Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/sr6yjBO0Aly5EyfMXIMs7DfnYzE.roa
File: sr6yjBO0Aly5EyfMXIMs7DfnYzE.roa (raw, json)
Hash identifier: cTDPUkTLx/nYAQdUFCtsCJdrySsEFCiAHT8JD8o6pXY=
Subject key identifier: B2:BE:B2:8C:13:B4:02:5C:B9:13:27:CC:5C:83:2C:EC:37:E7:63:31
Certificate issuer: /CN=df27b939934a2cc206ffba6bce9c90fdcba39c71
Certificate serial: 127378F0
Authority key identifier: DF:27:B9:39:93:4A:2C:C2:06:FF:BA:6B:CE:9C:90:FD:CB:A3:9C:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ye5OZNKLMIG_7przpyQ_cujnHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/sr6yjBO0Aly5EyfMXIMs7DfnYzE.roa
Signing time: Sat 01 Jan 2022 14:56:57 +0000
ROA not before: Sat 01 Jan 2022 14:56:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202391
IP address blocks: 185.75.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 309557488 (0x127378f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df27b939934a2cc206ffba6bce9c90fdcba39c71
Validity
Not Before: Jan 1 14:56:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2beb28c13b4025cb91327cc5c832cec37e76331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c0:93:a9:63:9a:fe:6c:80:7c:34:65:e9:6f:
63:92:71:1f:17:bb:19:80:1a:62:b2:bf:0b:2b:d0:
75:94:c8:2e:08:d8:be:1e:21:c7:d0:ff:ff:5e:87:
b2:33:33:f4:57:35:3f:1c:99:b6:c8:6a:91:d3:b1:
f5:be:d4:bb:a4:b8:52:31:ad:5f:4d:84:cb:b8:b7:
16:c0:49:0e:5a:a9:52:3a:c4:b6:65:94:0d:96:f6:
7b:86:7b:b5:2e:b2:7d:d4:32:87:9f:6d:a4:46:13:
48:79:e2:b3:eb:99:5a:c7:51:05:2c:e2:be:77:54:
db:7a:31:42:86:1e:2d:0b:8e:ec:f0:30:45:32:cb:
3f:58:67:9c:ac:36:c9:39:f1:68:24:0e:dd:0d:4f:
d7:b8:0d:e0:71:0f:ca:e3:24:10:99:92:cb:c6:2c:
98:7b:85:34:b1:31:f0:7d:d6:a6:4f:c5:be:3d:8d:
32:a1:0c:f1:56:f4:f4:2f:81:1d:a8:19:b7:ec:9c:
6c:70:6d:d8:f4:b2:4f:54:ce:14:fc:1d:57:fb:3b:
1c:c7:dc:02:a9:25:0a:5a:9c:20:1e:99:ec:cb:5d:
b6:49:19:b7:2f:b0:f5:83:e5:78:b5:b4:f8:08:33:
ac:34:ef:f8:5d:cc:10:8b:8b:99:8f:ed:94:f5:5b:
9c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:BE:B2:8C:13:B4:02:5C:B9:13:27:CC:5C:83:2C:EC:37:E7:63:31
X509v3 Authority Key Identifier:
keyid:DF:27:B9:39:93:4A:2C:C2:06:FF:BA:6B:CE:9C:90:FD:CB:A3:9C:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ye5OZNKLMIG_7przpyQ_cujnHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/sr6yjBO0Aly5EyfMXIMs7DfnYzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/3ye5OZNKLMIG_7przpyQ_cujnHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.204.0/24
Signature Algorithm: sha256WithRSAEncryption
62:ef:6b:af:f5:c0:98:c2:d9:e1:31:b1:f7:03:e5:59:2d:5f:
4f:ab:0b:aa:34:f4:ea:c8:29:de:a1:12:3f:4c:9d:c4:98:bf:
70:df:86:6a:6f:14:ae:9d:a6:23:bc:0c:32:d7:3a:48:53:d1:
56:7c:e5:39:52:4b:cb:90:5a:77:2e:82:6f:09:4c:2f:c4:71:
7c:49:57:b6:9d:fd:a4:05:16:2e:68:b1:35:84:e5:5f:18:c9:
25:1b:33:4f:2c:e0:ea:5a:3d:96:12:f6:60:48:68:87:5a:f7:
52:c9:b2:f4:47:bf:d7:4a:38:99:50:da:2a:76:06:fc:ec:90:
ac:5c:e7:d6:ad:5f:d6:dd:94:39:2c:a7:93:ad:11:f2:01:2f:
e7:65:ad:61:82:93:46:8d:89:a4:fd:b9:d7:89:9b:3f:ec:ca:
4f:04:6f:e0:05:d9:4a:8b:4a:fe:be:5f:41:c5:0e:f1:21:d2:
ea:5c:44:89:96:cb:bb:f4:07:28:ba:92:2d:5e:09:4a:1c:fa:
91:7f:bd:71:2c:f8:59:5b:66:b4:20:4b:37:17:a6:70:d5:dc:
18:c4:ad:06:2a:53:48:c9:9c:65:96:05:24:14:3e:fa:6c:b4:
b7:a2:49:3b:b9:29:00:5c:e0:09:48:80:d3:ea:9f:fb:7b:49:
d7:2a:74:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:30 2023 by rpki-client on console-fra.rpki-client.org