Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/1ba6df-548c-44ea-b1d5-f4eb0ff5bb73/1/p9X51RelmM4M6MHACQ9A9Htx7d8.roa
File: p9X51RelmM4M6MHACQ9A9Htx7d8.roa (raw, json)
Hash identifier: str1k2JWuv8F4afdgegK1LbQSMiNSXb45pzOh01Yud4=
Subject key identifier: A7:D5:F9:D5:17:A5:98:CE:0C:E8:C1:C0:09:0F:40:F4:7B:71:ED:DF
Certificate issuer: /CN=cb89ae63648fd1c89ed56a361bd8c1e11956bfba
Certificate serial: 03AA8AB6
Authority key identifier: CB:89:AE:63:64:8F:D1:C8:9E:D5:6A:36:1B:D8:C1:E1:19:56:BF:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y4muY2SP0cie1Wo2G9jB4RlWv7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/1ba6df-548c-44ea-b1d5-f4eb0ff5bb73/1/p9X51RelmM4M6MHACQ9A9Htx7d8.roa
Signing time: Sat 01 Jan 2022 15:58:16 +0000
ROA not before: Sat 01 Jan 2022 15:58:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205179
IP address blocks: 185.226.232.0/24 maxlen: 24
185.226.232.0/22 maxlen: 22
185.226.233.0/24 maxlen: 24
185.226.235.0/24 maxlen: 24
185.226.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61508278 (0x3aa8ab6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb89ae63648fd1c89ed56a361bd8c1e11956bfba
Validity
Not Before: Jan 1 15:58:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7d5f9d517a598ce0ce8c1c0090f40f47b71eddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1a:a2:6d:9b:4d:98:e7:3e:92:67:44:17:4d:
eb:96:64:f9:08:09:63:d1:a2:21:22:e9:e8:fd:76:
8b:72:5e:56:71:37:a1:9b:da:40:ce:d4:91:a3:d6:
f1:0b:30:10:08:60:2c:69:e1:e2:86:01:2a:71:95:
d2:22:a7:b4:d5:c7:c3:3f:9a:d3:b1:d0:ab:d2:cc:
bc:a4:97:b2:43:95:06:f0:9a:eb:89:84:d7:6c:4a:
a9:bb:7f:96:ee:54:91:eb:97:56:da:30:3c:23:9f:
7f:3f:7f:d9:94:d1:24:4a:44:3d:bc:f4:1f:04:c8:
22:04:cf:e8:50:b2:95:a8:1e:55:a9:c5:27:cf:d5:
8b:82:ca:db:35:3b:08:d4:e9:aa:82:d8:fc:14:56:
d5:37:ce:99:00:65:fe:1c:bd:2a:1d:f0:19:1c:23:
e2:fe:a9:1f:bd:c5:fe:5a:3f:2e:fb:3d:71:3e:26:
8e:ff:a5:99:d6:0f:2d:d6:ea:2f:2f:c6:64:ad:39:
67:4b:7e:dd:98:54:12:e6:ac:87:79:ed:51:85:54:
71:00:95:bf:0f:5b:b3:fb:ea:a9:10:db:78:25:23:
e8:6a:9a:f8:6b:79:21:36:3f:69:5f:35:de:74:27:
fd:3e:2a:95:b3:80:a3:b6:ea:4e:28:78:fc:fd:a6:
c8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:D5:F9:D5:17:A5:98:CE:0C:E8:C1:C0:09:0F:40:F4:7B:71:ED:DF
X509v3 Authority Key Identifier:
keyid:CB:89:AE:63:64:8F:D1:C8:9E:D5:6A:36:1B:D8:C1:E1:19:56:BF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y4muY2SP0cie1Wo2G9jB4RlWv7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1ba6df-548c-44ea-b1d5-f4eb0ff5bb73/1/p9X51RelmM4M6MHACQ9A9Htx7d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1ba6df-548c-44ea-b1d5-f4eb0ff5bb73/1/y4muY2SP0cie1Wo2G9jB4RlWv7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.232.0/22
Signature Algorithm: sha256WithRSAEncryption
bc:90:63:d9:56:db:86:5f:0d:01:07:e3:47:58:9b:52:e1:c4:
fb:9a:ad:14:66:08:09:4f:e0:87:af:1e:64:db:dc:95:18:1b:
bd:62:31:e8:8b:93:05:a0:dd:82:ab:b1:7d:47:63:a0:df:56:
30:10:7c:ce:f7:4b:9a:9b:92:fc:87:ba:dc:54:8d:6f:e6:e7:
ee:27:2f:53:47:c1:06:c9:77:ee:aa:47:1b:2f:e4:0d:8c:f6:
c8:1e:bf:10:c5:2a:8f:6c:27:93:01:15:3e:57:7b:cd:02:ea:
cb:5a:1a:1e:57:e6:46:d3:8f:47:6c:04:3f:6a:4d:5f:c3:60:
80:3b:04:65:55:31:12:4d:26:c2:ac:c1:64:c1:3b:bb:61:b9:
79:60:56:14:8f:8a:14:3f:a5:a2:03:1c:f7:02:65:90:09:8e:
a9:fe:22:e1:7d:62:68:e2:86:d9:6b:ad:d1:30:57:19:67:90:
7d:79:fb:d9:34:46:49:95:9d:3d:c8:9c:de:b6:6a:da:bb:bf:
34:32:ae:ed:67:7b:19:8d:e0:cb:be:20:47:a8:34:db:0f:13:
6e:dc:3f:46:21:23:82:9f:1e:b5:5b:cd:dd:e1:ce:30:58:9e:
7a:5d:58:d1:80:5d:a7:6c:aa:a6:eb:97:4c:25:fe:94:87:fa:
40:82:c4:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:19 2024 by rpki-client on console-ams.rpki-client.org