Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/3aJ7asZUYgVDAM9nsQ0Iz2My4lU.roa
File: 3aJ7asZUYgVDAM9nsQ0Iz2My4lU.roa (raw, json)
Hash identifier: 5X9Ibp2mWdvMwa7OunTztQFR97R0I01f8GxWLWBWSXA=
Subject key identifier: DD:A2:7B:6A:C6:54:62:05:43:00:CF:67:B1:0D:08:CF:63:32:E2:55
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 0184EE88E7A50AF9A0ED41CA95A79C3CF804
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/3aJ7asZUYgVDAM9nsQ0Iz2My4lU.roa
Signing time: Wed 07 Dec 2022 21:41:00 +0000
ROA not before: Wed 07 Dec 2022 21:41:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48412
IP address blocks: 185.126.156.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ee:88:e7:a5:0a:f9:a0:ed:41:ca:95:a7:9c:3c:f8:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Dec 7 21:41:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dda27b6ac65462054300cf67b10d08cf6332e255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:19:4f:42:56:76:d7:32:e5:c8:d3:f7:9b:97:
b0:10:48:43:eb:34:f0:06:7e:22:5a:71:09:b2:61:
01:b8:1b:fa:72:af:61:a0:6f:89:9a:29:fd:08:db:
80:ec:4f:a8:93:d4:c2:db:17:5b:3a:49:54:63:a7:
df:c2:22:73:56:2e:4a:68:58:0b:7f:23:13:d0:01:
6f:67:67:91:46:cf:05:40:e3:c9:db:47:4c:2c:88:
a8:0e:c2:0b:46:c9:c1:39:6c:d3:b3:b3:98:a1:e7:
12:9e:e7:6d:60:4b:8a:07:c3:50:49:0c:5d:b0:30:
f9:f3:35:3e:91:a4:03:1e:55:e2:a9:94:02:27:25:
91:bb:c4:e9:0b:d3:b7:fc:a0:bc:6b:d4:dc:98:64:
af:d0:9e:12:11:52:c6:fb:a7:3c:ed:7d:44:d6:dd:
1c:10:e7:bf:91:96:a3:ab:2d:94:83:c0:1b:8c:1e:
88:94:89:a2:f4:44:96:16:bf:4b:ce:96:fb:89:b3:
f7:2a:23:0f:6d:53:65:00:6d:1c:8f:1a:d3:6b:cd:
fd:fb:ba:92:d8:67:86:f6:ec:93:c0:3c:af:60:9c:
62:ae:b1:e9:79:8d:1f:10:32:e9:2a:56:10:55:db:
ab:26:e7:28:7a:bd:37:d0:db:d6:49:37:8d:22:a4:
2f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A2:7B:6A:C6:54:62:05:43:00:CF:67:B1:0D:08:CF:63:32:E2:55
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/3aJ7asZUYgVDAM9nsQ0Iz2My4lU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.156.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:0a:31:e2:cf:0c:a8:01:b3:08:51:4f:d7:e5:80:f1:59:37:
65:58:d0:da:14:cb:42:55:ee:65:5d:1a:85:7d:f3:f8:7e:f3:
bd:4d:29:f6:2b:87:4f:50:d4:31:db:c5:6c:64:1b:b2:3b:ae:
4c:c8:ad:a4:0b:88:84:4b:cc:72:e1:18:f6:62:a3:85:30:27:
e5:ea:60:1c:0e:da:ac:13:c0:51:7d:50:0a:5b:96:9e:7a:4d:
7a:29:c3:4e:af:33:ad:96:cd:12:14:07:a2:c2:e7:5b:f1:a8:
cd:e5:33:a6:b6:7e:59:31:79:f7:af:76:95:49:87:c0:cf:d7:
91:08:d4:fd:30:43:28:06:28:46:87:29:64:ce:12:3f:2f:55:
ff:92:65:52:eb:7e:5b:2a:4b:a4:38:63:65:29:9e:43:f3:23:
fb:bd:cb:78:e0:04:da:d2:c8:4b:f1:f6:a1:a1:ca:55:8e:c3:
be:52:60:43:ae:e6:e5:6b:37:c1:21:dc:92:97:73:35:0a:b4:
c7:dc:61:47:e0:b3:23:70:13:4e:2f:3a:bb:bc:43:60:18:f9:
08:a5:d7:a5:c6:15:a5:66:66:54:10:4e:7f:0a:f1:23:65:24:
da:47:2c:f2:7a:e5:78:fa:f2:cc:9f:0e:b2:27:a5:e0:67:ff:
1b:f7:1a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:45 2024 by rpki-client on console-fra.rpki-client.org