Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/IfCEkYPTe8EijdGi-4rGdcnqorI.roa
File: IfCEkYPTe8EijdGi-4rGdcnqorI.roa (raw, json)
Hash identifier: aLJL5lCJ7K0FwCCZUDTWQFvcyQFl2i+eS7YjX0lO7nE=
Subject key identifier: 21:F0:84:91:83:D3:7B:C1:22:8D:D1:A2:FB:8A:C6:75:C9:EA:A2:B2
Certificate issuer: /CN=2b237c5affe93543ae2fe6e1ffed182396eb9bb3
Certificate serial: 3F9D0C
Authority key identifier: 2B:23:7C:5A:FF:E9:35:43:AE:2F:E6:E1:FF:ED:18:23:96:EB:9B:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/IfCEkYPTe8EijdGi-4rGdcnqorI.roa
Signing time: Thu 17 Feb 2022 11:42:53 +0000
ROA not before: Thu 17 Feb 2022 11:42:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.107.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4168972 (0x3f9d0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b237c5affe93543ae2fe6e1ffed182396eb9bb3
Validity
Not Before: Feb 17 11:42:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21f0849183d37bc1228dd1a2fb8ac675c9eaa2b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3e:be:70:1d:57:d5:ff:ea:42:e7:44:b4:37:
8b:2c:0a:53:59:b5:4d:83:d3:ea:b3:49:5b:74:bf:
56:53:bd:3a:a1:26:c3:88:45:4d:8b:75:03:50:69:
e5:5f:8c:43:9b:3d:e3:62:bf:95:1e:bb:b6:32:76:
cf:62:8f:dd:93:2c:b6:b7:4f:0c:de:02:c3:32:17:
df:cc:ee:f1:14:5f:5c:bd:02:13:44:37:c5:81:1b:
6e:ae:9a:06:79:09:c1:12:19:57:33:4d:80:22:14:
94:3a:e8:b2:cb:7a:ca:0d:59:bf:87:3b:4d:60:8d:
9b:69:b3:f2:95:4b:59:3f:22:61:c0:76:d9:4c:3f:
9e:62:ce:10:26:73:4b:70:dd:17:e6:ad:bf:f5:00:
76:32:a5:19:02:61:8e:ec:da:66:fe:14:50:34:03:
2e:fb:70:8d:d6:4c:6f:ca:17:5b:c0:c2:f2:d8:a0:
0b:b4:be:95:56:a4:59:6b:aa:d7:fb:6b:cb:ba:df:
2e:d7:fd:ce:52:b3:6e:8d:6e:d8:96:d6:5d:4f:5a:
e0:c1:1b:4f:bd:0a:00:4e:11:5c:51:f3:cf:89:0e:
aa:c1:6b:be:47:d4:76:be:da:47:1f:4a:e9:4d:cf:
0a:54:f2:13:c2:74:9c:22:94:d9:84:0a:ef:41:5a:
38:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F0:84:91:83:D3:7B:C1:22:8D:D1:A2:FB:8A:C6:75:C9:EA:A2:B2
X509v3 Authority Key Identifier:
keyid:2B:23:7C:5A:FF:E9:35:43:AE:2F:E6:E1:FF:ED:18:23:96:EB:9B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/IfCEkYPTe8EijdGi-4rGdcnqorI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.197.0/24
Signature Algorithm: sha256WithRSAEncryption
25:19:41:c0:12:43:a5:6e:cc:a9:3a:83:10:4c:5e:ca:75:20:
75:9f:5f:e5:06:75:d9:a3:f9:72:ec:d6:91:d6:2b:e7:ac:46:
83:53:98:61:d3:28:db:ec:4c:41:55:b7:fe:b8:81:25:0c:ea:
ec:2a:08:9f:d5:46:cd:69:a3:93:bc:61:01:13:4b:29:ff:a6:
1e:f4:fd:f7:5d:59:76:22:77:88:b1:43:03:07:1c:db:5c:2e:
da:d1:8c:dd:d3:1f:84:38:59:c3:3d:a1:ed:27:8c:33:fa:57:
38:6e:b5:45:33:10:b5:e4:2d:28:a2:7d:da:24:0c:a8:71:af:
14:ff:15:c3:c8:c5:1e:d0:76:c7:ec:b3:0c:e7:c9:1c:eb:cc:
7a:0e:38:e4:c1:f6:b9:36:56:0f:06:61:ed:bd:38:2f:a1:12:
4a:66:64:0b:1a:d5:30:cd:0f:4c:00:14:c9:c5:d3:81:ff:2a:
eb:e6:39:37:e4:79:22:4b:83:13:e9:26:cf:a8:2f:bc:17:08:
5b:e0:f8:c6:d0:06:dc:40:fa:86:ac:04:a2:de:f4:64:5e:e3:
8c:a8:38:e0:c5:2f:76:ec:0f:19:ce:65:dc:52:ea:67:d4:0d:
17:66:6a:3e:a6:09:f1:e7:c6:8a:19:8d:57:23:e1:49:e0:62:
42:17:03:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:42 2024 by rpki-client on console-fra.rpki-client.org