Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/RV0R5MKrqaYXHES1YP8qXhapc7A.roa
File: RV0R5MKrqaYXHES1YP8qXhapc7A.roa (raw, json)
Hash identifier: fSbDufjMyBMDq/8mlGdQ8lmZYP4341enq4dbW4YGUmY=
Subject key identifier: 45:5D:11:E4:C2:AB:A9:A6:17:1C:44:B5:60:FF:2A:5E:16:A9:73:B0
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 09333D9B
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/RV0R5MKrqaYXHES1YP8qXhapc7A.roa
Signing time: Sat 01 Jan 2022 05:55:29 +0000
ROA not before: Sat 01 Jan 2022 05:55:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201878
IP address blocks: 185.121.70.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154353051 (0x9333d9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 05:55:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=455d11e4c2aba9a6171c44b560ff2a5e16a973b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:76:a6:fc:1b:64:ad:d8:54:d8:0a:f8:1a:15:
0d:97:a6:4e:82:41:95:22:52:a5:86:1a:1c:78:7a:
3c:0c:67:25:a3:28:23:6a:99:a9:5f:70:c3:ba:36:
92:0b:e8:e2:d9:68:bf:f2:8d:41:a1:42:d1:61:4b:
dc:1e:c5:f9:10:90:80:6e:2c:35:27:f6:e0:f5:9c:
6a:4a:5d:e0:0a:1a:4a:78:a1:07:89:18:fd:e0:c2:
3a:7e:6e:42:fe:5a:1f:c8:bc:28:50:55:07:24:81:
ac:0a:0e:ca:9f:9c:33:80:10:7b:56:09:33:35:f4:
94:b8:48:56:6b:fd:d2:88:76:2a:a3:4f:4c:43:93:
86:ee:00:bf:a1:22:e8:98:12:63:e8:cd:49:62:fe:
a6:82:7b:e3:26:6c:43:aa:b0:1b:73:a2:e6:1c:30:
0b:37:6d:a3:81:b4:91:03:d9:1c:3c:02:6d:39:17:
b4:1f:b2:a2:3d:ac:a4:1c:f6:10:c8:9f:92:ad:23:
ed:fb:03:7a:5b:20:bf:21:58:6c:a3:41:cb:74:45:
10:60:28:9c:a5:15:5e:cb:7c:07:f9:5e:e7:61:4b:
e3:65:8b:eb:74:95:a3:ef:1f:00:9a:98:51:f8:14:
08:dd:fd:15:c6:9e:5a:be:0f:b5:48:a6:48:5b:2d:
12:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5D:11:E4:C2:AB:A9:A6:17:1C:44:B5:60:FF:2A:5E:16:A9:73:B0
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/RV0R5MKrqaYXHES1YP8qXhapc7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.70.0/24
Signature Algorithm: sha256WithRSAEncryption
44:72:88:90:15:9f:3a:ba:28:5f:52:2f:cd:ce:d0:9f:36:94:
7e:e8:65:02:71:df:9b:07:70:0e:f3:b1:9a:25:8f:17:a2:00:
5a:13:7d:0b:b3:82:64:12:80:3e:4a:09:fe:ce:be:e5:30:3c:
ea:ad:f2:3e:3b:7c:e7:48:85:76:8d:bf:8e:d6:48:1d:fa:e9:
82:ed:3b:f2:d9:93:ed:d8:1c:88:02:d9:96:28:ac:5a:ed:d3:
3a:5e:a1:16:9e:e8:de:69:a3:05:ab:2a:51:66:13:76:55:8c:
04:c3:f1:27:07:ff:00:c1:36:43:11:f3:eb:54:f7:a3:32:8c:
33:e3:21:5b:b0:97:bf:88:38:ab:94:ba:e7:e9:5c:2c:91:76:
9d:3b:1c:1f:75:42:bb:70:0f:3c:9b:34:6a:e5:78:d5:f1:5b:
cb:fe:7f:00:e4:5b:ac:b0:42:28:56:66:e9:2b:83:2c:c7:27:
e3:6e:cc:da:43:ab:43:d7:17:08:15:79:10:fa:0f:ff:e2:1e:
52:b6:c5:03:46:29:94:65:41:a6:6e:6f:48:e7:f0:3a:59:e9:
e1:ef:40:a8:f3:c2:7f:c4:bc:59:c9:6e:12:60:14:4c:29:89:
5e:3d:bb:b7:98:cd:13:8f:24:eb:72:2a:c4:1e:6e:b2:4f:91:
29:19:b7:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org