject key identifier: D5:8B:3B:67:72:33:16:91:0A:14:D0:C4:CC:13:7A:CD:16:42:DD:6C
Certificate issuer: /CN=4801a5b816158f07a8ca8acb37e97e2f20b06911
Certificate serial: 05AA0CCF
Authority key identifier: 48:01:A5:B8:16:15:8F:07:A8:CA:8A:CB:37:E9:7E:2F:20:B0:69:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAGluBYVjweoyorLN-l-LyCwaRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/1Ys7Z3IzFpEKFNDEzBN6zRZC3Ww.roa
Signing time: Wed 11 May 2022 09:25:02 +0000
ROA not before: Wed 11 May 2022 09:25:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206325
IP address blocks: 185.187.86.0/24 maxlen: 24
185.187.86.0/23 maxlen: 23
185.187.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95030479 (0x5aa0ccf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4801a5b816158f07a8ca8acb37e97e2f20b06911
Validity
Not Before: May 11 09:25:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d58b3b67723316910a14d0c4cc137acd1642dd6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:55:c6:53:7a:c6:f9:c6:fb:41:97:1c:b7:e4:
d6:a0:07:3c:a9:fa:b3:1f:fe:1d:47:3b:03:39:8c:
10:1b:b2:c7:30:74:43:20:b0:ed:80:7f:cb:6a:1c:
42:27:35:ae:ac:4e:0c:d5:75:fd:dc:5d:eb:b7:2d:
aa:6c:ba:a0:3b:b8:a0:3c:c6:73:bb:76:77:94:2b:
67:b2:d0:ac:92:a1:65:d0:90:d0:24:12:53:98:74:
f2:29:eb:fa:51:c9:23:5a:20:c6:be:ae:37:f8:57:
08:d4:de:03:b0:60:64:e0:78:f6:dd:fa:19:aa:b7:
bd:64:0f:d4:55:d7:50:60:2b:1a:84:c1:c5:c3:01:
cd:19:46:86:79:cf:59:71:f6:bd:6a:05:ee:9b:99:
cb:86:fc:14:2c:df:6d:67:4a:c4:ba:b2:90:18:50:
89:58:72:3b:83:30:30:78:9a:0b:59:d6:a4:9c:74:
49:23:4c:46:64:aa:6b:a1:4c:13:7d:ec:25:67:3f:
e7:2c:3e:79:bb:b0:48:fa:c4:34:ac:73:a8:0f:fe:
c8:f5:aa:df:e7:db:78:b8:20:da:41:73:50:5d:d0:
a5:da:11:77:dc:41:37:5d:df:51:33:43:22:dc:29:
b2:f6:42:2b:6a:e2:cd:72:22:25:04:65:9e:50:4c:
54:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:8B:3B:67:72:33:16:91:0A:14:D0:C4:CC:13:7A:CD:16:42:DD:6C
X509v3 Authority Key Identifier:
keyid:48:01:A5:B8:16:15:8F:07:A8:CA:8A:CB:37:E9:7E:2F:20:B0:69:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAGluBYVjweoyorLN-l-LyCwaRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/1Ys7Z3IzFpEKFNDEzBN6zRZC3Ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/SAGluBYVjweoyorLN-l-LyCwaRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.86.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:23:da:19:65:d6:a3:98:ef:bd:fb:a3:26:e1:53:75:1b:cc:
68:85:bd:54:ac:19:04:2c:7e:d3:da:9f:c0:58:54:a8:48:9f:
57:e9:b6:ff:56:80:c9:a6:91:fe:67:65:50:a1:66:70:1a:ae:
1a:e9:0e:cb:cb:27:a6:c2:5f:17:c0:3a:28:1b:3c:2a:84:f5:
71:81:43:ed:ba:39:ad:3c:30:38:f0:f4:32:e8:95:fc:9b:4c:
67:f8:b2:0d:61:f6:a8:db:0a:f4:b6:fb:cb:b9:0e:77:96:ed:
ca:c7:63:15:7f:88:f4:7d:77:76:3f:8e:cb:9e:09:44:16:fb:
60:06:02:cd:04:7d:b6:35:a3:6c:2d:7d:cc:be:5e:f9:75:f9:
ff:8f:96:a7:0f:00:fe:f8:58:1f:e5:01:9d:b5:62:d9:69:90:
52:04:77:26:6f:30:39:86:2b:d7:cf:73:6d:16:bd:1b:bc:ca:
2c:2a:12:4f:40:09:0e:c6:7b:1f:6f:49:2e:2e:4c:13:27:a8:
af:99:e2:10:1b:72:ab:aa:59:fc:dd:b3:53:e5:11:e2:85:98:
bb:21:d7:11:17:14:89:e8:5e:a0:7c:b5:10:c3:20:ab:80:d4:
9a:e4:8e:0c:53:12:31:e7:6a:e2:47:a5:37:d1:69:5d:95:be:
89:4c:86:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:46 2024 by rpki-client on console-ams.rpki-client.org