Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/acfcb6-d78a-448a-a761-dd3b4f8381c4/1/_QjXYheumefuiiDV0OYzgtmxfVE.roa
File: _QjXYheumefuiiDV0OYzgtmxfVE.roa (raw, json)
Hash identifier: vASVg1XafVhwJU2aV0yguK+MSsiLsoLouxLjErTIbGM=
Subject key identifier: FD:08:D7:62:17:AE:99:E7:EE:8A:20:D5:D0:E6:33:82:D9:B1:7D:51
Certificate issuer: /CN=509df728d1b46634054972d2945fda58073b5762
Certificate serial: 09258E85
Authority key identifier: 50:9D:F7:28:D1:B4:66:34:05:49:72:D2:94:5F:DA:58:07:3B:57:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJ33KNG0ZjQFSXLSlF_aWAc7V2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/acfcb6-d78a-448a-a761-dd3b4f8381c4/1/_QjXYheumefuiiDV0OYzgtmxfVE.roa
Signing time: Mon 21 Feb 2022 23:06:16 +0000
ROA not before: Mon 21 Feb 2022 23:06:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59510
IP address blocks: 185.1.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153456261 (0x9258e85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=509df728d1b46634054972d2945fda58073b5762
Validity
Not Before: Feb 21 23:06:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd08d76217ae99e7ee8a20d5d0e63382d9b17d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:81:f0:c1:1f:15:48:65:31:fc:f5:6a:97:3c:
f3:1f:15:e7:01:fc:a4:77:70:1b:ec:e5:d7:9e:e3:
19:fe:b8:62:f8:7e:cd:59:5d:b0:9a:70:ae:fe:19:
2c:0c:c1:01:3c:ee:b2:ac:52:11:85:10:46:90:24:
8c:63:f2:5d:7f:eb:3c:4e:dd:53:7d:04:c3:29:bd:
05:a8:1b:ed:cf:96:19:ea:8b:65:cb:35:9d:f1:ca:
46:ec:8b:2d:4a:15:c4:cf:41:bf:a7:60:7e:26:a0:
6d:de:60:41:97:55:c9:ff:83:d9:dc:c4:a1:7a:3d:
9c:a8:67:64:ed:d8:af:33:1a:c9:8e:54:5b:93:4d:
f5:76:50:d4:df:17:a9:f3:41:ae:fb:77:55:61:f1:
c1:32:76:de:35:77:0f:42:e9:74:02:fb:8f:49:93:
5f:9f:ee:76:bd:12:33:89:f0:2a:53:f9:e9:85:44:
7f:de:ef:36:74:42:1b:5e:1a:2a:c0:f8:34:e9:01:
13:aa:c0:4d:cc:8b:b7:4c:b5:26:79:a6:9a:a8:e3:
16:91:cb:4d:93:b1:ff:8e:e8:cc:18:2d:26:f7:3e:
8f:ea:35:78:ad:88:3d:c7:73:be:ed:9e:6e:34:56:
42:aa:86:90:a9:57:8c:17:d0:47:ca:3a:17:91:1f:
55:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:08:D7:62:17:AE:99:E7:EE:8A:20:D5:D0:E6:33:82:D9:B1:7D:51
X509v3 Authority Key Identifier:
keyid:50:9D:F7:28:D1:B4:66:34:05:49:72:D2:94:5F:DA:58:07:3B:57:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJ33KNG0ZjQFSXLSlF_aWAc7V2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/acfcb6-d78a-448a-a761-dd3b4f8381c4/1/_QjXYheumefuiiDV0OYzgtmxfVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/acfcb6-d78a-448a-a761-dd3b4f8381c4/1/UJ33KNG0ZjQFSXLSlF_aWAc7V2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.221.0/24
Signature Algorithm: sha256WithRSAEncryption
61:ff:fd:11:0d:bf:c4:54:e4:46:43:55:43:72:1a:e5:34:ac:
16:21:b8:2c:5f:79:c6:cb:c4:aa:c6:ad:7e:eb:21:9a:ac:a9:
fd:ff:08:e9:10:61:ac:e7:eb:7d:93:d0:6f:46:57:50:8e:46:
d0:4a:0d:7c:2d:6c:6f:02:3d:6a:55:68:2d:8a:b9:e5:71:17:
42:15:18:6c:ae:c4:5d:2f:53:70:1c:ad:23:9f:ea:d4:79:68:
2c:c5:12:ff:2d:ff:f0:76:93:7f:38:27:bf:f2:bd:b8:9c:7d:
31:e8:83:0b:34:37:86:e7:f3:a6:8d:a9:05:b1:8b:c2:2e:a7:
2c:7a:ee:48:2f:92:85:1c:7d:2e:90:96:23:01:c7:04:e4:09:
5a:e6:b2:a2:28:af:c6:be:59:3f:c1:61:d1:6e:26:c7:3e:58:
de:fe:56:c8:12:96:ef:2b:49:cb:ff:a6:ee:aa:3a:5b:bb:59:
ff:27:d2:d8:25:50:c4:a2:75:cb:c1:a8:f3:55:18:c2:ea:30:
60:78:4e:66:a7:cd:aa:3a:ba:7e:43:b5:05:60:78:97:7c:53:
ed:48:e0:43:65:81:44:c4:97:a5:dd:bb:88:ed:7e:ab:06:5c:
2a:7f:27:08:51:80:cf:b7:67:b0:f6:e1:14:ba:fb:9c:c4:1d:
10:4b:25:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:09 2024 by rpki-client on console-ams.rpki-client.org