Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/1tYJZMMXpz6_Shy6KKih0rIcqI0.roa
File: 1tYJZMMXpz6_Shy6KKih0rIcqI0.roa (raw, json)
Hash identifier: D7F+C3te7bslf3Nv53ElcIaLsgSLqIf3TY/ybB/orwE=
Subject key identifier: D6:D6:09:64:C3:17:A7:3E:BF:4A:1C:BA:28:A8:A1:D2:B2:1C:A8:8D
Certificate issuer: /CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Certificate serial: 0280E842
Authority key identifier: BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/1tYJZMMXpz6_Shy6KKih0rIcqI0.roa
Signing time: Sat 01 Jan 2022 15:55:22 +0000
ROA not before: Sat 01 Jan 2022 15:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211650
IP address blocks: 185.251.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42002498 (0x280e842)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Validity
Not Before: Jan 1 15:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6d60964c317a73ebf4a1cba28a8a1d2b21ca88d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ec:c1:53:ec:77:7e:ea:38:47:10:74:4e:25:
02:ac:41:39:11:ae:8f:44:63:05:4d:2e:56:87:97:
f2:1d:99:ae:fb:68:b0:96:5e:17:00:8b:71:b8:21:
66:2e:bb:ef:02:d7:e0:f4:a9:55:b8:54:12:0a:57:
16:0d:ec:cd:00:39:2c:00:c1:e2:03:7f:b3:10:e4:
8a:ce:6c:bb:3e:07:c2:d5:cd:8d:60:29:f2:c3:fb:
f2:e3:a4:f0:f4:29:14:ee:ae:44:bc:3c:cd:8f:0a:
a1:87:27:41:04:3b:a8:74:78:7e:0b:bb:ea:d5:1b:
ea:f8:b1:db:6f:07:1d:de:68:b1:98:6e:23:e8:ad:
fe:c1:3b:04:e4:65:3a:01:50:60:98:20:8d:95:67:
ab:c7:34:3f:24:37:61:52:c5:21:7d:1c:52:f7:b0:
fb:ea:11:df:ac:2f:7b:61:8a:f2:36:50:eb:d1:fa:
5c:f1:a0:c2:02:fd:4f:e5:96:21:9f:b6:fa:c0:31:
62:b9:0b:e4:ec:97:66:20:c1:56:08:dd:c6:bb:1f:
f6:4c:f7:03:0a:e0:f5:09:0c:6e:47:ba:ea:d7:56:
6a:17:42:10:c3:3c:60:02:19:b9:ae:0d:ab:89:15:
35:ec:2c:20:21:06:f7:7c:d4:b2:6f:43:c8:39:6c:
34:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:D6:09:64:C3:17:A7:3E:BF:4A:1C:BA:28:A8:A1:D2:B2:1C:A8:8D
X509v3 Authority Key Identifier:
keyid:BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/1tYJZMMXpz6_Shy6KKih0rIcqI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vxB-B5UsBpNYzT-CquzrTGlIPKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.70.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:e2:6b:86:8a:6b:13:f8:8c:70:e0:45:69:0e:b7:09:c9:08:
d9:66:c9:ee:46:33:8e:6a:f4:13:5d:54:b6:99:2e:f3:8e:66:
18:ce:5e:7c:b5:55:e2:23:5c:30:8a:f7:24:32:11:5d:6a:11:
cd:96:04:75:ac:82:6c:16:3e:55:86:f0:08:6e:f4:35:a6:05:
35:78:19:f2:30:7d:df:11:54:b6:19:06:0e:dd:58:a0:b2:61:
6f:8b:62:7d:a3:1e:19:c7:98:87:e6:3a:71:1e:22:51:85:08:
53:2a:eb:5e:3f:c5:73:6c:52:a8:c5:2c:0a:82:16:b3:a3:5c:
79:a2:83:8b:84:cd:db:41:c1:67:84:63:00:c4:e7:7b:5e:21:
a4:01:ff:a2:07:2d:d5:87:b8:5f:a4:ff:01:83:2f:84:17:fd:
bd:17:eb:c1:63:8d:46:4f:78:1f:63:16:0f:95:38:ab:77:a7:
e8:65:fc:ac:d2:75:d5:6b:62:93:dd:fd:cc:bd:d6:61:62:f5:
ab:48:fe:bf:07:f2:82:4b:24:1e:fd:9b:6a:df:09:36:c3:98:
fe:77:d6:93:3e:bc:f6:a4:52:13:e2:a5:64:3b:8a:70:ef:2f:
b6:ce:24:1b:a6:1d:43:a8:cc:a9:9f:20:08:5c:fd:37:d7:66:
54:f8:1e:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:36 2024 by rpki-client on console-ams.rpki-client.org