Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/7def13-c4cd-46a6-825f-42ea5514e722/1/sk1PlQgiyrZaYPlwAhuJT3uRIXw.roa
File: sk1PlQgiyrZaYPlwAhuJT3uRIXw.roa (raw, json)
Hash identifier: 1ryHhVbZlFhVX/BzQuH+VLNmPgnIeCS1SJVNztdgKfc=
Subject key identifier: B2:4D:4F:95:08:22:CA:B6:5A:60:F9:70:02:1B:89:4F:7B:91:21:7C
Certificate issuer: /CN=c556bccbdc9f2e4badc0a057ea08f7c748188b1f
Certificate serial: 02A39BD3
Authority key identifier: C5:56:BC:CB:DC:9F:2E:4B:AD:C0:A0:57:EA:08:F7:C7:48:18:8B:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xVa8y9yfLkutwKBX6gj3x0gYix8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/7def13-c4cd-46a6-825f-42ea5514e722/1/sk1PlQgiyrZaYPlwAhuJT3uRIXw.roa
Signing time: Sat 01 Jan 2022 07:57:45 +0000
ROA not before: Sat 01 Jan 2022 07:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 185.203.86.0/24 maxlen: 24
185.203.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44276691 (0x2a39bd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c556bccbdc9f2e4badc0a057ea08f7c748188b1f
Validity
Not Before: Jan 1 07:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b24d4f950822cab65a60f970021b894f7b91217c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a1:e5:87:a3:9d:dd:19:d3:46:bb:99:13:53:
78:26:a3:5a:93:80:d8:8e:a2:43:09:da:c0:b7:ff:
ff:a2:ca:21:03:42:8a:96:0a:a8:43:32:bc:c1:ec:
7b:86:e4:06:20:17:70:b1:29:c3:99:4c:dd:a6:15:
d6:a0:cd:28:5f:5d:71:70:cd:37:38:09:c9:b0:c9:
3a:43:3c:4f:ae:3a:4d:63:db:1e:3e:81:55:48:99:
a0:b0:dd:fa:18:6c:fb:eb:02:92:32:ce:e1:2c:a1:
7e:ae:b2:3f:fd:f1:2b:53:70:a0:c8:39:0d:29:c1:
ff:d9:f9:77:5b:22:ba:1d:78:73:25:a8:bb:3d:4c:
dc:04:1f:1c:58:86:30:de:43:87:95:58:a1:1e:40:
37:6b:49:95:87:04:33:8f:40:ed:59:08:96:60:a3:
bb:9a:d6:33:ce:cf:db:6a:61:b5:5a:e5:58:65:ae:
dc:e8:33:38:e1:4f:84:55:4c:0d:00:d6:77:46:16:
d8:8c:ee:ee:e5:61:1a:15:eb:bf:1f:d9:9f:85:e2:
19:5d:7a:24:58:8c:1f:ca:5e:32:0f:a7:d4:66:3d:
ea:62:44:05:d1:74:9c:b7:80:b0:f1:fc:87:5d:c4:
a4:10:60:7a:9d:d6:d2:44:27:29:40:ca:e8:12:67:
7f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:4D:4F:95:08:22:CA:B6:5A:60:F9:70:02:1B:89:4F:7B:91:21:7C
X509v3 Authority Key Identifier:
keyid:C5:56:BC:CB:DC:9F:2E:4B:AD:C0:A0:57:EA:08:F7:C7:48:18:8B:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xVa8y9yfLkutwKBX6gj3x0gYix8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7def13-c4cd-46a6-825f-42ea5514e722/1/sk1PlQgiyrZaYPlwAhuJT3uRIXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7def13-c4cd-46a6-825f-42ea5514e722/1/xVa8y9yfLkutwKBX6gj3x0gYix8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.86.0/23
Signature Algorithm: sha256WithRSAEncryption
78:16:71:86:9e:36:dd:58:25:63:ac:c8:0a:ff:8f:eb:1d:0f:
73:0b:66:d7:56:69:46:b5:6f:bd:ed:76:aa:72:6f:a3:d1:75:
74:44:62:0e:55:9c:76:4a:1e:27:1a:8b:73:7e:70:b5:15:b9:
37:ee:c1:8d:91:10:91:a4:ed:53:b0:3e:24:bc:de:6d:3f:a4:
91:aa:3c:54:2d:c4:df:2d:aa:8e:e9:d6:7d:d3:5b:38:3b:d3:
06:a7:33:b1:8b:ed:3a:fb:a1:a9:38:a8:fb:44:5f:25:0d:1b:
c9:9e:95:96:f6:01:a5:23:e6:dc:c6:a2:a1:db:69:b6:ed:01:
c5:fd:13:f7:1c:3e:2e:a7:24:0c:7e:cb:c3:09:8a:32:18:54:
64:18:0b:d6:1a:2a:d1:35:33:7b:d3:e3:9c:aa:7e:4b:31:ff:
19:6b:d2:1e:93:aa:89:b5:29:17:9a:b1:4d:fe:24:92:b8:c3:
2a:72:20:fa:ac:24:01:d7:a8:08:f6:e1:51:82:05:2f:0c:f3:
b2:d8:e0:23:8b:b9:30:3a:e0:d0:a7:4b:1d:1b:82:f3:00:10:
1a:3e:eb:f4:2d:d0:8a:7c:5e:f7:48:8c:20:e1:c1:4c:f6:b5:
11:0d:99:a5:6a:19:9a:a2:a6:1d:01:75:ed:f9:52:93:a7:fd:
b9:4f:d1:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:21 2024 by rpki-client on console-ams.rpki-client.org