Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/wVcob4Eupj12z_LLK4oRNqOlaok.roa
File: wVcob4Eupj12z_LLK4oRNqOlaok.roa (raw, json)
Hash identifier: pvwvc9BBW4PmQswOR9tyrtURP3dEtWJeg3+8dGBYzz8=
Subject key identifier: C1:57:28:6F:81:2E:A6:3D:76:CF:F2:CB:2B:8A:11:36:A3:A5:6A:89
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 0D36EA13
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/wVcob4Eupj12z_LLK4oRNqOlaok.roa
Signing time: Sat 01 Jan 2022 05:53:53 +0000
ROA not before: Sat 01 Jan 2022 05:53:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203988
IP address blocks: 185.65.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221702675 (0xd36ea13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Jan 1 05:53:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c157286f812ea63d76cff2cb2b8a1136a3a56a89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:85:52:91:17:53:30:ce:2e:6f:76:79:10:0a:
3a:1a:2c:5b:46:b6:78:88:e2:e9:97:24:37:c8:17:
8c:5a:26:6f:77:8c:9a:7b:3f:b4:fa:a4:fd:54:e9:
2b:23:ed:7a:77:be:78:53:78:cf:d9:23:07:0d:bb:
c2:18:f8:9e:a2:1c:5b:1a:47:91:f3:eb:64:70:e3:
30:a4:a9:e1:aa:16:09:e9:ab:4b:1e:78:58:c3:ce:
dc:5c:51:c8:96:00:c0:9e:b9:4a:3c:b1:0d:60:71:
e8:2c:5b:7a:7b:16:20:e9:37:18:1a:4d:f5:0f:55:
fc:b5:20:23:ae:b3:cc:c8:9f:19:16:36:f4:9f:06:
2e:54:91:45:a4:62:d6:27:32:b3:93:9a:72:28:82:
fa:da:99:b6:29:00:f2:8f:11:fe:c1:d5:d5:93:cd:
3e:a6:67:f2:be:e4:d8:cd:03:57:6a:f8:3d:1c:ca:
fb:eb:b0:9f:2b:e5:c3:ac:a2:c5:cb:29:b9:bb:72:
6e:77:c2:b3:e0:f6:f4:eb:a5:08:2d:c0:3f:6b:59:
43:89:9b:1a:de:c9:11:47:5f:84:9d:eb:e8:4d:f6:
d4:9c:c1:f0:20:8e:ab:8a:ab:57:b0:b2:31:9e:b8:
b8:f2:29:e3:5e:41:d0:a3:3a:05:b1:8b:10:20:b9:
70:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:57:28:6F:81:2E:A6:3D:76:CF:F2:CB:2B:8A:11:36:A3:A5:6A:89
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/wVcob4Eupj12z_LLK4oRNqOlaok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.136.0/24
Signature Algorithm: sha256WithRSAEncryption
80:65:18:5c:6e:b7:c0:3c:03:4f:99:1c:d5:f4:a9:d7:16:1e:
b7:2a:4b:10:15:c0:3e:72:71:95:21:bf:ba:42:24:e1:24:68:
e4:39:87:a4:05:b1:dc:3a:0c:5f:be:1a:fc:cf:21:fd:0c:84:
06:94:9c:fe:e9:b3:a2:95:10:28:c6:64:26:6b:b5:ed:7f:27:
71:26:a2:24:78:28:70:cd:9f:9f:d5:b3:34:a8:a5:fb:59:7c:
55:ad:fc:24:be:11:c7:2a:0a:c8:96:ef:d8:78:89:ca:f5:cc:
4c:f7:0f:89:3f:c3:dd:ab:39:01:72:04:52:f6:03:ee:c0:18:
fa:c8:5f:fc:a8:0e:c7:9c:61:24:41:e8:a3:98:77:41:53:ed:
ac:0a:d5:90:e7:26:c2:32:ad:bf:e1:1c:d1:fb:48:f3:04:92:
29:03:e9:79:62:b4:0b:27:5b:cf:ef:4f:ed:7c:a0:e2:ae:29:
64:8c:e1:1a:9f:a7:72:29:66:2a:fb:ca:cc:bb:39:31:49:b5:
d1:64:9b:6a:78:9a:6a:6e:1b:17:12:bb:20:23:de:18:3b:d8:
d4:7f:83:bb:e7:37:e2:f6:66:cf:31:2c:e1:f7:13:6b:b6:40:
c4:b4:70:34:90:5c:44:b1:bc:80:26:91:5d:3a:3c:03:24:51:
87:0c:b5:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:12 2024 by rpki-client on console-fra.rpki-client.org