Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/YNenVbRz6UdD5o99CWW5FO0VG10.roa
File: YNenVbRz6UdD5o99CWW5FO0VG10.roa (raw, json)
Hash identifier: U8TEkoMYkpEaSMrEwuTKVzbfXhsYkWN5NoYka4hJZVM=
Subject key identifier: 60:D7:A7:55:B4:73:E9:47:43:E6:8F:7D:09:65:B9:14:ED:15:1B:5D
Certificate issuer: /CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06
Certificate serial: 1E17DE6C
Authority key identifier: 27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/YNenVbRz6UdD5o99CWW5FO0VG10.roa
Signing time: Sat 01 Jan 2022 07:01:40 +0000
ROA not before: Sat 01 Jan 2022 07:01:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211174
IP address blocks: 146.185.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 504880748 (0x1e17de6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06
Validity
Not Before: Jan 1 07:01:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60d7a755b473e94743e68f7d0965b914ed151b5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:27:70:61:d9:f0:4e:4d:75:f7:c3:df:61:9a:
d0:6c:65:12:6c:5e:c1:46:43:d3:63:b7:f5:86:a4:
fc:e5:14:df:1a:88:e1:65:03:72:d1:bf:81:dd:25:
88:48:89:41:62:87:84:c7:ee:60:c8:1e:eb:d2:f3:
92:9d:96:b9:e2:d6:d5:bb:3d:ed:59:36:2c:3d:e6:
cc:c7:11:cd:9e:ed:1e:47:2b:1d:fc:31:a5:ea:9f:
0b:e1:0c:45:28:26:94:5d:06:4b:8b:89:90:42:80:
d1:9b:ad:3b:7b:85:e6:b6:33:73:21:f0:62:2c:fb:
ac:41:55:f9:68:40:6f:b0:88:71:63:34:29:5a:ba:
43:ab:d6:83:1c:41:b7:a7:2e:12:fd:60:1f:f2:71:
1c:52:c9:ef:84:01:16:95:8e:26:83:94:b0:79:8f:
50:a9:5f:fe:e2:57:1c:35:ce:24:91:cf:ed:ff:d2:
f7:4e:68:d9:12:61:5b:d6:0f:de:8d:c2:a5:50:6b:
08:22:0c:63:d9:4b:9d:81:d5:f7:40:b7:41:f6:a3:
6a:08:30:2b:d2:e8:95:9c:b4:5e:2e:89:a7:40:7d:
f5:9a:4d:d5:85:53:8c:ac:75:3e:49:69:48:64:94:
b4:57:6c:e2:34:bb:3f:5f:05:4e:66:d1:04:91:e8:
57:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D7:A7:55:B4:73:E9:47:43:E6:8F:7D:09:65:B9:14:ED:15:1B:5D
X509v3 Authority Key Identifier:
keyid:27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/YNenVbRz6UdD5o99CWW5FO0VG10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.185.94.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:7a:7f:33:fb:47:01:5d:72:32:f8:df:ef:83:4f:69:2a:d4:
6d:76:62:28:6e:28:db:e5:75:50:8c:57:60:a2:f6:7f:42:5b:
62:07:b9:ac:46:3a:71:f3:36:cc:40:0d:e0:bd:89:2d:2a:96:
af:cf:40:23:af:00:cf:73:9f:28:96:7d:23:e0:1a:90:31:f1:
12:51:cf:4a:86:5f:75:56:fb:91:88:32:3a:7e:98:8c:c2:94:
c2:c2:b8:66:7d:11:aa:b0:dd:8b:03:89:4b:44:c4:bf:8a:26:
31:0c:8a:1f:41:ef:c9:e6:ff:26:6f:9d:0e:68:da:a4:5d:4f:
47:7d:13:19:6d:d1:62:31:74:52:21:42:dd:2c:d9:bd:53:6a:
36:ea:ad:9c:e5:14:ee:a0:fc:46:6d:a1:dc:78:5a:2b:94:b4:
fe:c7:92:ca:03:bf:52:95:84:a4:f0:23:9f:63:d1:7b:64:7f:
23:66:ed:4f:3e:06:ba:b9:6d:fa:5c:2b:60:85:aa:84:94:2e:
5f:3d:5e:b7:1b:9f:c5:32:7f:9b:dc:f0:8f:e4:5c:68:6e:4c:
f4:17:ad:c1:65:5b:30:47:3a:cd:a5:c5:f2:0a:bc:56:f9:83:
fa:08:7d:5e:38:f7:80:7f:f7:9e:ee:76:02:05:08:5a:50:06:
ac:19:24:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:11 2024 by rpki-client on console-fra.rpki-client.org