Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/fy9pMOtZdaw4fkRVabzrK1gQxfQ.roa
File: fy9pMOtZdaw4fkRVabzrK1gQxfQ.roa (raw, json)
Hash identifier: 5as04HL7RhpDzrQzbnvbytwTRJ7IglMZeevEb6H1820=
Subject key identifier: 7F:2F:69:30:EB:59:75:AC:38:7E:44:55:69:BC:EB:2B:58:10:C5:F4
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 092D5395
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/fy9pMOtZdaw4fkRVabzrK1gQxfQ.roa
Signing time: Sat 01 Jan 2022 05:55:27 +0000
ROA not before: Sat 01 Jan 2022 05:55:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20764
IP address blocks: 185.121.71.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153965461 (0x92d5395)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 05:55:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f2f6930eb5975ac387e445569bceb2b5810c5f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4d:01:fa:21:96:dd:07:5a:e2:f0:f4:d4:8e:
32:0c:1e:29:7c:8f:20:2d:f1:f3:d4:e7:b8:5a:e4:
a6:b7:b7:57:c2:6c:b2:66:47:cc:52:44:82:4e:01:
bf:8f:b8:69:ba:e1:fe:1f:b0:1f:83:0b:6e:0a:25:
04:0d:6b:3c:48:01:0b:5e:50:15:03:77:f2:f7:24:
76:a2:cb:4f:15:72:fc:cf:8b:d5:43:44:42:49:2d:
22:e7:fa:11:ae:30:4f:11:27:72:04:3a:19:f7:cd:
02:89:d6:2b:3c:d9:19:7c:a0:5c:e0:4c:c0:f7:ff:
0e:f9:cc:7f:77:8f:01:39:59:fc:bd:66:a7:03:fa:
0c:28:03:e5:ea:23:71:a7:f0:13:81:f8:be:b3:7b:
5c:16:ed:3a:21:e1:9d:57:c6:5f:8d:fb:86:3e:fa:
b6:1f:45:c8:84:18:ea:f3:c6:d3:df:0e:9a:46:28:
f1:5a:6c:fa:30:1e:c3:7d:43:5d:88:bb:4f:88:44:
d8:b5:98:4e:db:e9:e7:a4:48:e4:0e:de:f9:28:f4:
b4:88:75:e5:bc:47:20:b7:b1:1f:2d:fd:76:1c:d9:
e3:5b:e9:ad:ee:a1:3e:63:c3:6d:90:fc:69:59:34:
f7:75:cc:43:68:46:cd:d7:81:98:a6:c5:3c:76:0f:
2c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2F:69:30:EB:59:75:AC:38:7E:44:55:69:BC:EB:2B:58:10:C5:F4
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/fy9pMOtZdaw4fkRVabzrK1gQxfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.71.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ba:3f:90:8c:74:4a:6e:6e:c1:f2:70:fb:fe:91:60:88:4c:
4d:fb:17:0b:dc:3a:1d:b9:15:5f:90:3f:03:cd:6f:a4:de:50:
63:4b:c1:e2:5d:70:71:f5:7c:85:f9:1e:0a:a6:da:64:49:68:
5d:e6:a4:33:06:90:05:f5:d3:67:44:06:83:4f:16:64:1c:64:
ac:e0:bd:5d:8e:35:88:f2:f0:f6:ba:a7:90:be:5c:a6:a3:db:
ac:b4:ca:e7:4f:ad:5e:71:32:0a:c2:c2:68:b1:e3:ad:40:81:
2a:5d:a9:c7:52:36:62:c8:7d:b2:a9:26:2f:75:b5:c0:26:62:
40:9f:81:51:ac:e7:b1:b6:eb:22:79:9b:34:4f:46:70:df:74:
6e:22:9b:61:ca:8c:9a:b6:83:da:d0:5c:18:57:bf:eb:e5:93:
9a:4f:eb:12:60:9a:b8:65:ef:39:06:5f:da:24:bc:4f:76:d6:
46:9c:2f:d5:47:b6:e8:83:21:a7:3a:16:b0:60:19:95:23:27:
41:8d:49:77:ba:d8:cc:06:64:e1:03:6e:61:4c:30:b6:d4:53:
51:1e:16:b7:54:9d:5f:16:15:d9:36:a4:d7:be:27:9c:3e:b2:
99:44:b9:9a:b3:cc:ee:83:26:e3:32:67:fa:bf:cf:67:05:ed:
f1:04:40:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org