Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/75044b-7a06-4150-a9ef-5d985369cce8/1/u3Bzqao84XDMxwXRydiuMmSYMhk.roa
File: u3Bzqao84XDMxwXRydiuMmSYMhk.roa (raw, json)
Hash identifier: dNVBmqZPCJ6bP4DBEl4nnZhtBvjSWaJsAPfoG4+1Oc4=
Subject key identifier: BB:70:73:A9:AA:3C:E1:70:CC:C7:05:D1:C9:D8:AE:32:64:98:32:19
Certificate issuer: /CN=2eebf8a5b02016e4394392819738644d6ca25642
Certificate serial: 017F2B
Authority key identifier: 2E:EB:F8:A5:B0:20:16:E4:39:43:92:81:97:38:64:4D:6C:A2:56:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Luv4pbAgFuQ5Q5KBlzhkTWyiVkI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/75044b-7a06-4150-a9ef-5d985369cce8/1/u3Bzqao84XDMxwXRydiuMmSYMhk.roa
Signing time: Tue 12 Apr 2022 11:34:56 +0000
ROA not before: Tue 12 Apr 2022 11:34:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210355
IP address blocks: 185.1.229.0/24 maxlen: 24
2001:7f8:121::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98091 (0x17f2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2eebf8a5b02016e4394392819738644d6ca25642
Validity
Not Before: Apr 12 11:34:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb7073a9aa3ce170ccc705d1c9d8ae3264983219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1b:1d:83:33:4a:ee:c5:f3:89:bc:66:f2:f6:
fc:32:36:6c:1d:66:13:54:86:ec:51:6a:e4:c9:47:
e4:0b:19:9a:7a:49:6f:d6:4e:d2:6c:91:de:89:11:
ed:fe:f3:09:d9:55:0c:f8:53:1a:29:a2:f3:6b:7c:
01:49:35:82:f4:da:60:5e:d6:05:68:23:e5:ad:4b:
c2:73:72:ba:0d:97:5f:08:a4:de:ab:ed:30:f9:e1:
60:8b:67:91:3a:b9:61:98:72:4e:a8:6d:f0:43:5e:
64:e3:9c:97:6f:47:85:de:7e:22:66:d6:34:ff:89:
ef:08:9b:f2:06:11:8e:ae:f9:eb:c7:7c:08:9c:18:
a2:0e:75:0e:3d:4f:1a:14:45:93:c0:85:8f:74:64:
f9:3c:fd:0f:88:bf:89:29:8a:3b:25:c1:25:d8:6a:
07:60:2d:77:6c:41:d6:a8:a0:1e:8a:12:fb:1b:9c:
96:2a:18:1d:d5:ec:09:dd:83:dc:3f:c2:dd:c6:b0:
ca:11:23:72:9b:51:5f:fb:34:c9:9a:f1:c3:68:d7:
0e:62:c2:e2:fc:86:4a:bb:e8:91:2c:c0:bf:fa:e9:
1e:07:f9:8e:a3:6f:04:ff:4d:58:6f:ca:03:f9:9c:
9b:58:a9:ec:e3:19:ce:25:ab:c5:9f:38:c0:d6:0d:
dc:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:70:73:A9:AA:3C:E1:70:CC:C7:05:D1:C9:D8:AE:32:64:98:32:19
X509v3 Authority Key Identifier:
keyid:2E:EB:F8:A5:B0:20:16:E4:39:43:92:81:97:38:64:4D:6C:A2:56:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Luv4pbAgFuQ5Q5KBlzhkTWyiVkI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/75044b-7a06-4150-a9ef-5d985369cce8/1/u3Bzqao84XDMxwXRydiuMmSYMhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/75044b-7a06-4150-a9ef-5d985369cce8/1/Luv4pbAgFuQ5Q5KBlzhkTWyiVkI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.229.0/24
IPv6:
2001:7f8:121::/48
Signature Algorithm: sha256WithRSAEncryption
50:49:4e:2d:da:f1:2e:25:6b:b3:16:70:68:51:2e:ad:aa:db:
3d:ba:5a:1b:a9:48:24:6c:23:a5:fe:b3:86:01:83:1a:7c:18:
96:c0:18:38:ae:68:bd:a6:49:b9:1c:16:87:76:ed:1e:be:e4:
85:8b:33:c5:a8:65:ad:1e:82:ae:09:aa:5f:ef:61:cd:38:58:
b8:e5:57:cf:5a:01:a2:75:dc:25:ef:1d:b4:54:82:97:38:24:
b5:fe:a2:9e:a3:07:fb:49:af:df:0c:b6:bf:f3:db:60:f9:2a:
75:14:11:2a:99:4d:03:73:8a:93:5f:63:b3:ca:31:17:bf:90:
01:df:e7:a9:1d:89:27:74:6b:cf:c7:2a:05:08:db:e2:ca:a5:
c3:e4:de:17:31:7e:0f:ce:fc:09:82:35:26:bc:16:55:b0:6b:
01:73:45:1b:d2:85:1f:21:5b:d4:2e:8a:e7:f2:6e:23:87:ff:
8a:71:07:3d:c4:df:c9:84:c8:da:87:6a:74:18:bb:95:38:2f:
e5:3a:52:50:e6:4b:a9:2d:87:2d:65:5c:61:ae:b1:0b:c1:0e:
c3:a9:74:a2:76:32:ef:7c:98:ce:78:bd:00:53:ee:59:6a:ac:
f5:50:56:f5:84:0a:e0:9b:45:2c:04:0a:12:03:76:0c:b4:7e:
34:db:c9:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:05 2024 by rpki-client on console-ams.rpki-client.org