Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/0ULVYf6fvYIgd1ejprH7j3tTfhc.roa
File: 0ULVYf6fvYIgd1ejprH7j3tTfhc.roa (raw, json)
Hash identifier: Fi6q0FGk0O5uQsXQUmqnWkHR86yw7KaC+te9CYB9+LY=
Subject key identifier: D1:42:D5:61:FE:9F:BD:82:20:77:57:A3:A6:B1:FB:8F:7B:53:7E:17
Certificate issuer: /CN=bc4e21b27d6f84ebdd888c68e79ce555c846dacb
Certificate serial: 08B36E8B
Authority key identifier: BC:4E:21:B2:7D:6F:84:EB:DD:88:8C:68:E7:9C:E5:55:C8:46:DA:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vE4hsn1vhOvdiIxo55zlVchG2ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/0ULVYf6fvYIgd1ejprH7j3tTfhc.roa
Signing time: Sat 01 Jan 2022 02:50:38 +0000
ROA not before: Sat 01 Jan 2022 02:50:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.151.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145976971 (0x8b36e8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc4e21b27d6f84ebdd888c68e79ce555c846dacb
Validity
Not Before: Jan 1 02:50:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d142d561fe9fbd82207757a3a6b1fb8f7b537e17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:97:95:7a:0f:36:d6:e2:8d:43:51:27:85:ef:
98:72:8c:c3:f8:84:5c:74:22:d2:08:e0:2c:b1:99:
b3:02:ca:6c:24:2e:97:45:3f:56:16:29:5d:5e:51:
89:fa:bc:35:db:41:f5:c3:ba:d3:f8:3b:54:76:73:
56:95:d7:c9:f3:0d:39:b0:7e:7e:51:44:87:d5:16:
06:9b:a1:3a:77:6e:6a:d9:70:7b:a8:c8:38:2b:6c:
bb:67:6f:d7:d3:34:99:3a:b8:6a:19:96:b5:50:e2:
38:cc:b7:2c:ee:82:5b:17:1a:e0:2a:f4:0d:51:33:
83:9a:72:3d:9c:5f:58:79:df:4e:20:d9:d2:34:bc:
4c:ae:63:69:d9:1a:b7:dd:c3:6c:20:a8:0c:24:e1:
c6:fe:d7:d1:b1:97:84:f3:18:b9:7b:17:2a:ca:2a:
44:a3:50:73:fb:10:23:c0:d5:06:32:b0:88:c8:6e:
48:ff:57:c8:f0:20:5e:ee:71:9c:b6:90:9a:44:9c:
cb:ac:37:92:19:df:f2:12:98:90:01:ea:ea:88:4f:
22:84:d7:81:fa:f6:39:a4:03:83:90:64:93:5c:f7:
b1:73:50:01:63:a6:b0:f6:da:c5:98:1e:af:06:ce:
73:8e:89:d9:9b:6c:5a:9e:66:36:98:73:41:69:94:
c2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:42:D5:61:FE:9F:BD:82:20:77:57:A3:A6:B1:FB:8F:7B:53:7E:17
X509v3 Authority Key Identifier:
keyid:BC:4E:21:B2:7D:6F:84:EB:DD:88:8C:68:E7:9C:E5:55:C8:46:DA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vE4hsn1vhOvdiIxo55zlVchG2ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/0ULVYf6fvYIgd1ejprH7j3tTfhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/vE4hsn1vhOvdiIxo55zlVchG2ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.47.0/24
Signature Algorithm: sha256WithRSAEncryption
73:a1:fa:4a:6c:d5:09:3e:93:f8:74:6d:74:9b:82:6c:1d:ab:
0d:bf:1c:94:01:3b:e9:84:b9:41:47:49:23:d3:92:16:45:6c:
07:0e:a3:43:57:96:dd:32:1e:1b:ff:62:b2:9e:b9:5a:ff:89:
20:f6:0e:69:3b:b5:7e:9b:5f:d6:f7:54:f0:b7:4b:e6:87:b3:
27:12:be:ef:f8:2a:fe:09:49:37:73:bc:44:3b:44:76:39:e8:
06:98:44:cf:1c:62:bb:2c:d3:fc:c6:cf:92:c6:6b:3d:d5:b7:
25:c8:d6:c3:e4:86:50:8d:3b:3d:c0:86:c7:fc:49:d9:f5:13:
ea:a2:fc:05:30:5b:55:05:54:f6:d2:01:a9:68:b5:df:12:02:
b3:d1:f6:de:1e:d4:4b:14:fb:21:ee:0e:ee:3c:e4:ff:1c:ae:
ac:e3:4c:e8:e3:c7:f5:4f:32:1d:a9:3d:5b:2c:fc:2e:bc:e9:
7d:a9:45:75:d3:2a:b6:f2:01:a2:f8:d5:db:79:47:ff:9f:54:
ee:ac:3d:f4:64:f6:aa:59:5c:f0:ee:2e:8a:c5:e7:36:9d:1d:
5d:45:a2:84:27:37:6f:13:75:dd:58:c7:cc:45:ad:be:70:d3:
c3:32:be:d8:6c:f6:90:3f:51:a3:8a:93:35:8d:17:ba:6e:6d:
3b:03:b0:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:01 2024 by rpki-client on console-fra.rpki-client.org