Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/k73WS2JJ64OonNDgQChcMBizmHU.roa
File: k73WS2JJ64OonNDgQChcMBizmHU.roa (raw, json)
Hash identifier: L0cND1QJmPJzfLMtnLGzV3c6egD8oi9rHAoTwo3Cv5Q=
Subject key identifier: 93:BD:D6:4B:62:49:EB:83:A8:9C:D0:E0:40:28:5C:30:18:B3:98:75
Certificate issuer: /CN=9a5550e908a9b9688c29aac9895353dea836c45a
Certificate serial: 095F025E
Authority key identifier: 9A:55:50:E9:08:A9:B9:68:8C:29:AA:C9:89:53:53:DE:A8:36:C4:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlVQ6QipuWiMKarJiVNT3qg2xFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/k73WS2JJ64OonNDgQChcMBizmHU.roa
Signing time: Sat 01 Jan 2022 15:05:55 +0000
ROA not before: Sat 01 Jan 2022 15:05:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.11.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157221470 (0x95f025e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a5550e908a9b9688c29aac9895353dea836c45a
Validity
Not Before: Jan 1 15:05:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93bdd64b6249eb83a89cd0e040285c3018b39875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e6:ea:80:bc:78:a2:3a:ad:54:68:1b:3e:cc:
74:98:c6:0e:67:5e:39:0c:d3:51:c2:eb:4e:69:50:
36:47:75:bb:b5:b7:9d:fd:3c:30:55:99:60:29:4d:
ff:1f:f3:e2:a0:d5:31:33:0c:6e:03:e4:45:b4:0b:
6a:e6:13:a1:0c:16:a9:9a:50:2b:02:33:e4:40:6d:
74:a9:67:b2:79:f0:cb:8d:bf:f9:bb:3a:05:1a:f1:
9f:83:24:e2:83:00:ab:a4:cf:92:4b:a5:12:a5:49:
f2:5a:de:60:d7:1e:67:17:df:db:47:bf:3d:d4:a5:
4e:56:5a:67:07:45:2e:44:9a:b9:97:92:25:46:29:
06:11:db:f5:b5:fd:ff:c9:1f:9d:4e:7d:36:a8:f3:
83:14:8c:28:d8:e9:be:cf:88:77:25:22:e5:25:74:
98:4b:f6:13:a5:df:9c:3f:27:aa:55:da:82:05:d1:
df:b5:ce:f4:5b:f4:f7:b5:c6:d1:5b:28:d1:48:db:
d5:ef:ee:48:d0:55:35:d1:0a:45:ac:37:b1:c6:87:
39:ee:04:af:b2:1d:19:07:b1:48:fd:1a:7d:d1:a2:
2e:1f:1d:b0:18:7b:27:01:1c:1b:9c:af:c4:b8:e9:
1e:90:6a:81:43:ef:0b:65:7e:ae:a2:71:d5:70:cf:
9e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:BD:D6:4B:62:49:EB:83:A8:9C:D0:E0:40:28:5C:30:18:B3:98:75
X509v3 Authority Key Identifier:
keyid:9A:55:50:E9:08:A9:B9:68:8C:29:AA:C9:89:53:53:DE:A8:36:C4:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlVQ6QipuWiMKarJiVNT3qg2xFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/k73WS2JJ64OonNDgQChcMBizmHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/mlVQ6QipuWiMKarJiVNT3qg2xFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.126.0/24
Signature Algorithm: sha256WithRSAEncryption
03:1f:84:44:63:2b:09:84:75:64:40:dd:65:97:b7:ac:1c:46:
ad:90:b9:4b:e9:89:ca:34:92:51:30:a6:60:82:ca:86:31:8c:
68:13:14:47:09:41:ef:4f:fc:e5:9c:26:2c:b9:0e:90:36:f3:
61:56:31:69:8d:49:68:29:74:0c:79:08:0e:ac:98:e9:ef:b5:
8c:7a:17:df:e2:fa:1a:e9:3c:f0:72:f8:31:29:22:c8:c9:77:
ad:30:b2:7d:b9:8b:6b:2e:cf:20:fb:71:61:ef:a1:07:e6:1a:
1b:d8:ca:f4:be:6d:90:54:09:75:0d:97:0e:2e:96:c2:7f:ea:
7a:31:e2:8a:f5:d8:97:4d:dd:3a:06:1c:01:97:ad:b6:91:e0:
49:35:da:ef:89:8c:d2:f9:06:78:53:2f:61:b9:ce:79:49:af:
fd:b2:74:bd:49:3b:78:5e:f9:3e:dc:92:ef:52:ea:04:0e:87:
a4:3f:1a:86:f8:c0:f4:82:04:aa:0e:e2:a7:2d:33:80:35:55:
f8:40:68:1b:db:d6:da:ce:81:ae:1b:76:c9:6f:d0:22:64:3e:
84:43:37:65:7c:4a:51:33:a5:0c:b1:70:9f:98:b6:32:92:d2:
56:a3:87:60:0c:8b:bb:11:75:20:2d:50:df:c2:f1:04:1f:68:
cd:7d:e6:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org