Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/AQ_rik6Ifr7qnCMKnS1oGlvtfAM.roa
File: AQ_rik6Ifr7qnCMKnS1oGlvtfAM.roa (raw, json)
Hash identifier: X70NvVhX7SXC8yM5E2dDykkdd4bsawNAcYL2NuEELZM=
Subject key identifier: 01:0F:EB:8A:4E:88:7E:BE:EA:9C:23:0A:9D:2D:68:1A:5B:ED:7C:03
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0184B55BC73F8A71445810CDF29A57370F55
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/AQ_rik6Ifr7qnCMKnS1oGlvtfAM.roa
Signing time: Sat 26 Nov 2022 19:13:21 +0000
ROA not before: Sat 26 Nov 2022 19:13:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211617
IP address blocks: 185.186.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b5:5b:c7:3f:8a:71:44:58:10:cd:f2:9a:57:37:0f:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Nov 26 19:13:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=010feb8a4e887ebeea9c230a9d2d681a5bed7c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:06:c0:1b:d3:06:26:8f:d0:a5:a7:18:1b:59:
af:0f:0e:8e:f5:de:3d:4f:59:34:80:39:c8:99:53:
34:c9:74:0f:02:bf:b1:1a:41:2f:d2:f3:da:c7:fc:
55:95:8c:b3:ed:a0:53:ba:d1:26:48:09:5a:7b:8b:
26:3f:1f:0c:4d:cc:80:df:83:8c:72:3e:f8:15:ef:
68:63:54:60:33:c7:16:4c:f5:31:b8:cd:be:b5:56:
d0:1d:d9:a8:3c:19:e2:db:15:ff:2b:cc:85:8f:46:
08:11:68:88:97:5b:72:ca:41:be:47:c9:2d:99:2a:
ac:6e:bd:3a:c2:13:26:53:3a:44:40:d3:85:67:30:
3d:e1:b6:bc:be:5a:8e:80:76:ee:70:e2:0d:af:d3:
f6:55:be:af:22:a1:3c:c5:f3:2c:41:b7:98:3a:38:
65:73:58:d6:c4:a3:bf:50:99:2f:1f:80:a9:3f:a1:
e8:95:e1:e4:47:95:94:5a:b3:97:c5:1e:3d:d4:38:
91:e1:cf:81:4a:6c:e8:c2:9a:6c:9d:d0:b3:56:84:
01:18:5c:0b:20:09:d3:96:cc:83:02:f7:29:0e:28:
16:eb:32:a9:d0:db:c9:6e:96:05:05:7c:14:52:07:
52:56:99:dd:8a:36:74:a2:19:7c:f9:25:69:4b:ce:
8f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:0F:EB:8A:4E:88:7E:BE:EA:9C:23:0A:9D:2D:68:1A:5B:ED:7C:03
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/AQ_rik6Ifr7qnCMKnS1oGlvtfAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.67.0/24
Signature Algorithm: sha256WithRSAEncryption
34:73:34:63:d9:be:d8:78:b0:82:8f:12:d1:58:92:6b:7b:49:
8a:b4:6f:6e:c9:cc:b7:dc:c5:5f:9a:77:b9:32:e2:7d:90:76:
9b:47:3f:f5:a8:3c:2f:1d:76:91:7b:8d:38:ed:76:00:3a:74:
52:32:20:0b:58:0f:97:13:4d:9f:bb:a6:9c:5a:d9:b2:b6:54:
e6:e6:7e:90:0f:2d:02:06:3c:04:63:2b:37:96:a5:66:28:5e:
9d:bc:90:17:24:2f:6f:1c:17:d0:3f:02:5f:5b:56:3f:ff:32:
34:92:21:94:be:ca:ad:2e:c0:5e:e8:b5:73:4f:29:f2:34:64:
96:0d:d8:5f:27:2f:f8:ec:2c:62:d7:d0:86:0c:a6:b0:f4:b2:
f2:3f:a2:d6:80:57:c3:10:2d:a0:85:4f:d6:dd:a5:e3:d0:1f:
18:29:4a:df:71:a0:77:f6:e4:55:dc:a0:5c:26:12:96:6c:66:
4f:9a:09:08:be:4e:9a:e6:86:4c:50:e4:41:7d:5a:12:c4:46:
e5:94:c9:76:f7:03:6b:de:96:3a:8c:cb:35:01:de:72:3d:7e:
26:ed:12:4f:b1:54:ef:c0:4b:fa:ed:e0:1b:f4:ef:57:64:e0:
88:96:c8:21:80:2f:4d:8d:91:79:c6:e4:6e:c5:0c:fb:7c:7a:
9f:7f:ea:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:48 2024 by rpki-client on console-fra.rpki-client.org