Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/aj3O1ky5WJ_BHmOe62juXEa8KWA.roa
File: aj3O1ky5WJ_BHmOe62juXEa8KWA.roa (raw, json)
Hash identifier: Dxq3r6aDkhxS43No2Br4CnUYM8BThMoBBf0zFe70fa4=
Subject key identifier: 6A:3D:CE:D6:4C:B9:58:9F:C1:1E:63:9E:EB:68:EE:5C:46:BC:29:60
Certificate issuer: /CN=5d7f63401407c1cc797b17034e813d2254f9773e
Certificate serial: 090025
Authority key identifier: 5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/aj3O1ky5WJ_BHmOe62juXEa8KWA.roa
Signing time: Fri 27 May 2022 12:59:13 +0000
ROA not before: Fri 27 May 2022 12:59:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59895
IP address blocks: 185.65.206.0/24 maxlen: 24
2a05:300:1::/48 maxlen: 48
2a05:300:2::/48 maxlen: 48
2a05:300::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 589861 (0x90025)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7f63401407c1cc797b17034e813d2254f9773e
Validity
Not Before: May 27 12:59:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a3dced64cb9589fc11e639eeb68ee5c46bc2960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:59:f3:82:90:35:ba:b2:0f:6e:9f:ca:20:d8:
b2:60:f3:62:24:66:93:f3:3f:e4:dc:03:50:3f:28:
33:34:a5:d8:a4:84:f0:41:45:cc:cf:c4:98:e9:83:
c5:9b:d7:04:51:1e:a4:88:82:7d:dc:06:3f:7d:ab:
88:14:80:45:d1:33:26:0b:34:34:49:bd:da:f0:35:
ae:28:d2:ae:fc:a0:8c:99:dc:2e:02:a0:a9:a3:c6:
76:f5:a5:12:bc:5b:45:a2:6a:41:3c:fb:26:06:6c:
31:ae:49:cd:c5:94:4e:81:1d:10:a4:04:87:09:c9:
9f:10:57:7f:4f:e2:1c:d7:5d:a9:cc:02:0b:20:35:
30:85:2a:67:53:c4:56:8d:15:b4:10:4a:07:1c:22:
03:1f:29:a5:ce:06:09:89:8b:4b:7f:a4:ec:a0:1f:
87:17:b0:d6:c7:0c:97:76:43:40:14:cf:7a:85:a5:
2b:b5:ba:6b:1b:f4:58:e8:27:8c:44:f4:3a:dd:c5:
20:71:36:ae:3d:99:2f:e6:cc:a7:30:2c:69:f0:b8:
45:8c:0f:24:db:a2:49:0a:b2:68:3e:22:a7:0e:dd:
41:1e:5d:39:4e:b1:91:69:c9:98:23:8f:54:e8:df:
b6:c3:8f:1d:9d:6d:49:f4:19:9e:bf:02:ca:e0:bf:
3e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:3D:CE:D6:4C:B9:58:9F:C1:1E:63:9E:EB:68:EE:5C:46:BC:29:60
X509v3 Authority Key Identifier:
keyid:5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/aj3O1ky5WJ_BHmOe62juXEa8KWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.206.0/24
IPv6:
2a05:300::-2a05:300:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
90:52:a5:db:ff:2c:d2:4b:26:6d:4a:db:5e:e6:3c:d0:56:fc:
7c:56:10:6d:c8:d4:c2:1d:41:c7:dd:09:24:c2:9c:93:e0:dc:
64:1c:ed:e1:04:ba:03:4b:a3:7c:91:3f:49:2d:cf:c7:b4:3a:
b8:2c:f2:e3:6e:81:2e:e3:7d:f2:5e:63:48:73:d7:7c:44:94:
52:52:95:44:7d:bc:ee:02:89:fe:12:3a:00:24:6b:36:13:92:
10:b0:62:d9:17:69:0b:92:a2:35:a2:5a:f5:33:d1:af:3d:66:
8c:09:48:9b:80:31:c1:99:1c:48:bb:e7:e4:d1:68:cf:73:d7:
99:50:c1:6c:db:48:76:81:d9:07:4b:8f:f1:e8:f5:df:4b:c4:
92:60:69:cf:ab:7c:98:be:9b:13:16:1a:11:5a:af:a4:5b:48:
92:8b:a7:c8:24:4f:79:52:cb:ac:0a:18:7d:cf:e6:a3:4d:ba:
b9:ee:07:62:a2:5d:45:6f:45:59:5f:e3:1e:77:c7:e3:2f:90:
80:93:ad:e0:75:87:ad:92:df:4d:7c:de:8e:32:2d:11:b4:77:
44:73:e8:88:e9:c5:69:0e:af:c2:77:02:97:36:78:b6:e3:97:
30:84:71:59:6d:8c:15:a8:cc:76:08:07:db:cb:b4:fd:c3:70:
dd:a0:48:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:26 2024 by rpki-client on console-ams.rpki-client.org