Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/69HkwsYHlQF-bWBg8H0GGsUzIJo.roa
File: 69HkwsYHlQF-bWBg8H0GGsUzIJo.roa (raw, json)
Hash identifier: 9y0SMoQ4YckcV+SjCppLdBp0KOu+cLgEMEwiSML1H60=
Subject key identifier: EB:D1:E4:C2:C6:07:95:01:7E:6D:60:60:F0:7D:06:1A:C5:33:20:9A
Certificate issuer: /CN=bc4e21b27d6f84ebdd888c68e79ce555c846dacb
Certificate serial: 08B23F2F
Authority key identifier: BC:4E:21:B2:7D:6F:84:EB:DD:88:8C:68:E7:9C:E5:55:C8:46:DA:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vE4hsn1vhOvdiIxo55zlVchG2ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/69HkwsYHlQF-bWBg8H0GGsUzIJo.roa
Signing time: Sat 01 Jan 2022 02:50:38 +0000
ROA not before: Sat 01 Jan 2022 02:50:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.151.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145899311 (0x8b23f2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc4e21b27d6f84ebdd888c68e79ce555c846dacb
Validity
Not Before: Jan 1 02:50:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebd1e4c2c60795017e6d6060f07d061ac533209a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:01:c4:ad:d4:5a:2c:73:e3:31:cf:34:5a:0d:
92:1c:0c:31:23:a4:15:36:a2:a1:a5:88:52:79:f3:
e9:54:58:31:7f:4e:70:60:00:3a:e4:77:08:3c:97:
48:ba:49:44:46:0a:a2:1e:de:11:48:e7:3a:5d:a1:
92:91:79:0d:56:50:cf:23:ef:82:a0:99:40:4b:76:
a6:2a:65:96:1a:d4:5b:28:ec:ec:93:6e:39:f6:62:
af:b8:f1:da:d6:66:a5:53:c8:30:61:10:87:93:f6:
da:84:a4:e5:38:55:e9:5c:3d:de:7b:f4:43:3c:02:
0f:bf:a2:95:74:45:bf:c5:b9:8c:96:37:86:85:60:
7d:da:cd:12:fd:32:df:ff:2a:d1:3c:e7:f6:fc:8d:
1d:19:ea:17:86:e7:a7:73:98:44:eb:71:54:0f:eb:
fe:2d:21:ae:b5:5d:b7:d4:df:1b:4c:19:44:61:92:
7f:f6:c6:34:d6:6e:2c:d1:30:27:a4:0d:7d:00:78:
83:6b:ad:d0:4d:b2:e3:5f:64:26:06:cb:1f:e4:a6:
fe:cd:dc:7b:82:47:3b:56:b9:bf:4a:1b:3b:12:c2:
64:bd:aa:8c:49:ec:0e:d5:63:3c:ef:ca:07:5f:43:
35:5e:19:5c:2a:7d:b3:1f:3b:a3:2b:f9:70:1d:75:
79:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:D1:E4:C2:C6:07:95:01:7E:6D:60:60:F0:7D:06:1A:C5:33:20:9A
X509v3 Authority Key Identifier:
keyid:BC:4E:21:B2:7D:6F:84:EB:DD:88:8C:68:E7:9C:E5:55:C8:46:DA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vE4hsn1vhOvdiIxo55zlVchG2ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/69HkwsYHlQF-bWBg8H0GGsUzIJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/vE4hsn1vhOvdiIxo55zlVchG2ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.47.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:d2:e7:b8:9c:d5:9a:3e:3a:79:8e:7c:9a:95:c7:ec:cb:e8:
fb:fc:22:36:28:87:46:3b:65:56:71:f1:4a:ed:3d:ca:16:7c:
4b:6e:f9:b9:38:f5:00:03:30:9f:e2:88:3f:3d:df:fb:32:f4:
81:dd:8f:51:b5:d4:c7:f2:a4:c3:7b:e6:22:62:06:07:62:a6:
fd:94:94:72:bb:50:a3:30:e8:fa:c0:0a:5a:d9:b0:ad:9e:2c:
0c:01:fa:9c:8f:a0:38:3e:7f:52:fd:9e:2d:56:89:3d:06:71:
86:16:af:db:cd:6f:59:d4:c5:29:dc:de:27:52:ea:a7:ab:1c:
8f:30:ee:a2:eb:91:19:1e:88:f5:4d:9c:28:92:f8:27:63:21:
18:66:eb:d1:1a:d3:f8:ea:ae:b1:97:fd:4d:80:bf:57:98:f2:
49:a7:3e:b1:e7:1b:6a:cf:00:be:99:f8:b8:28:93:33:34:29:
44:b3:e6:3e:30:4d:f0:2b:55:e5:a9:8d:34:0d:d2:e2:a3:61:
8c:9a:8a:45:e9:18:b6:3f:0a:6e:18:1a:68:9c:8b:54:d1:67:
f1:13:64:31:87:f6:58:66:ce:82:b8:b6:27:84:84:35:77:f1:
ec:19:25:c0:90:9a:e7:e4:dd:55:d1:85:ed:9b:0a:c3:72:3b:
e6:d7:b4:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:04 2024 by rpki-client on console-ams.rpki-client.org