Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/pok9rcEvICqeWZxuICiaN5U3Z1g.roa
File: pok9rcEvICqeWZxuICiaN5U3Z1g.roa (raw, json)
Hash identifier: qI+sbffoXUi1Hrl3qcT95kfqNMu10iVMEk3Phh6BvDo=
Subject key identifier: A6:89:3D:AD:C1:2F:20:2A:9E:59:9C:6E:20:28:9A:37:95:37:67:58
Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672
Certificate serial: 045E273A
Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/pok9rcEvICqeWZxuICiaN5U3Z1g.roa
Signing time: Sat 01 Jan 2022 00:54:01 +0000
ROA not before: Sat 01 Jan 2022 00:54:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200473
IP address blocks: 185.82.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73279290 (0x45e273a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672
Validity
Not Before: Jan 1 00:54:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6893dadc12f202a9e599c6e20289a3795376758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d6:38:8e:d7:3c:ce:ac:df:94:e3:03:73:04:
fa:1e:80:ec:06:b4:46:56:b4:44:fa:4c:e9:6d:41:
a9:5a:fb:01:02:af:9a:10:20:61:56:64:4d:de:95:
20:79:9d:8c:f2:3f:98:aa:f4:7f:e4:7b:8c:3c:05:
e4:64:50:ce:89:8b:a0:5e:df:09:4e:0f:2d:b9:97:
a1:95:12:bc:11:e7:f4:4f:9f:99:30:ff:7c:4f:ae:
02:5b:bf:c3:aa:ff:23:3e:6b:5c:21:6f:62:95:01:
fd:20:01:a0:97:2a:79:91:f0:3e:4f:72:da:d7:35:
5c:93:e0:f0:4f:f9:c7:b4:5d:a0:fd:45:a5:d8:ae:
5f:a5:e4:84:91:1b:84:05:0e:08:a8:63:f3:aa:44:
4f:bc:f3:36:39:92:85:c5:1b:7f:37:6e:a6:27:c7:
cd:04:52:69:64:b4:18:cd:20:8b:46:74:8b:c2:28:
25:bf:d8:d5:db:b2:08:20:e8:b9:84:c2:12:d9:93:
e1:b1:91:5d:cd:ee:1d:e3:23:a4:cf:4f:f3:d8:b2:
39:fe:63:a3:3a:0c:9c:48:0c:47:71:c4:a1:72:a8:
86:90:bc:e5:c5:a7:09:0b:8f:6c:bf:60:30:e1:e8:
02:24:51:40:cf:17:03:a8:0a:3a:ac:8f:17:2b:54:
7c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:89:3D:AD:C1:2F:20:2A:9E:59:9C:6E:20:28:9A:37:95:37:67:58
X509v3 Authority Key Identifier:
keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/pok9rcEvICqeWZxuICiaN5U3Z1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.11.0/24
Signature Algorithm: sha256WithRSAEncryption
68:a0:a1:49:94:f9:60:1e:09:82:76:09:0e:b1:95:0d:5c:ad:
95:aa:c7:88:b3:41:bf:66:f9:1f:07:fe:4b:85:40:85:2d:ab:
ed:b4:b6:86:6d:52:d4:74:bd:39:26:0a:54:66:1d:9a:c9:29:
0d:8f:4c:b0:6a:bd:11:c4:64:1f:c8:7a:ea:af:47:e8:1f:e7:
a6:53:20:0d:ba:88:21:d8:3c:97:b1:3b:bd:c0:4b:97:75:4d:
a0:4d:1c:61:1f:cf:92:02:c4:dd:07:8a:60:d5:3c:f3:ae:a6:
fe:e7:ac:dd:4a:40:16:90:0b:37:85:c6:f3:b0:be:d8:01:c7:
e5:b9:75:4e:8b:7d:4d:dd:cb:9a:6f:dd:60:fc:aa:6b:8d:24:
73:6e:57:6f:17:45:a8:0f:a4:ee:ec:ca:48:8c:6a:c4:23:35:
e3:88:d2:29:57:10:f6:87:74:ff:8a:6f:02:66:52:fc:42:d6:
ca:76:be:e5:85:ca:f6:9d:96:c3:46:67:d4:09:c4:12:c9:e1:
db:d2:0d:fd:74:39:24:d5:df:b8:b8:c9:9d:d7:e3:31:63:c2:
26:8b:d0:18:da:dd:d7:07:79:ad:01:cd:d8:00:08:3e:cb:7b:
4b:d0:1c:e2:bb:2c:13:9d:95:51:aa:31:d3:2c:1e:58:d8:97:
88:f8:6a:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:17 2024 by rpki-client on console-fra.rpki-client.org