Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/yRj0Z28HW3OHZhU43cVuPAi6miA.roa
File: yRj0Z28HW3OHZhU43cVuPAi6miA.roa (raw, json)
Hash identifier: mL/NSehdyTi71OK4ALVnQXpXPZBZhAdP3gO0IeHxxa8=
Subject key identifier: C9:18:F4:67:6F:07:5B:73:87:66:15:38:DD:C5:6E:3C:08:BA:9A:20
Certificate issuer: /CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Certificate serial: 01830CB43EE5546055D143BFF303D778BDFD
Authority key identifier: 30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/yRj0Z28HW3OHZhU43cVuPAi6miA.roa
Signing time: Mon 05 Sep 2022 08:11:22 +0000
ROA not before: Mon 05 Sep 2022 08:11:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.146.154.0/24 maxlen: 24
2a07:4f80::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0c:b4:3e:e5:54:60:55:d1:43:bf:f3:03:d7:78:bd:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Validity
Not Before: Sep 5 08:11:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c918f4676f075b7387661538ddc56e3c08ba9a20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b1:1b:45:33:2d:f9:cb:20:57:fe:0b:49:20:
39:d7:fd:7d:1d:74:00:50:36:12:d8:61:6a:75:58:
32:f3:4c:5b:f8:ef:4e:4b:32:64:11:54:94:25:03:
98:4f:0f:b0:76:1d:65:f3:94:ed:9a:b8:92:cf:a5:
f8:94:60:55:2b:b2:1b:cc:6a:6d:41:a9:84:72:8e:
81:e8:38:e8:65:b6:48:e8:9c:5b:fe:ee:a7:21:22:
19:4f:41:d9:c5:62:54:c6:5d:63:28:cd:b5:8d:99:
a7:12:d2:4b:72:9b:dc:86:e8:34:0c:fb:be:ed:61:
e6:5a:34:41:62:ac:81:61:7e:e0:4b:9a:a3:24:dc:
b7:d9:94:02:dd:c2:a5:1e:68:ca:53:fc:e2:67:1c:
78:f8:57:cd:fc:29:01:3d:30:65:78:4f:26:b4:de:
6b:4f:a3:c9:b2:e5:1b:4d:a2:27:11:d8:d6:e4:70:
98:d0:04:39:e1:fc:2c:f1:0d:66:dc:3d:b0:1d:59:
68:6b:dd:74:94:33:b6:2c:2e:e1:fa:3a:0a:39:0f:
fb:03:60:5a:64:9b:80:af:97:b2:03:09:9f:13:e5:
67:76:5e:19:63:30:2f:7d:ca:d3:c7:2d:32:db:b3:
21:64:b9:33:c0:64:dc:03:e4:d3:70:0f:47:0f:07:
cf:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:18:F4:67:6F:07:5B:73:87:66:15:38:DD:C5:6E:3C:08:BA:9A:20
X509v3 Authority Key Identifier:
keyid:30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/yRj0Z28HW3OHZhU43cVuPAi6miA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.154.0/24
IPv6:
2a07:4f80::/44
Signature Algorithm: sha256WithRSAEncryption
37:1f:c7:86:57:53:e5:fc:e5:84:e7:89:b5:ed:99:1d:19:0a:
9b:4e:eb:57:16:0e:3a:75:9a:44:77:12:dd:c3:dc:92:eb:2e:
06:47:8f:ae:b6:07:a4:5c:83:8d:b2:fc:61:14:bf:7c:40:57:
86:30:d9:86:ad:12:29:62:ed:ed:20:c2:af:cb:ad:62:9a:b7:
6b:9a:27:34:60:2d:2b:8f:91:8f:b4:23:ec:be:a1:03:fb:c6:
1d:8a:ae:69:e1:aa:85:d4:3f:e0:48:11:3b:f4:ea:2d:fa:88:
d0:35:f8:20:f4:30:45:1b:31:a4:7b:ef:be:57:71:68:cc:21:
b5:93:00:2a:29:89:22:50:0a:d6:a0:45:ac:d6:04:f2:93:9e:
22:be:81:ec:24:c4:a4:67:47:d4:66:b1:b1:33:da:00:12:aa:
f0:a4:45:24:78:7b:8c:69:64:97:d4:ef:8a:c5:c2:aa:8f:11:
1c:69:0a:f0:d2:bd:55:4b:a5:02:42:b3:1b:25:7d:2b:0d:eb:
dd:d3:6a:c4:f7:78:e9:2f:c4:71:77:54:3c:9c:c4:04:57:96:
04:41:5a:aa:3c:67:5b:a1:d0:73:d9:bc:29:0a:f8:2f:2c:42:
ea:ff:76:0a:1c:69:8e:67:4c:0d:c2:aa:70:e7:eb:6e:a5:f7:
8e:59:03:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:09 2024 by rpki-client on console-fra.rpki-client.org