Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/f52cea-3f41-482b-8ce8-2e2548310df3/1/nL4rpljKOq75dqhx3f8dBLqR1GA.roa
File: nL4rpljKOq75dqhx3f8dBLqR1GA.roa (raw, json)
Hash identifier: ImBYI6tKRq2yT5uPsJaZfGpjqLbSqKIiE4KHaHQscME=
Subject key identifier: 9C:BE:2B:A6:58:CA:3A:AE:F9:76:A8:71:DD:FF:1D:04:BA:91:D4:60
Certificate issuer: /CN=bb61df71f97461c6b3b4548fdcfecd77b679030f
Certificate serial: 32868116
Authority key identifier: BB:61:DF:71:F9:74:61:C6:B3:B4:54:8F:DC:FE:CD:77:B6:79:03:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u2Hfcfl0YcaztFSP3P7Nd7Z5Aw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/f52cea-3f41-482b-8ce8-2e2548310df3/1/nL4rpljKOq75dqhx3f8dBLqR1GA.roa
Signing time: Sat 01 Jan 2022 05:02:18 +0000
ROA not before: Sat 01 Jan 2022 05:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203682
IP address blocks: 185.4.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 847675670 (0x32868116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb61df71f97461c6b3b4548fdcfecd77b679030f
Validity
Not Before: Jan 1 05:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9cbe2ba658ca3aaef976a871ddff1d04ba91d460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d3:a3:03:41:e0:e6:f2:bb:e7:e0:c9:d1:e5:
de:f5:28:86:b0:dd:5e:6b:aa:b8:3f:70:70:9c:65:
29:fc:cb:2f:5f:23:08:b7:62:19:74:b3:1d:04:a9:
33:36:c1:3a:a0:fb:fa:ef:f0:da:8e:09:f5:c0:0d:
c9:af:a7:4a:f0:62:c2:41:c2:cc:fd:a9:9a:ba:99:
91:0a:f0:28:0e:21:3a:41:69:bd:73:bd:e9:62:12:
b1:30:22:81:e4:ca:fd:c7:06:b3:57:94:ef:c2:51:
f7:b5:3b:eb:85:51:67:20:a1:5f:7a:3c:c5:53:e4:
af:03:40:09:23:62:cd:26:30:81:8a:44:04:4e:fd:
81:0a:cf:09:56:cf:46:38:a6:dd:15:d4:e9:96:8e:
8e:ea:a1:e0:a4:3b:a5:b3:9d:96:af:ba:1e:70:b4:
b6:e0:0d:43:57:a5:57:92:8e:cd:0e:61:8c:90:68:
5e:95:2e:44:19:ca:6e:f4:78:30:3f:24:d2:7b:ae:
c8:ab:f6:dc:11:d4:7d:f6:c9:da:d1:82:c2:c7:1b:
9a:41:31:0d:1c:75:e7:f6:ff:03:d0:3b:7b:1b:88:
13:4c:0a:bf:99:12:e4:0a:9d:a0:a4:d9:d1:e8:ca:
22:76:63:aa:42:3a:1d:ef:24:fa:fa:7c:fd:76:08:
00:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:BE:2B:A6:58:CA:3A:AE:F9:76:A8:71:DD:FF:1D:04:BA:91:D4:60
X509v3 Authority Key Identifier:
keyid:BB:61:DF:71:F9:74:61:C6:B3:B4:54:8F:DC:FE:CD:77:B6:79:03:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u2Hfcfl0YcaztFSP3P7Nd7Z5Aw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/f52cea-3f41-482b-8ce8-2e2548310df3/1/nL4rpljKOq75dqhx3f8dBLqR1GA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/f52cea-3f41-482b-8ce8-2e2548310df3/1/u2Hfcfl0YcaztFSP3P7Nd7Z5Aw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.15.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:88:23:ed:65:72:62:c7:d6:01:d4:58:c3:c4:3c:5e:1b:fa:
f9:99:55:fd:38:e5:07:e7:1c:0f:f1:65:4a:67:2a:9c:ef:a2:
b7:54:7d:a2:e7:a9:42:eb:f9:27:5f:29:9e:b8:b5:27:d5:8d:
36:a7:35:70:08:85:e1:f6:56:11:f0:b8:85:b0:9f:c3:ff:10:
0b:29:1e:da:e9:d1:ed:17:15:86:6b:48:d4:61:76:7c:74:63:
28:12:87:b4:be:e3:1d:21:a3:ec:a0:f2:cd:38:e4:c8:6a:f2:
95:99:ea:5f:20:03:31:bb:30:35:3f:aa:38:d6:d0:3a:e8:92:
fc:b5:e7:e7:f3:2a:b9:5b:96:23:0c:fa:d1:67:a7:42:36:d4:
f8:e5:30:71:00:35:b5:01:a3:7e:05:56:1c:c3:3b:0a:3f:ea:
1f:9d:d7:d6:10:ec:2c:8a:cd:db:5f:21:9f:41:11:e1:e0:10:
cc:5c:1d:11:b1:c1:a5:90:be:a3:7b:11:ec:19:a8:80:3c:7c:
cd:98:d6:c9:51:bd:1e:0e:c4:a9:5f:d5:ff:96:b2:e8:48:7d:
31:2d:01:2a:33:dc:cc:7f:24:a1:44:27:b2:e5:d4:e7:f4:58:
4f:dd:fc:19:cd:a4:47:27:6f:2d:e5:db:3b:0d:c2:26:77:ba:
56:13:65:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:04 2024 by rpki-client on console-ams.rpki-client.org