Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/k0RfEd4M1ClawDGzn4Pxo7vnCng.roa
File: k0RfEd4M1ClawDGzn4Pxo7vnCng.roa (raw, json)
Hash identifier: +YhAJJ6d2Bp7XoFZyQQ15wEF6e0ZtvYlNLZsAXFaxkE=
Subject key identifier: 93:44:5F:11:DE:0C:D4:29:5A:C0:31:B3:9F:83:F1:A3:BB:E7:0A:78
Certificate issuer: /CN=59877720c014688494ea6910c83474de13e99802
Certificate serial: 01A8A429
Authority key identifier: 59:87:77:20:C0:14:68:84:94:EA:69:10:C8:34:74:DE:13:E9:98:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WYd3IMAUaISU6mkQyDR03hPpmAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/k0RfEd4M1ClawDGzn4Pxo7vnCng.roa
Signing time: Sat 01 Jan 2022 12:05:11 +0000
ROA not before: Sat 01 Jan 2022 12:05:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50597
IP address blocks: 185.144.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27829289 (0x1a8a429)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59877720c014688494ea6910c83474de13e99802
Validity
Not Before: Jan 1 12:05:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93445f11de0cd4295ac031b39f83f1a3bbe70a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:24:c0:27:5c:7b:c8:dd:88:c4:b9:c2:92:e0:
7f:dd:35:56:83:92:12:d9:35:f4:b0:b8:a3:78:7a:
b7:80:be:1d:69:06:05:76:c4:d3:32:a4:39:24:85:
7b:c9:30:6b:ac:0b:ac:3a:4a:6c:78:bc:96:16:c3:
2d:90:38:7d:37:26:e4:48:9a:54:8f:a2:75:3a:a2:
f0:c7:a9:68:e8:8a:45:a8:35:f5:8c:08:4c:f6:dd:
27:bf:7b:89:28:b5:69:c6:10:37:0f:f3:ee:e7:a8:
d7:64:c7:8c:74:35:c9:33:d7:ad:ef:27:e0:ed:1d:
95:4b:67:6f:f1:91:f6:c3:d1:df:98:55:43:82:29:
16:d8:cd:aa:44:69:ca:63:53:43:85:95:76:1b:92:
9c:8b:36:89:72:16:8e:a7:1d:36:ee:b3:70:9f:50:
01:b0:58:e2:dc:3e:72:57:f8:c6:a5:54:3a:61:77:
b0:b2:a5:16:95:36:91:25:b0:28:00:93:af:25:b2:
84:4d:9f:a1:37:11:65:f1:33:57:db:8b:1f:ee:34:
6d:b0:cd:08:f2:bf:01:4e:19:0c:de:7c:8c:a4:15:
2d:4a:13:04:66:b0:37:d8:d8:f2:c6:8a:1c:9a:32:
2f:6b:ab:a5:9b:00:b8:d3:a6:38:5d:ab:32:2f:5f:
86:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:44:5F:11:DE:0C:D4:29:5A:C0:31:B3:9F:83:F1:A3:BB:E7:0A:78
X509v3 Authority Key Identifier:
keyid:59:87:77:20:C0:14:68:84:94:EA:69:10:C8:34:74:DE:13:E9:98:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WYd3IMAUaISU6mkQyDR03hPpmAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/k0RfEd4M1ClawDGzn4Pxo7vnCng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/WYd3IMAUaISU6mkQyDR03hPpmAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.15.0/24
Signature Algorithm: sha256WithRSAEncryption
79:67:37:45:94:17:38:ed:9c:e0:df:ea:5e:2a:c6:7f:93:c9:
48:67:58:7d:02:6b:3e:ec:19:39:3d:d3:c1:04:45:88:4c:90:
7c:e9:ae:0c:97:37:51:d9:46:63:9a:6b:ad:2e:91:73:61:06:
bd:6b:18:07:d8:db:8a:d0:cb:53:60:d0:db:b3:55:8d:74:d7:
20:ba:dc:39:8a:35:3b:2d:f1:d5:9d:e4:e9:18:c8:00:ae:f0:
52:59:da:86:e0:6b:3b:45:c9:00:86:7c:e2:00:8b:f9:12:44:
83:3a:3d:f7:39:7c:ef:56:33:85:a9:f1:63:e5:48:65:a8:64:
32:18:6b:2c:9e:5e:41:87:6a:66:6d:a6:5f:50:da:34:a4:4a:
cc:e6:92:51:e1:ef:5a:69:f4:c2:84:01:79:f7:73:50:bf:e7:
da:c7:b9:33:53:73:75:fd:90:5c:fa:aa:a1:3a:9b:9b:9c:62:
8d:fc:1a:81:71:1b:91:50:6c:a7:0a:70:fe:6c:26:4d:51:d1:
ee:d4:51:e7:d5:04:46:19:96:09:51:91:86:1e:6a:e6:18:91:
2d:49:a4:7b:fe:7a:ab:33:53:8f:cc:e1:8a:6a:e9:3f:07:d1:
87:fd:06:56:8e:18:c8:8b:3f:62:d9:ee:21:93:11:62:91:8d:
4a:79:0c:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:13 2024 by rpki-client on console-fra.rpki-client.org