Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/be6819-83bb-40e0-9d74-cfb0d0493c3a/1/y9V7IWQmexRdV_I0v8hl2meMNYM.roa
File: y9V7IWQmexRdV_I0v8hl2meMNYM.roa (raw, json)
Hash identifier: g3tznZNOHT+8taqEqI8NGJeVTCH6qWqmds1HJLy/Pf0=
Subject key identifier: CB:D5:7B:21:64:26:7B:14:5D:57:F2:34:BF:C8:65:DA:67:8C:35:83
Certificate issuer: /CN=540c4f742fd329a36fcd29c4eb984e5f49515d99
Certificate serial: 0181FC7FA39C771AC735063C548ADA4AA3E8
Authority key identifier: 54:0C:4F:74:2F:D3:29:A3:6F:CD:29:C4:EB:98:4E:5F:49:51:5D:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VAxPdC_TKaNvzSnE65hOX0lRXZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/be6819-83bb-40e0-9d74-cfb0d0493c3a/1/y9V7IWQmexRdV_I0v8hl2meMNYM.roa
Signing time: Thu 14 Jul 2022 11:37:12 +0000
ROA not before: Thu 14 Jul 2022 11:37:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60257
IP address blocks: 185.99.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fc:7f:a3:9c:77:1a:c7:35:06:3c:54:8a:da:4a:a3:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=540c4f742fd329a36fcd29c4eb984e5f49515d99
Validity
Not Before: Jul 14 11:37:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbd57b2164267b145d57f234bfc865da678c3583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f7:2f:cd:43:09:bc:fc:69:ac:82:45:f1:86:
4b:76:30:d6:71:c8:1d:45:33:59:a4:4e:80:d4:86:
5c:33:ab:f3:c6:78:34:53:2b:8d:4a:f0:d2:18:1f:
cf:aa:f1:d7:d8:57:17:bb:83:74:e1:68:1c:28:fd:
7a:39:41:cc:5f:4b:d0:a9:69:01:a6:a8:61:8c:f0:
73:06:58:16:cc:a1:73:56:6f:c1:66:af:45:4d:ac:
68:db:3b:b5:f7:b3:aa:c7:63:c2:e7:99:cb:0d:0e:
e7:a8:2a:42:52:1d:95:17:96:9f:2e:a2:fa:71:2e:
ff:b7:9c:e5:b1:17:a2:13:b1:91:fd:62:b4:93:e1:
be:a5:e7:ec:f5:65:53:dd:23:98:be:ce:14:54:ec:
25:da:ec:e7:97:c8:5e:9f:87:a1:f1:ac:24:a2:54:
32:ba:f1:d7:04:95:bf:36:67:1c:ca:d1:fb:34:a1:
6e:37:50:22:f2:9b:d1:3b:7f:23:44:4d:c9:26:d1:
37:48:f5:92:4f:06:c0:90:79:67:0b:38:79:9e:cb:
e3:6a:2c:45:4f:91:8a:ee:3d:cd:4a:1a:6f:04:e3:
da:e6:a9:d7:89:36:b2:af:ea:11:d4:31:75:23:a6:
56:25:e2:c4:bb:c4:2f:8d:db:7b:3d:07:7b:15:58:
bd:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:D5:7B:21:64:26:7B:14:5D:57:F2:34:BF:C8:65:DA:67:8C:35:83
X509v3 Authority Key Identifier:
keyid:54:0C:4F:74:2F:D3:29:A3:6F:CD:29:C4:EB:98:4E:5F:49:51:5D:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VAxPdC_TKaNvzSnE65hOX0lRXZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/be6819-83bb-40e0-9d74-cfb0d0493c3a/1/y9V7IWQmexRdV_I0v8hl2meMNYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/be6819-83bb-40e0-9d74-cfb0d0493c3a/1/VAxPdC_TKaNvzSnE65hOX0lRXZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.165.0/24
Signature Algorithm: sha256WithRSAEncryption
51:64:00:9d:f2:6b:3d:88:f4:d0:bb:92:24:80:10:62:a1:6d:
26:b7:65:94:c2:89:a0:44:01:4f:35:60:1d:fe:f5:06:88:37:
9b:c1:76:18:dd:b6:02:f0:5f:43:63:e1:b9:0f:bc:09:af:dd:
20:e9:90:fc:12:a2:2f:4c:f4:df:e9:bd:3f:35:ed:9f:53:6c:
9f:29:12:09:91:f9:8f:00:27:25:a0:f5:66:2a:d3:b7:bb:5c:
81:16:77:ee:91:9e:5b:5e:1f:0c:30:c1:f1:6c:f6:ab:26:6d:
e0:10:3d:d2:6a:29:c7:b4:b8:1f:eb:0a:cf:34:1c:1c:53:1a:
19:a6:40:29:e0:27:a2:26:59:c8:8c:79:26:9e:50:6e:0d:39:
36:86:89:bb:f1:fe:6a:21:a1:fd:76:2a:35:0e:a1:2e:22:7e:
b8:22:fb:2f:0d:74:25:99:c1:27:a2:78:db:3a:93:9d:a7:aa:
96:9a:d6:3a:b8:01:4e:f8:93:88:96:fc:92:9e:84:84:94:0f:
24:9c:fb:0d:70:d7:57:26:44:9e:d2:8c:d0:f5:7d:7f:73:db:
8c:28:d3:80:75:0f:ff:bb:6c:f6:fb:22:93:db:0e:0f:70:18:
42:e0:5b:a8:a2:4d:aa:32:7b:a5:92:18:a1:a2:ee:17:fd:96:
ad:55:c6:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:50 2024 by rpki-client on console-fra.rpki-client.org