Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/iuvflDeAo97hNy94nHk_1yWkSwo.roa
File: iuvflDeAo97hNy94nHk_1yWkSwo.roa (raw, json)
Hash identifier: zc8RNnV0Y8XkfOgMG2ZK7UuhU+qlIqf0mpA1eGHZRS4=
Subject key identifier: 8A:EB:DF:94:37:80:A3:DE:E1:37:2F:78:9C:79:3F:D7:25:A4:4B:0A
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 1A2CB9EB
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/iuvflDeAo97hNy94nHk_1yWkSwo.roa
Signing time: Sat 01 Jan 2022 12:55:16 +0000
ROA not before: Sat 01 Jan 2022 12:55:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57844
IP address blocks: 185.118.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 439138795 (0x1a2cb9eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jan 1 12:55:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8aebdf943780a3dee1372f789c793fd725a44b0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5f:5b:36:85:05:eb:01:8a:ed:3e:09:0d:6a:
69:be:6d:58:4d:16:97:0e:3c:bc:59:27:be:f1:0b:
ff:7c:ae:2c:3c:4f:83:87:a1:63:df:75:7e:ad:5f:
36:b8:0a:f1:89:90:12:70:1c:4c:4f:5d:d6:b5:65:
eb:9b:c1:d1:37:31:22:5c:2a:8b:7f:c1:87:8e:57:
1d:a2:54:8b:3d:78:ab:38:2b:ec:59:61:ed:bc:de:
f4:ba:dd:3e:02:5c:5b:37:22:00:6a:a9:4d:d5:53:
2c:fe:2c:71:be:22:9b:ec:1a:64:62:59:1e:7f:b6:
44:d5:5c:9a:cf:c4:83:05:2b:29:9a:e7:08:12:f6:
7b:1d:86:81:61:a8:bb:69:b5:4c:08:e2:05:33:4e:
1d:ae:a7:cf:50:01:7c:08:0d:e7:ac:48:2c:dc:fc:
7a:c6:e9:ae:90:b2:4d:bf:f4:41:bb:40:a5:40:92:
c1:af:0b:be:5e:b8:3e:c0:85:6e:38:93:d2:17:93:
a7:a1:45:ee:f7:0c:c4:e3:d2:cb:b6:b0:19:3e:02:
ec:a4:10:8e:44:34:4a:6b:eb:17:16:67:17:61:c6:
93:6d:d5:24:63:8b:9b:31:99:8e:48:54:5a:ba:e1:
4e:cb:4d:7f:89:20:8b:b6:45:7d:61:2c:98:79:2a:
fb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:EB:DF:94:37:80:A3:DE:E1:37:2F:78:9C:79:3F:D7:25:A4:4B:0A
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/iuvflDeAo97hNy94nHk_1yWkSwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.141.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:c8:0e:7d:aa:b7:b3:8d:60:28:d9:5d:97:63:95:d2:5f:de:
43:9f:42:58:17:a9:34:94:5e:1c:18:e7:9a:c0:75:5a:97:d2:
5d:cc:90:54:81:ee:81:57:8f:ba:3b:35:50:e0:06:6d:fe:ef:
6b:38:7e:d8:22:4d:d1:de:33:27:0f:f0:78:2b:6d:c1:85:5b:
20:ac:df:a9:4c:f8:2c:1b:9f:65:6a:1e:6f:4f:27:5b:a4:66:
23:56:29:f0:8c:c1:12:b5:af:22:b1:ae:d3:88:0a:f0:bf:ac:
e6:22:f0:5c:27:5d:a4:68:5d:eb:93:3d:0a:2e:75:a0:ad:8d:
d2:5c:36:a9:70:40:90:07:b1:d3:6e:34:4d:30:d9:7b:e4:9a:
fb:cb:a6:14:1b:a4:03:d5:0f:d2:5a:0e:d1:03:25:2e:44:5a:
b6:5e:26:f6:c4:9d:fd:a3:5e:f9:8c:69:eb:f3:d6:12:dc:10:
2a:95:01:8a:7a:29:ef:8e:6f:d5:85:f9:8b:e5:75:cb:fe:e6:
dd:4a:fb:97:d1:7b:58:c0:32:65:bd:d4:94:ae:83:d1:97:95:
95:5c:03:eb:7a:39:04:7d:39:ae:29:a0:be:9c:9e:75:2e:8f:
21:91:3b:87:74:bc:98:53:02:3e:1e:89:b6:30:e3:5f:7e:f3:
a1:24:c4:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:09 2024 by rpki-client on console-ams.rpki-client.org