Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/mYbmK_r_hF3mYc4_12KqSF44yM0.roa
File: mYbmK_r_hF3mYc4_12KqSF44yM0.roa (raw, json)
Hash identifier: ZvmxGTe0MZA1QxIhqtIQsr8aCmEocmtGz7fzmElDJI8=
Subject key identifier: 99:86:E6:2B:FA:FF:84:5D:E6:61:CE:3F:D7:62:AA:48:5E:38:C8:CD
Certificate issuer: /CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Certificate serial: 01857082DEB0AC322A2ABE7790BC8F219312
Authority key identifier: 70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/mYbmK_r_hF3mYc4_12KqSF44yM0.roa
Signing time: Mon 02 Jan 2023 03:25:02 +0000
ROA not before: Mon 02 Jan 2023 03:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.230.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:de:b0:ac:32:2a:2a:be:77:90:bc:8f:21:93:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Validity
Not Before: Jan 2 03:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9986e62bfaff845de661ce3fd762aa485e38c8cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:06:7c:f8:1d:87:35:a2:51:92:86:3d:33:f0:
8f:74:67:70:02:cc:34:a1:0f:6f:e3:6f:5a:5d:13:
14:bb:b7:4b:14:4c:a4:ee:f1:eb:ba:d9:de:8c:61:
83:50:6a:46:71:b6:7a:60:cf:02:dd:49:1f:03:b0:
52:a5:c2:04:ef:ca:eb:ae:23:47:4a:ee:c9:b3:bd:
ac:32:74:fd:ea:ea:4f:dd:c2:ae:a2:9f:38:08:67:
43:cd:e2:be:63:06:25:04:21:e4:b4:13:0d:7d:04:
f4:d9:ae:a6:32:e4:51:8e:7a:53:e2:90:69:c5:cc:
a6:6f:a3:7d:3d:84:f6:16:e3:bf:ff:88:40:62:48:
24:dd:c3:4e:93:a7:0d:77:7c:6b:fc:80:86:4f:b6:
82:d1:b1:52:63:ab:5d:7d:05:2a:93:ae:8f:e7:08:
ee:e3:a8:ae:af:e1:ba:d5:87:a3:14:bf:69:d1:00:
1b:d9:61:10:4e:47:85:cf:de:fd:12:35:71:23:69:
85:4d:13:7d:e8:0b:29:91:76:31:34:3d:83:c9:35:
9c:22:45:85:ad:33:40:f1:69:21:6d:e4:1a:4c:a7:
9d:5c:39:cc:d5:68:b3:e5:ee:c9:a6:55:28:31:ae:
fd:bc:52:0a:d2:4c:3a:fd:ac:22:18:fe:e3:ac:f9:
5d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:86:E6:2B:FA:FF:84:5D:E6:61:CE:3F:D7:62:AA:48:5E:38:C8:CD
X509v3 Authority Key Identifier:
keyid:70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/mYbmK_r_hF3mYc4_12KqSF44yM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/cG06u7R4t07yre-bt8QzbjQRHVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.246.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:36:2a:d5:ec:f1:00:88:0b:35:dd:20:9d:be:84:1a:a6:9b:
7e:c9:de:dc:ea:d0:94:70:cd:79:ed:fa:c4:35:20:7f:f9:a0:
83:d5:32:2f:32:5e:51:db:97:80:e3:e9:16:32:81:18:72:a1:
75:3b:b8:0c:8d:52:b7:b8:5d:84:b4:7b:3f:3e:d9:2b:21:f6:
86:d6:e7:0f:38:c9:8a:01:19:ea:0e:05:e7:a7:01:e0:60:b0:
2f:34:c3:76:bc:5d:48:eb:b9:2f:88:aa:2e:d1:99:c8:21:8e:
c1:b5:3c:ab:b7:09:62:f2:f8:b7:a2:f4:9e:fc:28:70:f8:88:
17:8c:95:69:a1:8a:44:fa:d9:00:17:f6:1c:46:31:af:f9:26:
01:4b:93:06:ad:03:12:27:60:d3:d8:8b:4c:ef:5c:c6:ef:c3:
1d:93:56:38:1c:1f:58:85:2e:da:08:05:77:45:59:74:f1:29:
5b:ef:63:92:37:ae:9b:e8:b4:51:19:b0:70:ac:29:cf:ab:28:
46:0d:37:ea:29:14:46:82:a8:d8:a4:0c:f4:71:1a:8e:2f:69:
a7:cf:4c:d9:ed:22:72:9a:b4:4f:2a:8a:64:6c:a9:3f:a2:dc:
e9:3e:5c:23:9b:4b:48:fd:95:90:07:9f:04:99:a4:ef:d7:42:
b5:19:f7:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:36 2025 by rpki-client