Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/1-Yo2BKRJGRDoFS0eHGiHHvT41TI.roa
File: 1-Yo2BKRJGRDoFS0eHGiHHvT41TI.roa (raw, json)
Hash identifier: C9BLyijXABlo3FJNdg+YU+8Grw2pWyQmOaCWjKtTGus=
Subject key identifier: F9:8A:36:04:A4:49:19:10:E8:15:2D:1E:1C:68:87:1E:F4:F8:D5:32
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0918C345
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/1-Yo2BKRJGRDoFS0eHGiHHvT41TI.roa
Signing time: Sat 01 Jan 2022 16:00:38 +0000
ROA not before: Sat 01 Jan 2022 16:00:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202562
IP address blocks: 185.186.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152617797 (0x918c345)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f98a3604a4491910e8152d1e1c68871ef4f8d532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ec:ae:94:5b:46:77:d9:5c:fd:99:21:5b:af:
42:be:f2:6e:be:5a:af:f1:a7:dc:26:34:36:88:71:
00:e6:24:67:5f:55:a8:66:8d:8e:1a:43:45:cc:c7:
76:72:12:1d:b1:82:17:04:80:73:43:2b:02:9f:b0:
38:f3:2c:a4:fd:cf:8c:e4:54:7e:11:7d:37:bc:22:
2b:e2:72:ce:d4:4d:a1:48:6b:29:18:68:64:17:2b:
45:0e:b5:b8:1d:44:a2:ca:1b:5f:bb:ce:ad:e9:75:
5f:db:08:dd:15:91:a8:10:dc:30:0a:1d:36:11:d8:
20:c0:e8:c6:a6:82:7c:1a:ec:bb:5a:f0:64:a4:c0:
1b:66:74:49:a3:a7:27:32:c2:e1:97:a9:e4:28:69:
db:30:ea:55:db:2f:84:0d:27:99:23:30:53:94:15:
e9:23:c3:f9:1b:1f:64:a4:20:63:8b:fa:d8:ec:16:
4c:1f:71:db:d4:1f:16:06:d3:44:96:12:9c:21:9a:
cd:3c:5c:89:8a:06:52:03:ff:a0:38:89:ac:7a:6f:
c4:02:fa:74:58:2a:52:16:8b:a0:9d:47:13:0a:78:
90:96:b2:47:73:33:a5:ea:06:bb:cf:3a:af:1b:b9:
0f:80:ce:ba:b5:6d:1c:33:35:25:f3:2d:32:0f:78:
20:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:8A:36:04:A4:49:19:10:E8:15:2D:1E:1C:68:87:1E:F4:F8:D5:32
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/1-Yo2BKRJGRDoFS0eHGiHHvT41TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.64.0/24
Signature Algorithm: sha256WithRSAEncryption
43:54:4a:e0:3c:07:83:60:5b:a4:f2:9e:d5:5f:fe:d1:e3:04:
84:aa:b4:dd:e2:bc:99:4d:5f:de:04:fe:84:e6:e9:7e:3c:58:
2e:23:82:0e:64:db:fc:8e:30:b6:97:0e:7b:27:78:f5:7e:cb:
54:19:f5:2c:22:8e:c0:45:9b:76:e1:a9:be:9a:3b:ac:af:43:
b0:a0:17:db:df:4d:48:47:2b:f4:95:9b:bc:1d:f6:5e:71:8e:
36:00:85:b8:f2:f6:bb:53:a1:bb:89:b9:e2:01:02:62:14:26:
b7:11:b4:0f:6f:e2:40:3f:8a:9f:c6:22:de:f7:c8:f6:65:bb:
80:cd:ed:a7:ac:ae:f3:62:0d:d0:46:e3:09:85:78:b4:ef:a3:
37:f9:3d:fb:5e:4e:2a:6b:b6:fb:c1:23:81:03:88:46:49:2e:
93:43:f4:9a:34:ce:1d:ed:b0:bc:3a:e3:d3:9a:63:c6:05:e4:
6c:8a:98:38:e8:e6:f7:30:16:59:e2:37:e0:fc:ce:f0:45:2a:
2a:68:cb:59:f5:08:b1:45:9f:56:6e:38:30:0b:e0:97:3e:45:
1f:bb:d6:fa:df:2e:81:cc:9b:e3:31:83:84:3c:bd:f1:5b:f1:
ee:41:57:c9:6a:55:97:1b:d6:57:fb:38:af:eb:4d:1f:9d:b9:
98:e0:05:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:38 2023 by rpki-client on console-fra.rpki-client.org