Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/_c60dmIH_i1IluqPdblw42koLTc.roa
File: _c60dmIH_i1IluqPdblw42koLTc.roa (raw, json)
Hash identifier: DijLFZ9YuQ8hKk8xFe1JKIhJ7enrj6fGuwuyq0l6Tcs=
Subject key identifier: FD:CE:B4:76:62:07:FE:2D:48:96:EA:8F:75:B9:70:E3:69:28:2D:37
Certificate issuer: /CN=bd19d4535c7e62b921e859e6557b821f278e716a
Certificate serial: 018287EE6524254FC7AB0991385082088164
Authority key identifier: BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/_c60dmIH_i1IluqPdblw42koLTc.roa
Signing time: Wed 10 Aug 2022 13:25:23 +0000
ROA not before: Wed 10 Aug 2022 13:25:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 185.23.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:87:ee:65:24:25:4f:c7:ab:09:91:38:50:82:08:81:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd19d4535c7e62b921e859e6557b821f278e716a
Validity
Not Before: Aug 10 13:25:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdceb4766207fe2d4896ea8f75b970e369282d37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f0:c5:f4:87:d9:27:61:58:57:da:35:c2:7a:
ad:68:13:17:cd:9e:ff:87:d5:62:f1:37:db:26:4c:
65:89:ac:94:74:83:84:02:e9:78:ee:68:12:ee:9d:
c4:bf:b5:ea:dc:76:cb:8a:c9:aa:57:76:36:dd:b6:
ae:9b:3e:99:71:f3:f7:9a:7c:2e:7a:64:3a:47:0c:
a9:81:ec:e4:a1:a9:88:20:62:e8:4b:cb:01:3e:83:
44:31:38:ec:90:65:fc:75:ab:0c:53:84:56:73:ac:
ad:b5:f7:52:99:73:f9:96:d5:2a:6d:90:8d:7a:f4:
07:d0:56:4d:be:68:f0:e9:80:bb:58:96:c8:fb:5c:
c7:37:73:9b:4e:f2:49:80:3d:30:7b:e0:b8:e3:42:
ad:2d:ab:cd:91:3e:04:36:bc:c6:85:7a:c7:cd:58:
ca:ac:eb:c5:f7:a6:3b:90:26:78:a2:4d:1b:72:52:
82:bc:72:6b:fa:db:32:57:41:1b:fa:9a:b2:ec:85:
8a:5a:b6:d9:91:b5:3d:32:10:b2:08:07:52:97:9b:
63:e8:54:84:1b:6c:77:6a:51:50:ed:5b:5d:20:1f:
89:38:27:b7:83:94:b6:2d:7c:42:d2:8e:f0:43:4f:
cb:f9:c1:d9:3a:66:f2:fe:38:d8:87:ef:74:d3:31:
0f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:CE:B4:76:62:07:FE:2D:48:96:EA:8F:75:B9:70:E3:69:28:2D:37
X509v3 Authority Key Identifier:
keyid:BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/_c60dmIH_i1IluqPdblw42koLTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.6.0/24
Signature Algorithm: sha256WithRSAEncryption
13:37:7a:94:77:11:86:ff:75:25:94:7a:ab:be:8c:4a:cc:0e:
27:dd:c0:62:14:fd:ee:33:49:96:d2:8f:e2:4f:23:a3:0d:c1:
e0:3b:b7:db:d7:ef:6d:80:a3:7b:d4:c6:bf:0a:f7:67:88:6b:
93:a1:98:83:4f:b4:11:44:83:b7:19:3d:66:bd:06:b4:f2:77:
f5:1b:f6:0b:54:d3:74:12:be:04:82:a2:39:e7:6a:5e:a3:bc:
20:fa:2c:a9:ae:67:47:b9:20:d3:82:fe:6a:b5:a8:8b:05:81:
d6:b3:a9:7d:77:bf:8e:7d:f4:6d:af:84:11:b8:ef:d5:09:54:
96:65:d2:1c:eb:ba:bd:ca:25:f0:36:5a:41:ab:ff:dc:ab:34:
02:3d:cf:6f:52:d0:25:ec:21:23:1b:8b:4e:2e:f1:4c:b5:40:
d2:6e:b0:8c:32:9e:a4:7b:98:09:e3:57:ad:f8:43:bf:a9:ca:
81:cd:9c:1e:52:f7:ca:72:7f:96:02:b7:2f:f1:0c:52:71:79:
15:93:bd:58:44:32:e1:fc:a1:d0:7c:17:db:42:95:5d:7f:3c:
eb:2b:f0:9c:ca:cf:33:52:3f:a2:94:3d:2b:70:ee:4f:50:f1:
4e:4b:b5:2d:83:37:27:2e:98:6d:19:80:b1:55:56:35:bb:9b:
3c:bc:44:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:52 2024 by rpki-client on console-fra.rpki-client.org