Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/28f6ac-f805-4c91-b4ea-194887bda423/1/AyqA9h8BW4wUT3PeIilqC49WLuU.roa
File: AyqA9h8BW4wUT3PeIilqC49WLuU.roa (raw, json)
Hash identifier: 5Zan3KjjvjeViZY8s6b5tSAW69Oe+GLHun+dxpJhXHs=
Subject key identifier: 03:2A:80:F6:1F:01:5B:8C:14:4F:73:DE:22:29:6A:0B:8F:56:2E:E5
Certificate issuer: /CN=212eaf59a2bff3cab118711894478bb9eff93b85
Certificate serial: 1606D3E7
Authority key identifier: 21:2E:AF:59:A2:BF:F3:CA:B1:18:71:18:94:47:8B:B9:EF:F9:3B:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IS6vWaK_88qxGHEYlEeLue_5O4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/28f6ac-f805-4c91-b4ea-194887bda423/1/AyqA9h8BW4wUT3PeIilqC49WLuU.roa
Signing time: Sat 01 Jan 2022 12:06:48 +0000
ROA not before: Sat 01 Jan 2022 12:06:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24958
IP address blocks: 185.10.14.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 369546215 (0x1606d3e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=212eaf59a2bff3cab118711894478bb9eff93b85
Validity
Not Before: Jan 1 12:06:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=032a80f61f015b8c144f73de22296a0b8f562ee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d6:cb:f4:b8:9a:d8:fa:e0:6c:ae:51:9a:f3:
ff:08:5a:e2:f0:05:16:9d:87:52:82:7c:b7:2c:8d:
5c:50:84:27:1c:b9:58:46:28:31:ba:65:c0:31:e7:
77:91:26:e1:a9:65:e4:8b:51:9b:4f:48:fc:1b:c1:
0f:c8:4e:62:47:b1:53:6b:0c:ae:b7:c6:64:62:34:
fa:db:d9:dc:9c:60:45:22:80:b7:1e:d6:32:23:39:
b2:3a:e5:cb:41:a4:fa:ed:e0:94:37:68:7b:57:97:
3f:a3:cd:c2:b2:4c:ba:c7:be:40:07:09:55:1c:68:
c4:e5:30:db:44:c4:1a:36:88:07:66:83:fc:29:94:
36:4a:91:46:ed:f9:e3:16:c3:90:07:d8:27:d6:01:
1b:f7:57:af:bb:9b:a5:33:2d:05:3e:d3:8e:f5:76:
1d:49:ad:a6:90:79:34:ee:75:00:a5:11:4e:f9:4a:
19:91:f9:65:43:42:f6:4a:79:4b:c7:47:a3:86:3c:
e0:c3:9f:d4:3b:76:ed:ed:90:68:67:4c:c6:32:80:
9e:74:60:fe:b8:0a:db:ab:6d:83:c8:c7:4f:38:f2:
42:2c:11:ab:14:fa:9f:b0:8f:51:3a:32:3b:b2:03:
69:c3:69:29:5f:fe:15:d6:b8:2b:ef:60:96:66:99:
43:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:2A:80:F6:1F:01:5B:8C:14:4F:73:DE:22:29:6A:0B:8F:56:2E:E5
X509v3 Authority Key Identifier:
keyid:21:2E:AF:59:A2:BF:F3:CA:B1:18:71:18:94:47:8B:B9:EF:F9:3B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IS6vWaK_88qxGHEYlEeLue_5O4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/28f6ac-f805-4c91-b4ea-194887bda423/1/AyqA9h8BW4wUT3PeIilqC49WLuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/28f6ac-f805-4c91-b4ea-194887bda423/1/IS6vWaK_88qxGHEYlEeLue_5O4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.14.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:42:16:06:42:b8:b0:a4:1f:4a:0c:40:b3:b5:72:0b:43:5a:
fe:16:b6:6b:fc:66:68:99:a6:70:31:ee:c2:ec:53:ec:c7:cf:
f2:b9:26:7c:58:a4:57:0e:26:ad:c0:c0:1c:3e:15:6b:f6:56:
14:d4:6e:3e:98:35:19:03:17:da:37:97:41:0a:a4:0b:85:06:
b4:07:e8:89:54:29:1c:ae:a5:2e:cc:c0:0f:c2:9b:35:de:d5:
a6:b1:20:19:d6:50:e6:d9:5f:e4:94:50:a7:2f:aa:c9:d8:0e:
42:1c:60:99:2f:a6:5e:43:c4:92:6e:2d:07:74:28:d9:fd:4d:
72:b6:1a:21:ee:70:d6:ca:5e:f1:99:ff:fa:95:7a:23:1d:68:
e8:68:f8:dc:00:ef:cd:20:88:63:95:6a:6e:85:bf:8d:4f:f9:
6b:6c:23:10:a1:ff:d6:e4:e5:ee:c3:24:95:38:f4:37:04:fe:
d9:14:fa:50:6b:f4:f5:e2:c4:4e:70:c6:fe:40:21:03:6d:23:
05:56:5d:bd:32:18:b8:2a:4a:7e:fa:57:b0:da:d5:23:7a:83:
4b:18:7a:48:7e:b7:7e:d4:43:49:53:b1:7f:99:ed:a2:6c:b9:
a7:c6:76:9e:55:be:b9:54:e6:a0:24:42:e1:92:bc:e0:2f:a5:
64:0f:fd:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:23 2024 by rpki-client on console-fra.rpki-client.org