Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/54mwZwV51sC4FkjUzQZ3ibg0MhU.roa
File: 54mwZwV51sC4FkjUzQZ3ibg0MhU.roa (raw, json)
Hash identifier: DwmxCmXQieba1zy4ovbCnBfnnZbUythg7IcMtWtOlpQ=
Subject key identifier: E7:89:B0:67:05:79:D6:C0:B8:16:48:D4:CD:06:77:89:B8:34:32:15
Certificate issuer: /CN=27b24fd66efe6dc5c3aab2e2e651a4e207fe62e7
Certificate serial: 0293E578
Authority key identifier: 27:B2:4F:D6:6E:FE:6D:C5:C3:AA:B2:E2:E6:51:A4:E2:07:FE:62:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/54mwZwV51sC4FkjUzQZ3ibg0MhU.roa
Signing time: Sun 10 Apr 2022 13:27:19 +0000
ROA not before: Sun 10 Apr 2022 13:27:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35753
IP address blocks: 185.51.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43246968 (0x293e578)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27b24fd66efe6dc5c3aab2e2e651a4e207fe62e7
Validity
Not Before: Apr 10 13:27:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e789b0670579d6c0b81648d4cd067789b8343215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:53:77:df:0c:47:3b:45:15:fb:ff:71:00:8b:
56:b7:68:75:fc:64:81:b6:58:96:eb:98:50:77:29:
34:5d:ec:b0:01:3d:97:b3:b7:e0:0c:5a:f9:39:55:
99:b0:ca:1f:79:26:a6:e1:1d:aa:dc:a5:77:bb:e4:
48:96:43:10:fa:ca:f1:19:a2:62:3d:dd:45:06:bd:
6d:40:23:34:92:54:fe:23:73:7b:80:ec:87:4f:d1:
5c:2e:ae:b9:01:8f:2a:0b:cf:55:5d:ef:d8:c9:c1:
04:cb:1b:e4:11:1f:8f:92:43:14:69:f4:40:fb:9f:
f4:aa:f9:13:db:79:28:a4:10:10:13:f9:3b:8a:ed:
ed:db:ae:54:83:a1:c0:ee:bd:f7:cf:74:2f:76:de:
35:06:3c:ef:3b:26:2d:ca:77:1f:14:cc:3c:bc:cb:
5a:4d:90:a3:3d:8b:39:e4:bc:f7:0e:fb:2f:76:75:
29:f7:3f:f3:99:13:ed:c9:a4:68:f4:80:d9:0b:39:
4f:13:07:47:d4:5a:d7:8c:d4:50:94:d6:17:55:11:
18:4a:51:c7:9b:9a:32:af:97:b0:ca:bb:49:9a:33:
51:f9:a7:cd:4c:bc:90:5a:54:78:3d:73:ae:c8:82:
3d:0a:3a:04:6c:e5:5c:0f:bc:71:00:83:25:01:5e:
18:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:89:B0:67:05:79:D6:C0:B8:16:48:D4:CD:06:77:89:B8:34:32:15
X509v3 Authority Key Identifier:
keyid:27:B2:4F:D6:6E:FE:6D:C5:C3:AA:B2:E2:E6:51:A4:E2:07:FE:62:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/54mwZwV51sC4FkjUzQZ3ibg0MhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.123.0/24
Signature Algorithm: sha256WithRSAEncryption
07:a8:fa:6e:2d:f6:be:51:df:0d:bd:ff:5c:ad:0f:e6:e4:70:
b1:64:c0:b7:90:ed:0a:e8:5f:bd:6d:70:19:ef:42:e9:17:2c:
cb:30:75:f9:18:ac:e1:1c:5d:4c:fc:49:e7:81:22:34:c1:a0:
ab:62:10:6a:8b:09:32:f8:63:7d:29:5b:31:7f:82:b7:8a:82:
0f:79:91:3b:a6:90:3f:f9:c1:d3:f9:25:e7:0d:68:10:55:c5:
17:8e:fe:ff:f3:3a:b0:19:0d:f9:51:14:94:54:1e:4a:57:34:
1d:53:d5:fc:61:12:05:fe:af:1c:1d:95:04:aa:39:90:de:74:
6c:75:ff:09:77:be:c6:35:17:18:72:8a:91:98:22:4c:c2:e5:
4a:66:43:40:bf:f2:ec:06:2e:04:42:ed:4a:41:67:06:04:66:
69:4e:b2:a4:0f:f7:66:b6:a9:c7:eb:52:bc:72:e2:4b:fb:ac:
52:c8:f4:a9:b9:28:81:a7:93:41:e6:72:dd:f2:8b:5e:ba:9c:
ae:3f:a5:4c:4b:58:1f:7e:e3:c9:48:cc:e1:7b:ad:49:0e:76:
9f:08:be:03:f3:41:fd:64:39:84:cd:46:97:5b:3a:03:86:b8:
9a:c2:d0:5a:27:b8:0a:3f:0c:f6:bf:5c:4a:cb:25:cf:d5:e8:
60:59:ff:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:07 2024 by rpki-client on console-fra.rpki-client.org