Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/2QeUnWRzgpc_BTknMJL0H5Rkkcs.roa
File: 2QeUnWRzgpc_BTknMJL0H5Rkkcs.roa (raw, json)
Hash identifier: zzImPCYE2bAlaa4LLplH2dD2Q6LD0qZSBCGhAgoIiVw=
Subject key identifier: D9:07:94:9D:64:73:82:97:3F:05:39:27:30:92:F4:1F:94:64:91:CB
Certificate issuer: /CN=dd5f2e7cc2c687f58c0d1f6132bb2dcfdf38cb64
Certificate serial: 35BBFA51
Authority key identifier: DD:5F:2E:7C:C2:C6:87:F5:8C:0D:1F:61:32:BB:2D:CF:DF:38:CB:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3V8ufMLGh_WMDR9hMrstz984y2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/2QeUnWRzgpc_BTknMJL0H5Rkkcs.roa
Signing time: Sat 01 Jan 2022 02:55:26 +0000
ROA not before: Sat 01 Jan 2022 02:55:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43824
IP address blocks: 185.204.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 901511761 (0x35bbfa51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5f2e7cc2c687f58c0d1f6132bb2dcfdf38cb64
Validity
Not Before: Jan 1 02:55:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d907949d647382973f0539273092f41f946491cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0c:25:71:8e:39:19:95:bf:bd:55:b6:36:c7:
f6:0f:f2:4f:87:55:4f:30:c8:5a:88:96:01:1b:dc:
3e:d2:d5:4b:b2:d1:2b:28:68:5b:10:de:53:3e:35:
1d:42:2f:12:27:7c:25:f3:8b:a8:1b:45:56:cd:8e:
7d:0d:e0:59:74:3c:6e:b7:f8:dc:de:f1:0c:4d:ea:
59:00:13:69:65:75:4c:eb:da:71:0d:c2:03:0a:45:
60:dd:62:4c:2f:a9:20:79:28:89:f5:ed:8d:05:35:
5c:9e:6e:70:fe:4c:75:c6:ac:41:44:72:7e:ee:6a:
6b:92:2d:f8:ec:aa:c5:f9:cb:87:32:c2:aa:b2:23:
66:b1:7f:c3:7c:24:f0:69:05:4f:b8:b8:5f:b8:0e:
e7:5b:72:fd:3c:62:bc:69:56:2d:38:45:8b:42:b4:
a8:d2:69:42:98:72:4b:4f:81:3f:0e:51:a8:5b:bc:
b5:63:d5:8e:94:5c:af:a0:e6:05:99:9a:70:79:b8:
a3:27:37:1a:4f:72:56:b3:a3:41:36:a8:ec:9f:6c:
66:dd:3c:5e:d7:95:64:7d:be:25:52:f5:e1:9e:cf:
e3:f5:ed:5f:91:60:e6:73:b5:d6:af:2c:af:34:d0:
b7:7f:93:75:90:6e:87:2e:79:e0:fc:67:50:a5:66:
d7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:07:94:9D:64:73:82:97:3F:05:39:27:30:92:F4:1F:94:64:91:CB
X509v3 Authority Key Identifier:
keyid:DD:5F:2E:7C:C2:C6:87:F5:8C:0D:1F:61:32:BB:2D:CF:DF:38:CB:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3V8ufMLGh_WMDR9hMrstz984y2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/2QeUnWRzgpc_BTknMJL0H5Rkkcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/3V8ufMLGh_WMDR9hMrstz984y2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.51.0/24
Signature Algorithm: sha256WithRSAEncryption
31:07:4a:67:c8:f6:d7:97:43:b0:04:e9:d5:15:e4:e6:1a:30:
a3:eb:2c:1c:4f:0b:77:5d:6e:92:19:2b:7d:02:d2:c7:f2:47:
7f:78:e5:68:85:21:46:f1:8d:3c:d1:6a:1f:e4:18:22:d8:f5:
54:66:bb:71:ca:97:f4:13:2b:96:b0:e1:2f:2e:6f:0c:6b:54:
5a:0e:46:9f:f2:39:43:0a:18:aa:43:0a:cf:10:63:73:4f:78:
e1:6f:11:4e:bf:74:dd:80:9c:73:ed:f5:eb:60:bb:17:bf:85:
61:e1:4b:80:1c:a5:b3:56:6c:16:d6:b4:52:60:94:9c:f2:a4:
be:10:ac:1c:7f:c8:d5:25:c2:ab:0a:fc:8a:c9:bf:6c:e1:2f:
95:ce:6e:e8:9d:42:3e:26:08:b0:01:92:f9:cd:b8:b0:67:5c:
3c:8e:00:55:f9:43:50:63:cc:ff:11:90:06:a2:ea:25:9d:06:
1a:8f:a7:bd:e8:f1:9f:d1:98:e5:0a:96:cc:f9:92:c7:46:59:
4c:64:3e:f8:eb:f2:e8:4a:db:d6:38:fd:d1:23:c0:08:ab:35:
5c:e7:0e:29:08:d2:d5:6d:63:75:2d:fb:11:ab:23:06:b9:19:
d2:40:b8:c2:dc:bb:4e:ea:5b:4c:54:29:bd:05:11:bd:55:19:
3f:6c:f6:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:42 2023 by rpki-client on console-ams.rpki-client.org