Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/ab586e-4b2a-47f6-ace8-d292ab7ce9fa/1/dWZ9Q1vGzpHAYs4pBlCiyJz4Om0.roa
File: dWZ9Q1vGzpHAYs4pBlCiyJz4Om0.roa (raw, json)
Hash identifier: k/AMCz6ktav3kB/nk/OSAyaw7EKLBSADFKfHBXo20lc=
Subject key identifier: 75:66:7D:43:5B:C6:CE:91:C0:62:CE:29:06:50:A2:C8:9C:F8:3A:6D
Certificate issuer: /CN=0350df78fc785813724ec66648df9b494f9b8da7
Certificate serial: 0174AC66
Authority key identifier: 03:50:DF:78:FC:78:58:13:72:4E:C6:66:48:DF:9B:49:4F:9B:8D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1DfePx4WBNyTsZmSN-bSU-bjac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/ab586e-4b2a-47f6-ace8-d292ab7ce9fa/1/dWZ9Q1vGzpHAYs4pBlCiyJz4Om0.roa
Signing time: Sat 01 Jan 2022 07:53:44 +0000
ROA not before: Sat 01 Jan 2022 07:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61094
IP address blocks: 185.92.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24423526 (0x174ac66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0350df78fc785813724ec66648df9b494f9b8da7
Validity
Not Before: Jan 1 07:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75667d435bc6ce91c062ce290650a2c89cf83a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c6:86:b6:8e:13:4c:25:bb:6c:2c:1d:00:bb:
ff:36:94:0c:d7:d2:d2:77:86:4f:a0:26:cc:0a:47:
07:89:73:a7:a1:f5:91:75:32:41:10:fc:1e:74:b4:
74:be:53:ad:0a:93:dd:dd:17:c9:2d:ae:a0:a8:37:
35:3f:8c:95:13:be:9e:66:0c:76:62:2d:1d:74:70:
08:25:5a:3f:a2:31:68:cc:30:ae:e7:32:6c:58:b3:
be:b5:46:76:26:31:25:c4:13:21:be:9e:5f:52:fd:
5c:e7:11:3e:da:6b:32:12:18:88:b7:4b:16:71:3a:
49:f5:a0:b4:6e:b7:f8:0c:bb:02:51:39:32:22:58:
5e:c9:03:af:c7:14:30:d9:12:39:59:04:15:93:09:
f3:ef:31:d2:1f:f1:08:fc:b1:13:a6:69:65:f6:35:
13:f4:d8:de:78:18:05:b2:0b:96:3d:58:cc:83:a2:
50:6b:e2:cd:f3:bd:a7:87:06:75:87:33:df:bb:6e:
e5:5d:e5:db:56:f6:1a:53:e2:94:2d:f6:3e:bc:e7:
42:20:78:a8:c2:da:1d:b4:bd:64:dc:19:92:63:ab:
89:f2:31:75:6f:77:c6:73:48:14:5d:a1:e4:53:9a:
8a:15:e9:f9:b2:0a:2a:16:7b:2a:2c:74:6c:da:12:
98:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:66:7D:43:5B:C6:CE:91:C0:62:CE:29:06:50:A2:C8:9C:F8:3A:6D
X509v3 Authority Key Identifier:
keyid:03:50:DF:78:FC:78:58:13:72:4E:C6:66:48:DF:9B:49:4F:9B:8D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1DfePx4WBNyTsZmSN-bSU-bjac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/ab586e-4b2a-47f6-ace8-d292ab7ce9fa/1/dWZ9Q1vGzpHAYs4pBlCiyJz4Om0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/ab586e-4b2a-47f6-ace8-d292ab7ce9fa/1/A1DfePx4WBNyTsZmSN-bSU-bjac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.124.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:0a:59:1c:fe:12:78:a7:29:7e:27:7e:68:44:ff:9a:68:24:
1b:f0:4c:61:d9:ef:30:33:27:6b:be:28:90:9d:dd:9b:49:10:
7b:37:b3:cd:da:b1:3d:a3:9a:c5:cf:03:4d:af:0a:72:c6:ca:
1a:84:4f:4d:85:7e:e6:dd:26:68:27:06:ec:07:e7:d5:a7:3e:
fe:56:0e:ac:64:d1:af:73:cb:87:dd:b9:28:ad:c2:45:49:1c:
dc:4f:33:71:55:1c:cd:c6:d6:04:10:38:ba:8a:9c:34:38:87:
8d:ef:43:f7:db:a7:3c:e1:2a:a1:cd:6f:b3:31:57:ca:eb:4f:
de:43:52:32:ea:1c:9c:4f:15:5e:8c:bc:0a:b6:49:8e:1e:18:
5f:e3:26:15:39:4a:55:52:5b:bf:ed:1d:d5:45:e1:c9:f0:94:
98:e8:de:ca:9e:5b:f8:53:5b:f1:09:ab:7e:2c:b1:e1:0f:09:
09:4d:70:99:98:2d:c3:d4:63:b7:f7:90:b9:91:e6:b2:3c:f8:
95:5c:21:ee:e9:b1:d9:c9:70:4d:da:1e:1c:9b:33:e2:b3:90:
f8:c7:43:10:7e:09:dd:ae:e4:38:f6:57:b4:1a:92:1b:40:50:
37:3f:a7:2b:15:ab:5c:57:53:0b:a1:60:04:b9:f6:d2:a0:a3:
0f:5a:5a:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:50 2024 by rpki-client on console-ams.rpki-client.org