Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/IyRkVNLGCb2-UzDaTCP2SQxI07Y.roa
File: IyRkVNLGCb2-UzDaTCP2SQxI07Y.roa (raw, json)
Hash identifier: M1Err3TR8J0qjIGTgZDNmCUBs0lJHabUkDcK1XaakIs=
Subject key identifier: 23:24:64:54:D2:C6:09:BD:BE:53:30:DA:4C:23:F6:49:0C:48:D3:B6
Certificate issuer: /CN=8eacc7f3b218c492d88dbebc9cdcb9a2d2d30ed1
Certificate serial: 15B431E1
Authority key identifier: 8E:AC:C7:F3:B2:18:C4:92:D8:8D:BE:BC:9C:DC:B9:A2:D2:D3:0E:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jqzH87IYxJLYjb68nNy5otLTDtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/IyRkVNLGCb2-UzDaTCP2SQxI07Y.roa
Signing time: Sat 01 Jan 2022 06:05:41 +0000
ROA not before: Sat 01 Jan 2022 06:05:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60039
IP address blocks: 185.60.236.0/24 maxlen: 24
185.98.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 364130785 (0x15b431e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eacc7f3b218c492d88dbebc9cdcb9a2d2d30ed1
Validity
Not Before: Jan 1 06:05:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23246454d2c609bdbe5330da4c23f6490c48d3b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1b:72:f2:a8:d2:67:04:4a:aa:9c:a5:8b:f5:
66:01:42:93:fb:4a:21:0d:d1:79:dd:72:22:a6:6e:
81:80:3a:bd:56:13:47:28:17:1d:c7:21:92:2e:64:
4c:45:4c:f8:0f:41:1c:10:d8:5e:17:22:34:c2:1e:
80:f5:f8:a1:3b:fd:8e:6c:4a:cc:89:0c:49:10:33:
59:c4:c8:08:89:17:a8:8c:75:17:31:46:86:b4:4c:
92:8b:e2:69:43:85:b5:f0:5d:65:bb:3d:ba:6c:28:
f4:e4:a1:78:37:e4:ec:88:d5:28:fd:1b:da:23:a5:
90:a5:ca:fb:d8:e6:24:6b:32:f9:35:69:a3:47:60:
e4:90:33:b4:2f:01:3f:f7:ab:95:19:98:be:95:24:
40:a0:ef:4c:cf:a6:62:db:85:0b:49:ab:08:9a:3a:
ba:ab:89:79:87:94:5e:4c:14:4c:b0:39:dc:a8:cd:
6f:fb:c1:01:46:01:f7:36:66:e1:26:70:4d:2a:3a:
6a:99:4b:06:34:0f:71:bd:11:ee:3b:32:39:68:eb:
14:03:04:99:56:3e:db:59:c5:13:51:58:a5:f9:ec:
7e:cb:b7:89:ee:d5:14:be:38:0f:1b:8b:b9:68:1a:
c5:28:03:c5:20:b8:b6:76:91:90:7c:50:5a:8f:eb:
c7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:24:64:54:D2:C6:09:BD:BE:53:30:DA:4C:23:F6:49:0C:48:D3:B6
X509v3 Authority Key Identifier:
keyid:8E:AC:C7:F3:B2:18:C4:92:D8:8D:BE:BC:9C:DC:B9:A2:D2:D3:0E:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jqzH87IYxJLYjb68nNy5otLTDtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/IyRkVNLGCb2-UzDaTCP2SQxI07Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/jqzH87IYxJLYjb68nNy5otLTDtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.236.0/24
185.98.104.0/24
Signature Algorithm: sha256WithRSAEncryption
34:1f:fc:81:f5:9f:66:f9:91:92:42:34:95:ec:6b:7e:d2:9c:
da:cd:97:47:8e:49:fe:33:73:d7:3b:c0:53:d6:f3:31:cc:07:
a6:e7:8d:cb:04:6f:16:a2:40:1b:46:a0:b6:a9:ca:d9:95:19:
fc:2f:e1:46:55:e7:a5:ed:50:93:00:ec:ab:53:b7:1c:af:87:
e2:42:10:8f:2c:d7:f8:9d:8b:54:02:bb:4a:12:dd:75:6a:dd:
db:7f:cb:14:db:82:5b:59:9b:0c:13:45:24:29:f6:9a:7c:5b:
67:c6:7d:ce:59:6c:09:6e:a6:62:dc:c3:9a:c8:05:55:65:20:
64:ee:6e:2e:22:0a:dd:22:ce:fb:dc:4f:d2:34:90:8e:11:57:
1d:51:43:dc:df:a0:fa:80:4d:d2:87:fb:5e:70:63:5d:8e:68:
56:9c:e9:8f:a3:59:34:b3:b2:9c:af:56:1c:9b:cd:12:77:e5:
84:75:6d:f0:09:fc:2a:62:ec:66:34:c1:28:0c:f6:33:92:2e:
80:b6:81:c7:7e:04:6b:1d:68:4c:b9:a1:a8:ab:53:2b:7b:8a:
e9:91:a2:bb:5e:e4:7f:a9:dd:df:d7:f3:f3:ff:29:c3:1a:bc:
be:0e:05:46:af:e8:f9:0e:2f:11:59:42:d7:35:3f:4a:c5:68:
09:f1:32:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:45 2023 by rpki-client on console-fra.rpki-client.org