Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/bL5pAy9d581GgRs4SridX5obIsM.roa
File: bL5pAy9d581GgRs4SridX5obIsM.roa (raw, json)
Hash identifier: hS3o/GfugoLPfkJ7+ZVxGlvsDaSymNrMljhTmf499ps=
Subject key identifier: 6C:BE:69:03:2F:5D:E7:CD:46:81:1B:38:4A:B8:9D:5F:9A:1B:22:C3
Certificate issuer: /CN=66de1d9dcdb25c1e532c5c9b69dfa757e306210e
Certificate serial: 32856273
Authority key identifier: 66:DE:1D:9D:CD:B2:5C:1E:53:2C:5C:9B:69:DF:A7:57:E3:06:21:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt4dnc2yXB5TLFybad-nV-MGIQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/bL5pAy9d581GgRs4SridX5obIsM.roa
Signing time: Sat 01 Jan 2022 16:06:46 +0000
ROA not before: Sat 01 Jan 2022 16:06:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64426
IP address blocks: 185.123.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 847602291 (0x32856273)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66de1d9dcdb25c1e532c5c9b69dfa757e306210e
Validity
Not Before: Jan 1 16:06:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cbe69032f5de7cd46811b384ab89d5f9a1b22c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d8:f3:55:2d:54:31:9c:f8:2b:ce:6e:e2:a8:
bf:08:b2:0e:bf:af:94:34:5c:37:7f:50:fa:bb:42:
d2:e5:c4:09:7a:39:84:d0:99:6f:60:f9:da:55:99:
5b:96:53:f1:78:86:e1:26:33:ac:d4:35:b0:ad:04:
0a:d2:63:ee:96:36:a0:d6:ae:81:14:ff:7a:73:84:
4d:48:64:a1:05:db:f5:a3:aa:79:64:4c:b3:23:84:
3c:f0:8e:70:8c:9f:49:58:61:e1:b3:f9:82:2c:1c:
42:f8:1f:02:86:76:7f:c0:e1:5d:bd:d6:9e:f8:d6:
90:5f:fd:8d:a5:a5:7d:fc:2a:ad:78:5e:ed:7c:44:
34:16:b6:0b:c6:2e:f9:a8:09:1b:85:e0:b2:b0:5e:
dd:b7:21:72:f0:37:5a:8c:5a:ed:1e:7b:87:f1:7e:
50:c0:2b:ff:6a:41:14:b6:2e:ee:4e:63:c3:3e:c7:
92:ce:bb:e5:b1:95:c9:3b:b3:26:34:22:bb:a1:8f:
69:df:67:b5:58:61:90:f5:0e:60:2f:68:30:5f:3f:
85:52:52:57:54:7e:5b:53:79:9c:19:46:7a:63:d3:
c2:f0:f2:22:12:f8:f4:85:d6:01:0b:3c:b9:c7:b7:
b6:9d:c2:4a:53:ff:76:1d:61:dc:66:a7:af:f9:40:
7a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:BE:69:03:2F:5D:E7:CD:46:81:1B:38:4A:B8:9D:5F:9A:1B:22:C3
X509v3 Authority Key Identifier:
keyid:66:DE:1D:9D:CD:B2:5C:1E:53:2C:5C:9B:69:DF:A7:57:E3:06:21:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt4dnc2yXB5TLFybad-nV-MGIQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/bL5pAy9d581GgRs4SridX5obIsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/Zt4dnc2yXB5TLFybad-nV-MGIQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.25.0/24
Signature Algorithm: sha256WithRSAEncryption
98:23:98:bd:9b:31:fa:61:76:8c:09:be:d7:3b:5e:75:49:68:
d7:70:fb:78:e5:17:1b:df:c4:cb:60:5a:05:7e:e0:43:65:b8:
9d:14:65:41:1b:de:68:93:a2:90:b7:c4:9c:e5:2c:9b:19:d1:
df:a7:f1:0b:77:8f:ec:b1:b2:de:1f:05:40:a8:31:a5:63:0b:
a7:ca:cd:b0:50:77:cf:0c:f5:0d:51:a8:fc:5c:40:9c:7a:96:
67:df:58:d3:59:c9:63:ec:59:86:a3:c3:29:a1:6a:c7:2b:d3:
17:10:a5:bb:be:d6:e5:f3:21:d8:34:6f:c1:78:1b:df:0c:9a:
a6:4d:9a:83:0d:67:b5:3b:95:1a:73:f1:c4:0b:d9:83:04:17:
08:25:db:c4:28:ac:ee:b9:71:27:b6:70:25:e6:b1:66:b1:50:
7d:61:3e:d5:85:2c:bf:35:2f:2f:94:e7:81:6f:43:ef:0d:04:
8b:73:ea:b9:3e:a8:a1:3c:b6:ce:e3:df:04:67:0a:9d:ea:c6:
54:0e:04:14:79:db:bd:46:e9:2e:38:dd:69:49:ea:a2:18:39:
cc:e5:5c:a2:84:40:37:77:7b:28:4e:78:0e:97:5c:60:24:e5:
9a:0f:bd:35:01:31:ec:a5:1a:67:67:e8:dc:03:15:e3:21:af:
ad:d6:4a:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:47 2024 by rpki-client on console-ams.rpki-client.org