Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/85fa84-5d99-4aa8-8753-5d8ca63681ad/1/AKLSMrKIPths6VJ4Llw0pTf4WQM.roa
File: AKLSMrKIPths6VJ4Llw0pTf4WQM.roa (raw, json)
Hash identifier: f42/+aKdde3uaP13HFT7BP7/KD7BUIuXHfBEV3XycUU=
Subject key identifier: 00:A2:D2:32:B2:88:3E:D8:6C:E9:52:78:2E:5C:34:A5:37:F8:59:03
Certificate issuer: /CN=7c2380d764a9611dfe2fbc0ce0cc40496ec1e83e
Certificate serial: 0183A7CA8F7B0BAC4823EEE3038BBB700CE1
Authority key identifier: 7C:23:80:D7:64:A9:61:1D:FE:2F:BC:0C:E0:CC:40:49:6E:C1:E8:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fCOA12SpYR3-L7wM4MxASW7B6D4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/85fa84-5d99-4aa8-8753-5d8ca63681ad/1/AKLSMrKIPths6VJ4Llw0pTf4WQM.roa
Signing time: Wed 05 Oct 2022 10:56:53 +0000
ROA not before: Wed 05 Oct 2022 10:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35478
IP address blocks: 185.26.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a7:ca:8f:7b:0b:ac:48:23:ee:e3:03:8b:bb:70:0c:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c2380d764a9611dfe2fbc0ce0cc40496ec1e83e
Validity
Not Before: Oct 5 10:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00a2d232b2883ed86ce952782e5c34a537f85903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f7:c5:50:5b:04:dd:6e:a9:26:10:fd:2e:a3:
f6:ac:dc:e7:eb:1e:5c:71:d4:cd:4f:b0:e5:1f:f0:
13:3a:76:90:44:7e:a3:7a:c3:d8:ce:64:c8:b2:f1:
cf:64:11:7b:72:9d:f3:9f:40:cf:47:e3:12:ee:de:
1f:a5:7e:39:5a:ec:34:f2:17:98:0d:09:bd:25:05:
34:7c:93:21:ed:df:7e:9b:d7:82:d6:cf:37:f7:68:
19:96:d2:0b:8d:2d:4c:ef:c7:0c:a5:0c:2d:fd:3c:
5e:b8:46:e9:15:67:f9:e2:2b:6b:13:cf:d7:5d:18:
10:a8:20:1b:60:13:d6:37:8f:11:7c:ed:22:83:23:
f8:70:4e:09:f5:6c:0a:43:70:50:c4:31:a4:12:a4:
7a:61:7e:da:40:11:d7:39:65:f2:09:3d:47:27:b3:
f6:a6:f8:62:57:66:c6:70:f0:4c:b8:b4:77:d3:a9:
53:19:bf:c2:d0:0d:50:b3:f2:74:f3:7f:d9:c1:e9:
9e:95:df:a4:80:4f:f7:72:7b:34:5e:54:f6:e3:f1:
83:ba:36:cc:3d:3b:f7:d4:c6:13:08:ca:f8:97:56:
f4:ff:94:92:a9:e2:ea:07:71:07:71:5f:67:23:eb:
3b:8b:4c:1b:ae:cb:80:3a:e0:b5:11:2c:0c:4b:3b:
b0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A2:D2:32:B2:88:3E:D8:6C:E9:52:78:2E:5C:34:A5:37:F8:59:03
X509v3 Authority Key Identifier:
keyid:7C:23:80:D7:64:A9:61:1D:FE:2F:BC:0C:E0:CC:40:49:6E:C1:E8:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fCOA12SpYR3-L7wM4MxASW7B6D4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/85fa84-5d99-4aa8-8753-5d8ca63681ad/1/AKLSMrKIPths6VJ4Llw0pTf4WQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/85fa84-5d99-4aa8-8753-5d8ca63681ad/1/fCOA12SpYR3-L7wM4MxASW7B6D4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.223.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:f0:bd:03:14:da:91:dc:05:1e:74:b6:b4:1d:b8:0d:73:3a:
a8:7b:74:89:c2:c3:41:01:27:7f:78:07:a9:b5:bd:17:f5:7e:
37:59:5b:d3:1b:d0:ad:71:f9:5b:9e:42:73:2f:07:3f:5f:a5:
ba:8d:05:0e:d6:d0:1c:7e:48:c4:b6:dc:6d:4b:4e:02:01:23:
45:24:12:d1:b7:11:d7:ec:85:e0:4c:74:6f:2d:3a:e6:85:6d:
d9:19:c6:ad:2a:7b:a3:c6:1a:e3:50:4d:77:94:4c:4e:f3:af:
17:e8:20:48:c3:0e:1a:f2:e8:a6:cc:30:81:67:01:39:f1:d5:
ae:d6:71:61:78:ee:99:8f:9d:80:cb:d5:80:63:6a:d1:e3:80:
1e:bb:84:77:b0:fe:61:0e:2a:32:73:1b:0c:a0:8b:56:be:60:
fd:6e:cc:38:93:82:a8:46:f1:dd:d6:e9:4f:8d:63:ea:d2:35:
3a:84:8b:65:18:5a:0a:49:76:a2:1f:5f:ef:81:4e:99:c7:2b:
7b:9d:eb:b5:4a:16:1a:42:7b:5d:23:0b:b3:6f:f2:e1:23:b5:
13:4b:22:09:86:cc:55:d1:a1:61:b0:42:fc:94:bf:1d:23:9d:
17:69:86:0f:43:7a:57:e9:2f:fb:91:65:3f:bc:f8:3e:03:e8:
b1:1b:fb:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:15 2024 by rpki-client on console-fra.rpki-client.org