Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/tlytpEcICRv6AlpqU_7NK3W3RBs.roa
File: tlytpEcICRv6AlpqU_7NK3W3RBs.roa (raw, json)
Hash identifier: 2a0yAo1WMYPJ2tM/1uAlCq51EjBfJ46hxgwNGczJA7U=
Subject key identifier: B6:5C:AD:A4:47:08:09:1B:FA:02:5A:6A:53:FE:CD:2B:75:B7:44:1B
Certificate issuer: /CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Certificate serial: 0ACFC8B0
Authority key identifier: FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/tlytpEcICRv6AlpqU_7NK3W3RBs.roa
Signing time: Mon 21 Feb 2022 11:49:08 +0000
ROA not before: Mon 21 Feb 2022 11:49:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47352
IP address blocks: 185.1.236.0/24 maxlen: 24
2001:7f8:126::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181389488 (0xacfc8b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Validity
Not Before: Feb 21 11:49:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b65cada44708091bfa025a6a53fecd2b75b7441b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:81:39:c8:7f:65:7a:78:c5:43:26:3e:b5:78:
40:ed:0c:da:d8:c6:ae:c3:fd:d6:95:dd:dd:d4:b7:
f8:60:06:61:59:a5:7f:1b:64:f0:4b:bc:04:1c:64:
d9:4a:0f:bf:e0:55:d3:3a:83:0c:b5:7a:82:f8:8e:
93:2b:7c:c5:3b:b5:17:a4:35:0a:6b:48:9c:90:74:
b6:5e:7b:cb:f2:b2:13:79:f0:f4:81:8d:aa:8c:d0:
66:b9:cd:9a:07:fc:8a:fd:41:cc:1f:62:d7:e9:b0:
a5:f7:fd:91:08:c8:ce:30:e9:79:1c:89:ae:45:b5:
b5:93:b2:c0:26:6d:44:e7:38:15:19:9b:4a:03:46:
43:d9:f4:7c:93:c4:e3:62:d3:be:17:10:9c:72:a0:
d8:1d:ad:e2:59:ee:21:c3:57:0b:61:c4:f9:03:03:
dd:4f:ee:df:b2:de:d7:4d:dc:a6:ca:68:0f:ad:fe:
9e:fc:2c:6b:73:13:1b:1f:ab:0b:5c:2d:0c:29:2f:
8c:82:01:26:18:72:31:e0:52:2f:3e:d0:7e:b4:cc:
49:f6:40:19:50:df:75:42:62:bd:d7:f5:fe:61:60:
c7:e3:91:6c:8a:42:8b:fe:79:08:ee:f1:06:92:72:
4c:15:2c:a8:eb:a5:86:cc:fc:d8:c0:cd:39:48:db:
d0:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:5C:AD:A4:47:08:09:1B:FA:02:5A:6A:53:FE:CD:2B:75:B7:44:1B
X509v3 Authority Key Identifier:
keyid:FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/tlytpEcICRv6AlpqU_7NK3W3RBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.236.0/24
IPv6:
2001:7f8:126::/48
Signature Algorithm: sha256WithRSAEncryption
59:75:ff:63:87:11:00:4e:2d:35:b5:35:40:4f:bf:65:e0:06:
05:19:5c:1e:a3:74:fc:86:ec:e6:ea:38:0d:8a:70:73:03:b4:
9c:fd:a4:01:e2:73:b1:ac:b8:01:e1:a1:60:b5:66:a5:8d:05:
1f:44:f6:24:4a:4b:7f:37:58:39:2a:25:a8:07:5d:21:51:42:
4f:3e:46:32:78:3d:89:db:e4:fc:36:4c:93:ae:14:72:94:a5:
c8:54:d5:6c:2e:9b:d4:40:b6:74:a4:69:04:62:bf:a1:f9:0a:
73:dd:35:01:da:49:9e:4e:ef:2a:51:79:aa:cc:73:9a:14:01:
e9:fe:fa:50:c5:24:cf:dc:c4:b4:39:79:ac:fb:80:80:04:03:
f7:0f:7e:be:83:86:1a:51:7f:eb:79:f4:40:09:08:d9:34:51:
44:63:4e:bf:e7:4a:34:5b:fe:fb:8f:16:d6:76:db:77:3c:98:
cb:00:4d:11:4a:75:c3:1f:0f:2c:d7:61:b3:79:6f:62:3c:6e:
63:8d:13:a6:a4:78:f6:3b:3f:a9:94:07:34:6b:02:1a:93:0d:
cc:0b:21:ad:aa:35:08:ec:0f:94:7a:5b:b0:07:b9:b4:05:63:
e1:df:bf:df:c8:0f:e0:9e:f9:18:79:f1:e6:71:fc:15:26:e1:
40:20:24:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:40 2024 by rpki-client on console-ams.rpki-client.org