Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/D12v25PjKI5IM_td854exJkFILc.roa
File: D12v25PjKI5IM_td854exJkFILc.roa (raw, json)
Hash identifier: B6ZuOjBfUeSMw5qPigEaKB0wniGpa+b1hYNG/UQ55rA=
Subject key identifier: 0F:5D:AF:DB:93:E3:28:8E:48:33:FB:5D:F3:9E:1E:C4:99:05:20:B7
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 018410522EEA81F015CBD1D537A89D9D4520
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/D12v25PjKI5IM_td854exJkFILc.roa
Signing time: Tue 25 Oct 2022 18:05:32 +0000
ROA not before: Tue 25 Oct 2022 18:05:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29262
IP address blocks: 185.254.54.0/24 maxlen: 24
185.254.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:10:52:2e:ea:81:f0:15:cb:d1:d5:37:a8:9d:9d:45:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Oct 25 18:05:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f5dafdb93e3288e4833fb5df39e1ec4990520b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e8:6b:3a:6b:4c:62:69:e6:59:22:05:7e:c6:
7e:b6:dd:cc:17:3f:cb:49:7a:fa:88:66:67:58:a9:
ea:87:ed:67:1e:ac:b1:d1:e0:70:d2:25:7b:70:ae:
da:c9:07:a1:be:54:ce:01:d0:2d:0c:e9:fb:6a:37:
65:5c:5d:1c:a0:1c:cb:1b:91:a2:d3:99:be:7f:0f:
81:1c:cd:f7:3c:6d:e6:52:b1:7f:33:23:4a:79:64:
dc:58:4b:b2:d3:99:12:9b:99:e1:d0:d8:ff:ae:90:
e1:11:f1:6a:a1:58:4e:27:78:e4:e4:84:6d:3a:fd:
11:0c:47:ad:10:df:f7:ce:10:03:82:e4:66:c3:12:
49:49:a9:59:0d:36:66:fb:49:fd:9e:8c:02:43:0f:
a8:41:57:a0:96:1a:17:f8:87:83:5d:40:85:8f:30:
bc:a1:37:81:bd:5e:dd:12:fa:bd:d9:8e:94:93:c3:
23:3e:ad:08:26:5c:f8:10:57:7a:40:6e:20:ab:51:
f6:bb:9c:ea:47:05:7f:3c:54:8d:ac:59:f0:56:5d:
0f:a3:ce:87:8f:f8:1b:eb:b1:d8:f4:59:52:6e:1a:
97:75:36:c3:20:37:3d:22:78:83:62:ff:5c:4e:16:
f0:b4:f1:08:ed:9b:03:18:a0:04:34:17:b4:a6:df:
55:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:5D:AF:DB:93:E3:28:8E:48:33:FB:5D:F3:9E:1E:C4:99:05:20:B7
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/D12v25PjKI5IM_td854exJkFILc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.54.0/23
Signature Algorithm: sha256WithRSAEncryption
cb:e7:d6:1d:f5:e9:86:b0:38:0a:28:90:bf:d7:35:17:e0:e4:
4d:dc:1a:d3:e8:75:52:37:ff:f3:1d:0d:74:72:13:40:d1:39:
81:fe:03:31:23:37:80:9c:bd:fc:f1:17:31:1d:73:bd:41:a2:
81:80:fa:46:69:7b:24:f2:db:a6:da:ee:3c:76:91:86:49:79:
a9:9e:dc:c8:45:fb:4b:37:a8:c5:81:86:2d:0b:0a:11:25:85:
87:23:52:be:33:11:20:3a:ca:dd:36:7e:b6:31:8f:25:db:85:
c8:be:49:e9:5d:60:45:d4:ee:c7:cc:90:f8:72:f2:94:61:40:
3b:55:af:9a:3e:53:8b:00:cf:08:ce:57:64:94:13:2e:3d:b9:
40:c2:bd:61:5f:bf:3b:8b:22:5d:6d:7c:24:43:5d:53:c1:f4:
47:22:29:cb:d3:bc:08:21:44:3c:ee:41:8a:9a:d8:44:92:a1:
d6:19:60:48:ac:ac:cc:ca:00:db:b6:4e:a9:b4:88:35:e2:49:
6c:b1:a4:c5:12:f1:d5:c4:69:95:e4:31:4f:ba:31:8d:90:fc:
07:0f:0e:7b:85:ee:2f:53:2f:f9:ef:dc:e1:22:b1:60:6b:b0:
40:86:14:5f:bf:d3:43:78:60:ae:5b:0c:03:a1:28:53:b8:d9:
dc:0a:91:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:50 2024 by rpki-client on console-fra.rpki-client.org