Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/kI3DxAyuq0fIVNSDJUA5qBrmfxg.roa
File: kI3DxAyuq0fIVNSDJUA5qBrmfxg.roa (raw, json)
Hash identifier: +PgCZW2ocHG/eNuJTKF9PJaWjL+PABpaipTYuPEZGeo=
Subject key identifier: 90:8D:C3:C4:0C:AE:AB:47:C8:54:D4:83:25:40:39:A8:1A:E6:7F:18
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 1123E23B
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/kI3DxAyuq0fIVNSDJUA5qBrmfxg.roa
Signing time: Sat 01 Jan 2022 14:04:49 +0000
ROA not before: Sat 01 Jan 2022 14:04:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210583
IP address blocks: 86.109.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 287564347 (0x1123e23b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jan 1 14:04:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=908dc3c40caeab47c854d483254039a81ae67f18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e8:93:93:dc:9f:33:ac:a4:05:54:fb:59:9b:
09:f6:d3:c0:18:d8:93:40:89:4e:86:f1:64:b3:90:
f0:b2:d6:c6:d8:1a:09:f8:e4:f6:10:12:5a:b3:9f:
26:07:f3:51:fe:04:5e:da:54:48:61:8c:1e:8e:ce:
39:be:28:ec:dc:3b:a4:c0:b8:ae:f0:8e:22:54:06:
85:94:16:f6:a6:09:17:c4:07:0a:de:c4:7c:53:de:
fd:00:cc:28:b8:af:f8:96:b5:4f:e9:77:73:62:5f:
56:55:23:76:7c:e8:5a:5d:ee:55:77:8e:17:f9:08:
fc:1f:e4:72:76:0f:c7:29:14:33:46:00:20:c4:9b:
bf:b4:8e:ac:90:59:7b:34:03:d5:18:71:08:c7:1f:
7d:0c:5d:6b:bb:29:69:dd:94:d8:85:a9:1e:79:45:
23:ad:e1:81:e4:a4:1e:9a:e7:f8:2b:4f:24:4b:90:
31:cc:da:7d:93:90:e7:93:8a:16:c7:ae:44:23:3a:
2d:bc:03:93:f4:27:78:05:4f:2e:29:83:a2:e1:aa:
ae:ba:44:fc:97:e3:f4:07:99:18:68:45:7c:9a:29:
be:cb:ae:f5:e6:6c:28:7a:1b:1f:66:b5:3f:53:aa:
1b:3a:b8:64:ac:5e:cc:77:8e:79:db:9e:b2:7e:23:
7d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:8D:C3:C4:0C:AE:AB:47:C8:54:D4:83:25:40:39:A8:1A:E6:7F:18
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/kI3DxAyuq0fIVNSDJUA5qBrmfxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.109.61.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:b5:5a:87:cf:0a:a3:1f:46:4f:75:61:a1:71:81:35:27:ec:
f0:1a:46:5f:15:8e:17:c0:02:5a:7b:34:57:ce:bd:91:2f:55:
8d:23:b2:1d:a2:97:50:c4:8f:c0:67:bd:b3:a1:9e:4d:45:b5:
24:4e:e6:49:88:65:2d:4a:56:fa:45:4d:74:c4:c1:29:eb:c9:
ce:f6:96:c0:d5:5b:0b:e2:5b:ed:2a:fc:12:3f:ea:e4:bc:23:
a6:b7:78:86:44:ba:dc:6a:98:6f:79:6a:c3:ee:32:3a:2d:bc:
52:5e:63:13:64:89:d6:33:bc:e5:23:cc:2f:bd:67:1c:47:bc:
e9:6b:c0:92:73:cd:1d:f6:05:83:ad:12:84:cd:df:ab:87:1b:
1b:08:58:70:18:5b:fe:53:93:26:4c:c0:88:08:50:0f:99:93:
79:2b:ef:48:d7:16:72:0e:4d:46:77:0b:da:1e:e5:56:01:36:
cc:dd:ea:d0:68:5f:2a:11:4a:7c:59:d6:d7:70:d4:cb:b0:2b:
12:ab:af:80:e0:80:78:3a:98:b6:15:da:29:55:e7:5d:40:bb:
a0:d1:60:6a:f2:b0:a2:6e:1c:b2:79:6c:d2:b4:4e:bc:5a:a9:
28:dc:27:6e:2f:ac:f7:7f:e6:42:c4:57:b5:35:f8:48:3f:a4:
13:1e:3f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:02 2024 by rpki-client on console-fra.rpki-client.org