Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/2f516d-96c9-4bf2-81c8-8b48f3f40625/1/y6nTmbXxTg4Mxh-0ZHpc-ONmWNQ.roa
File: y6nTmbXxTg4Mxh-0ZHpc-ONmWNQ.roa (raw, json)
Hash identifier: nByd5lr2MVf4bR8luK3cLs8YdSKY3fNJ5AFAF2NU3Lk=
Subject key identifier: CB:A9:D3:99:B5:F1:4E:0E:0C:C6:1F:B4:64:7A:5C:F8:E3:66:58:D4
Certificate issuer: /CN=ba99d4db12e4f0b002f60e92cc533e6f882d1508
Certificate serial: 021B1618
Authority key identifier: BA:99:D4:DB:12:E4:F0:B0:02:F6:0E:92:CC:53:3E:6F:88:2D:15:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upnU2xLk8LAC9g6SzFM-b4gtFQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/2f516d-96c9-4bf2-81c8-8b48f3f40625/1/y6nTmbXxTg4Mxh-0ZHpc-ONmWNQ.roa
Signing time: Sat 01 Jan 2022 11:04:23 +0000
ROA not before: Sat 01 Jan 2022 11:04:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.69.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35329560 (0x21b1618)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba99d4db12e4f0b002f60e92cc533e6f882d1508
Validity
Not Before: Jan 1 11:04:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cba9d399b5f14e0e0cc61fb4647a5cf8e36658d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:97:b1:46:4f:e1:98:37:bb:4a:3c:56:b1:aa:
7f:dc:b1:40:c0:9a:2a:ff:70:b5:82:d1:96:9f:e1:
b6:b0:3a:68:39:a4:10:c6:17:fc:03:54:3a:e5:9f:
0f:e4:7d:d6:6f:8d:f6:a1:98:49:84:23:1a:ba:33:
11:26:49:32:0e:8e:21:39:99:8d:6d:f6:2d:47:05:
76:f2:13:2f:a6:ac:8b:4d:0a:a3:5e:a7:bb:6c:57:
7c:47:44:b8:bf:20:83:33:0d:5d:b6:8b:85:3f:2c:
5a:0b:c6:cd:d8:7c:7d:fd:20:5a:61:6c:f1:80:e6:
ab:3e:9c:ce:17:c6:b4:7a:0e:db:7a:fe:ea:e5:1a:
4f:70:e7:71:e5:8f:5c:61:47:5c:2b:20:de:b4:c4:
c8:d5:2d:68:00:8f:f6:dd:c1:16:e2:9b:ac:73:96:
21:10:fe:e3:ef:b7:1f:0b:7c:0e:94:19:39:ee:7f:
15:1d:9d:5f:c4:19:b2:c9:f7:52:53:2f:8c:2b:45:
d0:21:02:34:9f:4a:79:20:0a:16:28:e7:93:7e:e7:
11:2c:74:88:6d:ea:32:a0:86:69:5e:a9:b4:85:bb:
36:f9:9e:22:85:b2:70:60:3f:36:bf:97:83:aa:96:
45:34:bd:f3:d5:b0:23:52:73:f6:f1:f8:32:78:12:
af:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:A9:D3:99:B5:F1:4E:0E:0C:C6:1F:B4:64:7A:5C:F8:E3:66:58:D4
X509v3 Authority Key Identifier:
keyid:BA:99:D4:DB:12:E4:F0:B0:02:F6:0E:92:CC:53:3E:6F:88:2D:15:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upnU2xLk8LAC9g6SzFM-b4gtFQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2f516d-96c9-4bf2-81c8-8b48f3f40625/1/y6nTmbXxTg4Mxh-0ZHpc-ONmWNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2f516d-96c9-4bf2-81c8-8b48f3f40625/1/upnU2xLk8LAC9g6SzFM-b4gtFQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.1.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:b1:15:5d:39:af:41:17:68:f7:97:e3:d4:47:86:75:40:67:
a7:08:38:6a:2d:51:3e:91:2a:23:24:e4:da:bd:24:51:80:1b:
cd:50:22:3d:51:01:b6:b9:e2:bd:bc:90:1a:08:52:fe:49:07:
ff:0f:71:27:66:98:7d:50:5a:c2:ef:3e:09:db:45:0e:ca:0f:
da:1c:0b:37:57:73:27:0a:75:44:3f:e6:94:ff:95:a9:90:bf:
17:72:1f:e0:7e:18:5d:a6:4a:b9:55:a5:bc:be:15:27:5c:a9:
12:14:e6:ae:dd:ae:fa:a1:82:24:7a:54:bf:e7:92:85:7c:93:
2e:07:ef:3f:cc:84:ca:2c:35:47:b9:07:59:6a:26:b6:c7:58:
37:1a:54:f8:98:06:d0:ea:fe:62:75:ea:ca:fe:2b:57:72:27:
75:4c:99:5a:18:06:ae:d1:4b:14:6b:56:71:86:34:0c:87:3f:
0c:13:3d:51:9c:ec:cc:25:e8:44:51:b5:a6:79:2a:02:e8:e4:
1c:d9:87:e7:21:af:cb:f6:ce:69:89:d2:79:68:c4:9b:d6:12:
e1:ea:b1:a4:31:84:23:1d:c6:3f:ce:b4:16:0f:f0:1e:ff:f4:
aa:a8:c8:1e:2a:88:98:68:9b:31:f3:ee:41:34:82:a3:f4:f4:
9f:26:09:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:40 2024 by rpki-client on console-fra.rpki-client.org