Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/0827e0-3331-40b4-99b2-9a137092cdd0/1/RduCU8CXDz90t1Xi33VTdlCkmVA.roa
File: RduCU8CXDz90t1Xi33VTdlCkmVA.roa (raw, json)
Hash identifier: W4ZE0b60l4BSymv0eWx+Xk/t3e7dk/9TEVv58Wgq2RE=
Subject key identifier: 45:DB:82:53:C0:97:0F:3F:74:B7:55:E2:DF:75:53:76:50:A4:99:50
Certificate issuer: /CN=ac5fc6c6aea3f0e4edf7ccb92e6eb2377a7479a5
Certificate serial: 03FAFBF0
Authority key identifier: AC:5F:C6:C6:AE:A3:F0:E4:ED:F7:CC:B9:2E:6E:B2:37:7A:74:79:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rF_Gxq6j8OTt98y5Lm6yN3p0eaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/0827e0-3331-40b4-99b2-9a137092cdd0/1/RduCU8CXDz90t1Xi33VTdlCkmVA.roa
Signing time: Sat 01 Jan 2022 14:06:55 +0000
ROA not before: Sat 01 Jan 2022 14:06:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60896
IP address blocks: 185.24.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66780144 (0x3fafbf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5fc6c6aea3f0e4edf7ccb92e6eb2377a7479a5
Validity
Not Before: Jan 1 14:06:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45db8253c0970f3f74b755e2df75537650a49950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ce:2e:14:c5:35:28:70:86:78:af:99:27:c9:
41:98:f5:ad:f2:e3:6e:d3:fe:74:e3:a5:f4:94:70:
26:62:eb:23:31:c7:d5:98:94:34:f6:1d:a6:b3:02:
db:cb:20:9e:28:4d:35:c8:82:86:93:45:4a:a6:04:
31:6f:0b:6c:00:f6:b3:58:73:01:c4:7c:5e:2b:ae:
01:df:9c:e4:3b:63:c4:fc:00:19:f4:7e:bd:d7:5c:
ba:ee:06:29:ba:84:c5:f6:a4:76:12:29:9e:a5:4c:
ba:04:3c:6b:4f:84:8e:ce:f3:7c:54:9b:b6:29:0a:
59:07:aa:3d:ff:88:a6:54:9f:ab:ed:5c:a5:33:a5:
17:76:7b:a4:11:f2:ec:21:ce:1f:23:f7:b4:13:e8:
78:b4:b4:42:e1:3b:28:bd:87:3a:59:e1:21:dc:2e:
72:58:20:72:b1:90:8c:a9:46:d6:e7:4d:0a:b5:d8:
c8:f2:33:8e:86:e9:f7:25:e3:e6:e3:91:e6:38:84:
7c:61:b4:fb:c7:ab:23:e0:4b:8a:50:45:62:af:a6:
d9:3f:47:2d:42:cf:1d:ea:3b:c1:88:bf:67:39:13:
dd:02:14:41:45:0a:d1:fc:8a:cd:8f:12:17:b9:61:
7f:1f:9e:5e:e1:e3:38:9a:b5:65:01:41:ea:87:6a:
3f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:DB:82:53:C0:97:0F:3F:74:B7:55:E2:DF:75:53:76:50:A4:99:50
X509v3 Authority Key Identifier:
keyid:AC:5F:C6:C6:AE:A3:F0:E4:ED:F7:CC:B9:2E:6E:B2:37:7A:74:79:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rF_Gxq6j8OTt98y5Lm6yN3p0eaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0827e0-3331-40b4-99b2-9a137092cdd0/1/RduCU8CXDz90t1Xi33VTdlCkmVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0827e0-3331-40b4-99b2-9a137092cdd0/1/rF_Gxq6j8OTt98y5Lm6yN3p0eaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.80.0/22
Signature Algorithm: sha256WithRSAEncryption
37:ff:0d:ec:dd:ac:57:da:19:35:11:70:bd:fd:d6:64:04:75:
99:7b:83:9a:12:0e:b2:8e:3c:e4:52:f3:1b:92:c0:42:69:aa:
54:01:f1:a5:8b:d6:53:b0:3c:36:7d:3d:cb:56:e9:db:fe:71:
0f:b5:b3:3c:1a:72:a5:ea:33:d0:08:af:1d:0d:ce:41:06:ad:
8c:f1:58:92:2d:7b:b7:4b:62:dd:68:2c:14:d6:3b:3c:d3:aa:
50:90:d1:8a:52:a2:54:41:24:d6:35:5e:61:d3:67:21:e9:4a:
02:5a:f9:14:74:79:9c:d4:b8:f2:cc:d5:1b:d3:d7:43:cd:7d:
4d:3f:de:af:d7:05:e6:36:a3:11:01:e7:77:86:75:1c:c2:b3:
83:8b:12:cd:21:7a:8e:6c:63:af:b2:74:24:3e:8b:bd:36:6e:
76:f5:d2:a9:69:3f:07:6c:2e:85:40:63:01:5a:cc:a9:6f:71:
b9:90:a5:9b:af:01:aa:17:8c:7c:c0:91:b4:7b:00:a9:a7:43:
f5:54:c1:e4:4d:90:2a:2e:fb:26:29:9c:1f:fe:7d:8e:06:59:
08:ff:a6:60:34:6e:2b:ae:e0:88:b3:8f:c3:02:f4:aa:e9:0e:
b5:a2:d0:97:fa:7c:bc:0d:18:e9:16:52:d1:a9:a5:0d:cb:bc:
be:77:c6:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:44 2024 by rpki-client on console-fra.rpki-client.org