Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/0b8951-2699-44b3-9067-d9a40c4d3291/1/1QLSDdmdt9HPUAXv9k8r9Y95HII.roa
File: 1QLSDdmdt9HPUAXv9k8r9Y95HII.roa (raw, json)
Hash identifier: 2TlRYeXAnE3ewvechdte3DwsHHNd4PlvYjwxGka1+3M=
Subject key identifier: D5:02:D2:0D:D9:9D:B7:D1:CF:50:05:EF:F6:4F:2B:F5:8F:79:1C:82
Certificate issuer: /CN=cf89cb889f99212e8bf53d06e45d87abb9169506
Certificate serial: 03C33E05
Authority key identifier: CF:89:CB:88:9F:99:21:2E:8B:F5:3D:06:E4:5D:87:AB:B9:16:95:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z4nLiJ-ZIS6L9T0G5F2Hq7kWlQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/0b8951-2699-44b3-9067-d9a40c4d3291/1/1QLSDdmdt9HPUAXv9k8r9Y95HII.roa
Signing time: Sat 01 Jan 2022 08:58:07 +0000
ROA not before: Sat 01 Jan 2022 08:58:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56423
IP address blocks: 185.15.6.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63127045 (0x3c33e05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf89cb889f99212e8bf53d06e45d87abb9169506
Validity
Not Before: Jan 1 08:58:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d502d20dd99db7d1cf5005eff64f2bf58f791c82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:37:11:89:b0:a6:80:06:9c:56:a8:c5:f9:2e:
a2:79:9c:f0:47:ee:10:58:d2:58:ff:f7:16:c8:4a:
ff:c0:03:d7:a0:b2:3f:0c:20:6a:29:9c:20:dd:e7:
c6:a8:6f:8c:d8:43:6f:32:71:0f:36:f0:aa:e9:b1:
1d:3b:4f:ee:38:d1:d7:f3:31:26:ca:36:1a:8d:db:
84:00:17:aa:c4:a7:5b:90:99:ad:3c:4d:dc:84:b8:
6e:ed:34:dc:ca:ef:f6:a9:e1:42:aa:a6:bd:7c:2e:
65:24:08:93:67:da:15:fd:13:a7:bf:87:f6:4c:c5:
d7:0a:76:b1:80:52:c0:3f:af:72:64:34:73:ba:75:
23:39:fb:ca:e8:65:e7:2b:fb:f4:2e:6e:e6:a6:59:
11:ef:80:42:96:08:6b:a6:9a:74:b9:7c:fc:a1:e8:
76:1e:c7:36:21:eb:23:01:a8:c9:29:f1:d1:86:cd:
da:6d:d2:58:84:d9:4c:c6:23:8c:bc:a5:03:61:f5:
e3:35:ef:f1:14:7c:e1:a4:db:54:07:fc:20:f1:d4:
05:f6:1f:99:c8:49:45:84:b9:15:64:ef:ae:57:c9:
d9:fc:2d:8a:5d:39:77:e7:e9:10:4e:9c:ae:31:24:
46:78:ba:4e:36:7e:bf:e0:6b:90:74:11:f9:0c:48:
37:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:02:D2:0D:D9:9D:B7:D1:CF:50:05:EF:F6:4F:2B:F5:8F:79:1C:82
X509v3 Authority Key Identifier:
keyid:CF:89:CB:88:9F:99:21:2E:8B:F5:3D:06:E4:5D:87:AB:B9:16:95:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z4nLiJ-ZIS6L9T0G5F2Hq7kWlQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0b8951-2699-44b3-9067-d9a40c4d3291/1/1QLSDdmdt9HPUAXv9k8r9Y95HII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0b8951-2699-44b3-9067-d9a40c4d3291/1/z4nLiJ-ZIS6L9T0G5F2Hq7kWlQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.6.0/23
Signature Algorithm: sha256WithRSAEncryption
62:e8:9b:96:f2:30:a8:00:ec:2e:31:5b:37:8a:48:59:78:4f:
a7:48:20:ed:53:ca:f3:11:70:d1:62:96:fa:07:5c:83:b8:1a:
79:d5:33:5d:3c:75:97:bb:8d:4f:7a:4d:22:79:be:cd:3b:83:
5e:a1:b2:ab:05:b5:84:28:8c:83:c1:f4:2d:27:6a:8d:46:b4:
0b:01:48:cf:f2:75:38:99:44:8d:5b:8f:39:8a:9c:94:00:71:
bd:25:bf:a2:5e:24:01:8c:c0:71:58:3d:49:4a:09:a6:72:3e:
6b:64:30:60:8a:d5:1e:3f:61:74:88:ac:6e:5b:e1:93:c4:0c:
ee:ab:55:1f:05:aa:0e:3b:d0:c9:81:e3:d9:04:b6:05:3e:97:
5d:18:8c:ce:f2:20:c8:14:bf:f1:88:8a:98:0e:c2:1f:44:77:
86:e3:3e:28:94:00:28:03:39:05:78:29:e1:72:e0:af:49:6d:
ed:43:9e:66:9a:6b:49:fb:65:25:35:80:70:47:11:7e:ff:48:
86:c2:9a:26:5c:39:c3:57:d0:ca:8c:7f:23:7f:d1:2a:94:08:
8b:a6:69:15:bc:ae:41:ca:c1:f1:8d:f6:9b:ac:43:19:de:22:
0f:57:a5:87:2a:b8:ef:52:28:6c:4a:14:f4:bf:1a:be:37:24:
e6:95:b7:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:33 2024 by rpki-client on console-fra.rpki-client.org