Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/Iah6wjTCStEyLM0YkU1R24GsP-c.roa
File: Iah6wjTCStEyLM0YkU1R24GsP-c.roa (raw, json)
Hash identifier: HcHByyUMuaBLk9T9MssJyLzbXIhzM/VX0XCC+l/B5rA=
Subject key identifier: 21:A8:7A:C2:34:C2:4A:D1:32:2C:CD:18:91:4D:51:DB:81:AC:3F:E7
Certificate issuer: /CN=4801a5b816158f07a8ca8acb37e97e2f20b06911
Certificate serial: 05AFD415
Authority key identifier: 48:01:A5:B8:16:15:8F:07:A8:CA:8A:CB:37:E9:7E:2F:20:B0:69:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAGluBYVjweoyorLN-l-LyCwaRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/Iah6wjTCStEyLM0YkU1R24GsP-c.roa
Signing time: Wed 11 May 2022 11:55:02 +0000
ROA not before: Wed 11 May 2022 11:55:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206325
IP address blocks: 185.187.86.0/24 maxlen: 24
185.187.86.0/23 maxlen: 23
185.187.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95409173 (0x5afd415)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4801a5b816158f07a8ca8acb37e97e2f20b06911
Validity
Not Before: May 11 11:55:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21a87ac234c24ad1322ccd18914d51db81ac3fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:91:33:34:d0:f0:8d:d6:45:47:69:bd:7a:2b:
85:9c:9d:c6:03:1f:d0:d6:08:f9:f4:e2:bf:10:82:
34:24:ac:eb:21:9b:36:4e:88:49:74:7e:c1:1b:9c:
78:f8:fa:8b:98:6d:c6:bd:16:1a:80:28:1e:f4:ad:
94:b5:af:be:25:aa:61:db:6b:8d:16:3e:30:dd:33:
71:ac:30:f5:32:b7:4f:bd:26:71:a6:22:50:c9:28:
3c:b2:c0:a6:cd:c0:d1:c1:36:b0:70:60:7c:92:9d:
0b:52:dd:70:0f:88:da:6f:a9:ec:f5:35:2e:2e:2e:
13:b7:2c:8c:27:58:96:92:36:16:31:70:60:e9:b0:
ec:ce:34:5d:19:45:7e:f8:a7:82:0e:25:fb:2a:ac:
a5:df:45:b3:fb:bc:81:fc:53:ec:da:c5:0e:e8:73:
29:dc:99:a8:2c:40:53:5f:30:f5:24:44:90:a4:9d:
e5:e4:91:35:c7:d2:e7:e8:6b:0b:76:60:54:f6:aa:
54:14:20:1a:6c:fd:93:22:af:3b:e7:97:07:c3:5a:
36:76:44:e4:70:fe:c4:0b:ea:8e:75:9f:c9:a7:dc:
41:6f:cb:a4:c9:8a:5a:1c:4e:43:be:28:8a:84:1c:
43:1b:27:65:82:a7:9b:18:d3:94:8e:70:fa:b1:88:
58:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:A8:7A:C2:34:C2:4A:D1:32:2C:CD:18:91:4D:51:DB:81:AC:3F:E7
X509v3 Authority Key Identifier:
keyid:48:01:A5:B8:16:15:8F:07:A8:CA:8A:CB:37:E9:7E:2F:20:B0:69:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAGluBYVjweoyorLN-l-LyCwaRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/Iah6wjTCStEyLM0YkU1R24GsP-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/SAGluBYVjweoyorLN-l-LyCwaRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.86.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:13:9b:79:e0:24:8a:0a:54:a2:09:f3:45:f1:d6:b3:78:3d:
51:d1:2b:6b:86:bb:10:4e:15:15:51:7c:f7:a4:8a:b7:9d:f8:
09:18:fc:21:0f:07:3e:fd:e2:74:0d:70:48:1c:3b:c4:99:65:
f7:1c:3e:73:02:b7:01:2d:8b:11:26:6d:a8:e9:e0:84:01:6e:
31:a2:b7:38:a8:bf:4d:08:b2:2e:8a:9d:66:e5:f7:f3:fd:c1:
90:1e:1c:78:a4:cb:54:d5:62:75:d0:43:ce:84:9c:48:5b:86:
bb:d5:88:3d:c2:4d:18:ce:e0:eb:f3:c3:83:cc:3b:93:d9:99:
59:9f:3b:82:93:c6:36:62:f8:8d:9e:b2:8b:ac:ab:83:ba:68:
0e:d3:72:ed:91:24:b8:d2:32:c6:72:13:c9:23:6d:53:ed:ea:
ca:4a:af:07:aa:a4:e9:98:2f:40:f1:2c:72:70:34:38:12:96:
1e:9f:22:c2:81:72:dc:21:d3:d8:ee:b8:16:66:b7:b6:ca:ba:
f5:e5:63:bc:4a:cf:dc:ad:2c:f7:e7:f0:d2:b2:aa:c3:15:e8:
9d:eb:ab:ac:fb:06:22:dd:c8:bf:3e:75:f3:eb:b6:01:76:47:
e9:17:f0:c1:f1:6d:f7:9e:4f:25:e0:c0:51:3e:80:3f:2b:73:
1e:30:bb:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:29 2024 by rpki-client on console-fra.rpki-client.org