Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/pgNtRIJRzZK7B6vSneqV9JVSfRw.roa
File: pgNtRIJRzZK7B6vSneqV9JVSfRw.roa (raw, json)
Hash identifier: //X7h4AjIOBRPOotu4MzX2lFrRWNUOwKgWgEksynQEc=
Subject key identifier: A6:03:6D:44:82:51:CD:92:BB:07:AB:D2:9D:EA:95:F4:95:52:7D:1C
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 018423288DE1EA79E56B6DE84DFC739A9D0E
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/pgNtRIJRzZK7B6vSneqV9JVSfRw.roa
Signing time: Sat 29 Oct 2022 09:52:51 +0000
ROA not before: Sat 29 Oct 2022 09:52:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 185.255.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:23:28:8d:e1:ea:79:e5:6b:6d:e8:4d:fc:73:9a:9d:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Oct 29 09:52:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6036d448251cd92bb07abd29dea95f495527d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:86:53:f3:87:ec:d0:1e:03:f1:da:3f:24:81:
07:d1:9e:f4:f8:0d:9f:d6:dd:52:66:7f:ff:23:ed:
a1:12:25:f3:78:4c:f1:7c:5b:d7:83:ab:80:68:2b:
20:0b:c9:9a:3e:aa:96:c5:53:da:8c:bc:40:65:37:
38:b7:4f:10:8e:40:d1:7d:f6:aa:3a:2d:11:72:0a:
f0:f3:8d:ba:e4:6e:22:3f:a5:1a:1e:4e:73:3f:27:
0c:89:de:7f:5b:d4:35:49:bb:ab:31:03:e1:92:0e:
19:74:20:cd:20:3c:48:18:d4:28:d3:54:74:56:d1:
be:f2:78:0b:0d:20:2b:b2:f2:da:08:b6:39:61:dc:
f8:69:7b:6a:ae:f3:0a:30:3a:dd:3b:48:52:33:ac:
6f:80:72:2f:c9:e7:80:e2:34:47:8f:00:6f:e0:64:
36:27:8f:1e:28:0a:69:22:cf:39:97:42:d6:5e:c9:
c5:f1:52:0e:be:57:d8:19:ec:73:22:ed:8e:42:29:
f8:2a:28:7e:cf:c6:10:83:a4:86:92:5b:f6:95:39:
d8:c0:58:80:df:a1:25:58:b7:b9:3b:08:7c:47:73:
eb:d5:61:90:a3:cb:32:0a:ab:c6:d5:2c:a2:55:33:
06:71:ce:bb:0e:74:d7:17:de:7c:30:33:d5:be:31:
9e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:03:6D:44:82:51:CD:92:BB:07:AB:D2:9D:EA:95:F4:95:52:7D:1C
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/pgNtRIJRzZK7B6vSneqV9JVSfRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.6.0/24
Signature Algorithm: sha256WithRSAEncryption
54:bd:83:b2:14:bf:9f:f4:1c:25:6e:3c:64:66:2c:91:b3:9b:
07:43:f0:a6:a3:cf:f8:ca:4c:c6:89:84:1e:db:c9:1b:2a:c4:
ae:4d:37:cd:aa:9f:b1:35:96:6e:a2:33:7e:38:81:cf:fe:72:
74:3e:34:97:55:fa:3b:f5:10:ab:c6:00:35:f8:97:e8:71:be:
df:49:84:8c:84:07:4a:f4:bf:fd:b5:ab:b5:05:61:00:f8:1a:
ec:9b:ae:ad:8d:f0:85:4d:5e:ee:6f:81:a5:24:14:be:a5:9d:
4c:d6:62:d0:76:b9:42:59:d1:48:b1:62:c8:66:2e:e7:f4:2b:
6a:ed:07:47:20:31:e0:a6:47:e1:a1:28:51:4f:ac:89:11:cc:
b5:56:bc:fa:66:36:28:e0:4f:ed:56:b8:03:b6:bc:12:8c:47:
07:fd:cf:4c:fd:9c:a3:0f:da:c6:00:4b:9c:da:18:78:11:85:
75:af:17:75:44:d5:23:0f:73:52:8e:27:f1:4a:41:64:c7:9d:
29:35:f5:de:5a:8c:c9:50:fe:a5:0e:30:da:81:37:94:67:39:
93:f3:c4:68:3e:22:2d:c9:40:15:04:99:05:18:81:44:46:f5:
bc:61:00:1c:68:28:ca:55:06:4f:fc:f5:f7:31:0a:e5:da:98:
10:b0:ae:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org