Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/53d56a-096e-458a-9a94-08a68632a63a/1/DyUkJJ6U0LgiEVQo75HcwFIDlyc.roa
File: DyUkJJ6U0LgiEVQo75HcwFIDlyc.roa (raw, json)
Hash identifier: KEetPHE4F9p5N5EHeyPHwUprp4MdWbh3ZsfvqGApRv4=
Subject key identifier: 0F:25:24:24:9E:94:D0:B8:22:11:54:28:EF:91:DC:C0:52:03:97:27
Certificate issuer: /CN=709d69957d333432accac810231e289388e302e2
Certificate serial: 37A742B2
Authority key identifier: 70:9D:69:95:7D:33:34:32:AC:CA:C8:10:23:1E:28:93:88:E3:02:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cJ1plX0zNDKsysgQIx4ok4jjAuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/53d56a-096e-458a-9a94-08a68632a63a/1/DyUkJJ6U0LgiEVQo75HcwFIDlyc.roa
Signing time: Mon 20 Jun 2022 10:56:44 +0000
ROA not before: Mon 20 Jun 2022 10:56:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197183
IP address blocks: 185.114.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933708466 (0x37a742b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=709d69957d333432accac810231e289388e302e2
Validity
Not Before: Jun 20 10:56:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f2524249e94d0b822115428ef91dcc052039727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:76:0a:ce:5c:40:44:ca:12:2d:74:0f:71:23:
a9:38:6d:76:57:1d:00:24:e7:0a:88:28:ab:9a:89:
7d:6d:af:eb:18:0b:55:a6:10:38:78:7f:0f:c1:14:
cb:df:48:c9:03:46:10:1a:b2:67:2f:b5:e4:6d:48:
f8:10:76:43:b2:23:75:b7:eb:6c:39:ae:f6:5b:a2:
d1:28:72:ce:84:68:1a:1b:b0:07:f2:1e:6a:b4:a1:
38:65:65:47:e3:dd:db:cd:74:a8:1a:18:d9:f1:29:
a6:68:80:7b:2d:5c:6f:79:67:10:a1:7a:9e:da:2b:
a8:c5:2e:ae:7f:03:5a:87:d4:91:fc:e5:c2:d0:ed:
b9:3a:da:09:4d:18:a6:7c:43:8b:84:36:3e:65:0e:
7b:ad:72:66:8c:4f:65:41:2a:8f:d1:0a:0a:58:b5:
0b:fb:1b:5c:62:62:08:3c:97:3d:72:06:c8:3b:8a:
ae:e4:54:54:e8:3a:b4:89:be:f7:b6:71:57:21:b4:
54:8f:7f:9b:3e:16:19:66:05:7e:49:cb:3e:9c:74:
b4:65:9e:d4:cd:b2:db:2c:bf:4d:91:63:8c:71:1a:
47:58:10:77:30:17:87:f4:00:40:14:e8:02:2e:73:
cf:78:14:0a:29:5b:86:ed:59:1b:b9:5d:f8:c4:1b:
72:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:25:24:24:9E:94:D0:B8:22:11:54:28:EF:91:DC:C0:52:03:97:27
X509v3 Authority Key Identifier:
keyid:70:9D:69:95:7D:33:34:32:AC:CA:C8:10:23:1E:28:93:88:E3:02:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cJ1plX0zNDKsysgQIx4ok4jjAuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/53d56a-096e-458a-9a94-08a68632a63a/1/DyUkJJ6U0LgiEVQo75HcwFIDlyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/53d56a-096e-458a-9a94-08a68632a63a/1/cJ1plX0zNDKsysgQIx4ok4jjAuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.175.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:72:f9:6f:c4:fb:4a:8e:8c:c1:b7:09:fb:46:12:ff:a5:ce:
68:9b:be:dd:af:57:3e:d5:80:9b:76:42:41:ff:7d:f3:0e:a3:
e5:5c:3a:5a:06:3a:4d:38:ef:11:d3:89:30:20:7c:5d:24:f0:
15:57:10:d2:65:b7:f0:b6:c4:58:d7:ad:96:1b:dc:da:a7:c9:
ff:43:67:a1:f1:2e:e3:2d:91:31:4c:e5:51:0d:02:67:55:4c:
78:fe:12:f3:dc:e7:9e:88:10:9d:c7:be:9a:7e:f7:86:56:90:
a4:72:b5:fb:72:26:97:5e:b7:e1:b3:9a:1e:c5:de:99:a0:ba:
0b:be:07:23:8e:61:df:89:9f:ff:39:94:2f:33:ab:ff:0e:39:
f3:a2:b8:11:7a:11:ba:b2:fc:e4:bb:3d:a4:70:87:f5:29:3d:
3b:30:46:4d:7b:b2:32:13:69:38:54:70:25:e5:99:cf:24:a3:
e2:75:73:3d:e0:d3:c6:51:52:a5:bd:6e:64:a5:3f:db:a4:2c:
9f:80:1d:0b:80:59:0d:29:01:d0:a7:a7:69:7a:ef:d4:53:fc:
5e:11:a7:4d:0e:61:55:28:88:ad:b3:f7:41:59:30:f5:86:86:
0a:5f:bd:47:18:d0:af:50:5d:e4:e8:62:13:2c:65:b4:20:af:
89:4f:c7:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:47 2024 by rpki-client on console-fra.rpki-client.org