Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/60c7c1-8f0f-4b80-8630-3e4f35b66461/1/bLTtfRLw4hN8EUwfNoWsQh6iZGw.roa
File: bLTtfRLw4hN8EUwfNoWsQh6iZGw.roa (raw, json)
Hash identifier: AqUR/q/0ZXdMDSX/sCWihmtuog/Miq65MaJ6NT56Hf8=
Subject key identifier: 6C:B4:ED:7D:12:F0:E2:13:7C:11:4C:1F:36:85:AC:42:1E:A2:64:6C
Certificate issuer: /CN=124f16479e4b72aca589baa01039fc8e923b4cc3
Certificate serial: 0183419967484ECDD6C215944E9510457867
Authority key identifier: 12:4F:16:47:9E:4B:72:AC:A5:89:BA:A0:10:39:FC:8E:92:3B:4C:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ek8WR55LcqylibqgEDn8jpI7TMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/60c7c1-8f0f-4b80-8630-3e4f35b66461/1/bLTtfRLw4hN8EUwfNoWsQh6iZGw.roa
Signing time: Thu 15 Sep 2022 14:41:55 +0000
ROA not before: Thu 15 Sep 2022 14:41:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58010
IP address blocks: 185.71.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:41:99:67:48:4e:cd:d6:c2:15:94:4e:95:10:45:78:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=124f16479e4b72aca589baa01039fc8e923b4cc3
Validity
Not Before: Sep 15 14:41:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cb4ed7d12f0e2137c114c1f3685ac421ea2646c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ee:de:e3:f8:19:9c:8b:8a:36:02:df:e0:43:
0f:a9:58:f9:86:6b:92:f5:01:fd:81:7f:72:f1:c9:
ad:1c:ad:50:21:23:e8:56:90:7c:25:15:2c:62:3b:
d4:f3:91:94:d6:3b:45:95:ac:76:a7:37:85:1c:37:
a8:2c:94:af:4f:35:51:5c:c3:f0:ea:35:be:5c:8c:
04:3e:16:91:7f:90:4b:af:02:02:a5:eb:c9:c8:4b:
12:37:98:ea:c8:c6:e7:c6:ee:22:92:79:3d:dd:1d:
f4:b6:49:f8:f1:a5:cc:16:c2:f0:b4:75:88:be:8c:
8f:7c:99:2d:b5:26:4b:7a:b2:ee:d7:b4:6b:cb:e5:
ac:e2:89:5c:56:fc:83:a0:da:6f:06:5b:79:7e:8a:
b4:2c:95:3f:ef:15:16:46:a5:d5:cd:61:88:05:65:
31:a0:d4:06:05:3f:ee:49:2b:c4:37:b7:8a:a1:2d:
a6:25:fe:58:6e:01:c9:5e:6e:b4:4d:a6:ca:e0:05:
cb:79:d8:eb:98:53:54:a9:fc:f2:1b:9b:53:cc:0d:
3e:fe:55:fd:fe:67:5c:40:eb:e4:8b:17:6a:cd:38:
53:0f:29:0f:51:f4:8f:bf:ca:ef:fd:98:76:5f:35:
7c:d0:67:84:7a:9a:05:b2:ef:e8:4c:a1:13:70:60:
2b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B4:ED:7D:12:F0:E2:13:7C:11:4C:1F:36:85:AC:42:1E:A2:64:6C
X509v3 Authority Key Identifier:
keyid:12:4F:16:47:9E:4B:72:AC:A5:89:BA:A0:10:39:FC:8E:92:3B:4C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ek8WR55LcqylibqgEDn8jpI7TMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/60c7c1-8f0f-4b80-8630-3e4f35b66461/1/bLTtfRLw4hN8EUwfNoWsQh6iZGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/60c7c1-8f0f-4b80-8630-3e4f35b66461/1/Ek8WR55LcqylibqgEDn8jpI7TMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.126.0/24
Signature Algorithm: sha256WithRSAEncryption
67:13:14:ec:35:9f:70:6d:5c:10:ec:a8:7b:09:ec:4a:9e:e2:
da:85:04:a8:d5:ed:f2:eb:00:df:4a:88:38:62:92:fb:9b:1f:
c2:08:a1:28:e7:eb:a1:3d:6b:94:5a:22:09:54:7a:7f:22:6c:
df:c0:e7:01:0c:56:5d:c1:a2:5b:18:90:0b:e2:16:20:85:5f:
17:ad:fd:3d:f1:35:d9:77:89:b1:b5:fb:64:0b:d8:03:de:a6:
86:d0:1e:a4:f0:6b:0f:c9:3a:63:0f:09:26:1d:ec:59:ca:b0:
d7:d5:af:a0:d5:ac:33:52:36:af:ae:34:a7:73:3a:5c:de:79:
26:43:c0:78:f9:27:b1:c8:46:97:72:00:bf:a8:02:01:18:f5:
98:ef:19:2f:43:b7:18:cf:75:ba:b5:0a:27:65:e2:29:a8:8a:
70:e8:9c:57:d0:4f:54:6c:74:db:4f:d1:9b:bf:0f:51:ec:15:
b0:c0:ba:5f:98:43:ff:95:9c:dd:27:b8:f9:56:a7:50:f4:08:
2f:54:f1:ce:2d:95:b0:79:e2:d1:ff:1b:85:30:41:40:a9:13:
12:6b:71:9f:61:c9:a2:63:ab:68:fa:b7:99:4d:23:51:64:9b:
f6:da:3a:fe:06:c9:bb:52:7c:8a:cf:e0:0d:b0:25:ae:e3:c5:
fa:87:de:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:22 2025 by rpki-client