Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/Xfj8CSR9ikYA_2KvdRIRR_S59NE.roa
File: Xfj8CSR9ikYA_2KvdRIRR_S59NE.roa (raw, json)
Hash identifier: kSUdpLn26Pp2IjjfAi9g5EqFP1EEDdiXtP6kBuqRZ6Y=
Subject key identifier: 5D:F8:FC:09:24:7D:8A:46:00:FF:62:AF:75:12:11:47:F4:B9:F4:D1
Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4
Certificate serial: 04CEFF93
Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/Xfj8CSR9ikYA_2KvdRIRR_S59NE.roa
Signing time: Sat 01 Jan 2022 15:05:54 +0000
ROA not before: Sat 01 Jan 2022 15:05:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208428
IP address blocks: 185.26.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80674707 (0x4ceff93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4
Validity
Not Before: Jan 1 15:05:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5df8fc09247d8a4600ff62af75121147f4b9f4d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8f:6d:02:8b:27:16:b3:72:f3:1c:87:75:25:
e1:da:a9:76:e6:1d:38:27:88:e6:17:29:ff:1f:74:
92:2b:4f:57:1c:26:42:78:05:a9:46:a0:6f:d2:4f:
2f:8e:8d:d3:ae:a6:23:33:62:27:6d:fb:d7:c7:8e:
d1:5f:56:16:39:53:fc:07:25:6d:20:3f:9b:1e:bc:
e4:2e:76:91:3a:fe:8a:e6:42:9b:43:67:3c:16:00:
56:b7:68:d2:f4:34:6c:32:5b:9a:bf:e8:9d:0a:ab:
be:95:71:80:ea:ee:5b:bd:77:9d:1d:da:a6:44:dc:
56:b7:3d:94:e6:9e:b5:9c:ef:97:ce:3d:53:df:3b:
7f:0b:c7:72:8d:d6:bb:27:71:b0:8d:5e:40:a5:45:
c5:e3:3e:1c:99:f3:da:6e:c7:3c:16:a8:10:b3:62:
42:6f:aa:3d:57:a7:02:91:35:40:68:b8:42:69:e7:
32:e4:95:5e:8b:b9:9d:4d:de:84:4c:5e:5f:b6:fa:
ed:30:8f:a3:df:a9:70:8f:7e:f3:ad:24:68:40:37:
ff:54:3e:fa:8c:46:8d:95:0f:c7:41:4b:06:db:4d:
b1:50:3a:c1:13:43:26:66:b3:71:1e:92:9e:f9:03:
51:6e:52:c8:0c:af:ad:db:53:3e:3d:b0:22:ba:e0:
b1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F8:FC:09:24:7D:8A:46:00:FF:62:AF:75:12:11:47:F4:B9:F4:D1
X509v3 Authority Key Identifier:
keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/Xfj8CSR9ikYA_2KvdRIRR_S59NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.25.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:f5:48:ef:e8:92:20:cc:1a:b9:cb:b7:26:bc:49:4f:42:c3:
77:c8:1a:fc:a4:6a:2f:09:d1:ea:c2:cd:68:10:9a:a1:f6:90:
0c:80:e5:55:37:42:06:60:c9:58:f2:49:e8:43:5a:69:af:9e:
07:5b:8f:3c:4f:81:f2:b9:a4:f4:77:b8:fe:3b:45:ec:05:97:
96:0f:0e:2c:09:60:65:c4:6b:82:88:2c:ed:ce:a8:4d:ba:1c:
8e:0f:fc:8a:16:fc:ca:3f:62:cb:80:59:3d:c1:9b:c6:8b:aa:
51:a5:41:1c:a9:54:8f:63:b4:b1:0b:57:54:d6:eb:44:a3:86:
50:66:f4:ee:3e:d0:11:86:c8:3a:42:18:14:f2:fa:1a:97:a9:
0e:e1:e4:2a:66:f7:d7:da:7b:3e:c7:50:ab:2b:46:d1:f0:40:
01:d4:25:21:89:42:7a:3c:e4:ee:2e:bf:e6:8e:59:5c:d4:4c:
04:05:29:b4:bb:f0:3f:77:c7:99:85:54:0f:63:a2:ef:2d:b8:
c7:96:48:7f:1e:0c:c5:3d:45:92:e9:bf:69:3e:90:e9:06:68:
34:74:5b:0a:eb:8f:8a:33:a0:fa:36:47:d9:d6:ae:d6:3d:09:
1c:23:1b:c3:6d:ec:3b:99:d2:7f:d9:80:69:6d:76:f2:c5:ab:
a1:66:3e:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:44 2024 by rpki-client on console-fra.rpki-client.org