Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/c43e1c-b676-48c6-863f-9ade396f7c4c/1/0YjNN3rnzL_Yf3ORdoE-xj0E-jo.roa
File: 0YjNN3rnzL_Yf3ORdoE-xj0E-jo.roa (raw, json)
Hash identifier: 6EWJX09BBW0XwORIVhpdv47xhp9JloIpLAwcJOoQanU=
Subject key identifier: D1:88:CD:37:7A:E7:CC:BF:D8:7F:73:91:76:81:3E:C6:3D:04:FA:3A
Certificate issuer: /CN=86f6e524fc15aadc489ee975815a37286de4bb52
Certificate serial: 02872364
Authority key identifier: 86:F6:E5:24:FC:15:AA:DC:48:9E:E9:75:81:5A:37:28:6D:E4:BB:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hvblJPwVqtxInul1gVo3KG3ku1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/c43e1c-b676-48c6-863f-9ade396f7c4c/1/0YjNN3rnzL_Yf3ORdoE-xj0E-jo.roa
Signing time: Sat 01 Jan 2022 15:04:04 +0000
ROA not before: Sat 01 Jan 2022 15:04:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20676
IP address blocks: 185.39.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42410852 (0x2872364)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86f6e524fc15aadc489ee975815a37286de4bb52
Validity
Not Before: Jan 1 15:04:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d188cd377ae7ccbfd87f739176813ec63d04fa3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:fc:b8:8e:f9:e5:a9:25:22:83:77:8e:7a:b2:
52:18:04:ab:4d:97:5e:07:7f:21:a6:7e:70:10:69:
46:cb:d0:21:9e:47:76:1c:78:37:17:e7:06:08:7a:
7b:24:be:34:a7:e5:27:0b:82:7a:18:61:a7:70:7c:
45:31:d5:52:4e:c2:dd:27:c5:07:1d:07:88:f9:6b:
f0:11:58:1c:0c:da:5f:03:b3:1d:b0:7b:2e:38:87:
61:30:fa:a9:b4:4e:68:f2:05:ed:68:2f:14:94:52:
ed:2c:94:b1:2c:2b:7b:98:80:39:f9:2b:d5:95:b8:
67:3f:2f:16:5d:6e:f9:af:ee:75:69:02:6e:b7:fc:
21:d3:74:34:f1:02:24:66:6d:bb:1c:c7:1e:29:d1:
c7:c0:89:bd:b2:8d:06:ef:d3:a6:d9:ae:cd:14:68:
8f:43:3b:83:28:4b:94:c2:9e:50:01:6a:e3:8e:b3:
3b:88:04:63:34:45:ec:c4:3d:d6:34:e4:55:ae:7a:
9c:c0:dc:cc:7d:bc:3a:2c:77:e8:63:71:7e:42:6b:
3f:24:a0:d8:bc:9b:8b:41:fd:88:01:a2:d2:1c:87:
9a:57:78:b9:73:31:42:47:42:56:bb:9e:2c:6a:16:
e6:06:ac:65:09:13:56:10:53:5d:cb:b2:45:f5:c4:
0c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:88:CD:37:7A:E7:CC:BF:D8:7F:73:91:76:81:3E:C6:3D:04:FA:3A
X509v3 Authority Key Identifier:
keyid:86:F6:E5:24:FC:15:AA:DC:48:9E:E9:75:81:5A:37:28:6D:E4:BB:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hvblJPwVqtxInul1gVo3KG3ku1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c43e1c-b676-48c6-863f-9ade396f7c4c/1/0YjNN3rnzL_Yf3ORdoE-xj0E-jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c43e1c-b676-48c6-863f-9ade396f7c4c/1/hvblJPwVqtxInul1gVo3KG3ku1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.77.0/24
Signature Algorithm: sha256WithRSAEncryption
04:60:68:59:11:2d:90:fa:66:7a:97:a1:07:9f:b0:46:d2:11:
0a:1a:3e:f3:50:bb:ee:38:a9:c8:b9:27:ca:2a:8a:54:b9:bb:
57:a4:4b:c5:1b:e6:c6:17:66:b9:c3:02:43:aa:73:ee:e8:5d:
6a:03:8d:85:8d:90:12:fe:c7:eb:87:3a:9f:1a:dc:95:09:f8:
21:c0:4a:ac:01:b5:5d:03:8e:1a:af:8e:c1:ab:14:4e:1a:16:
11:c6:17:c6:5e:d3:3a:2c:0a:02:46:ac:f0:ab:65:1f:d9:9b:
7e:c8:1f:01:fb:16:93:e4:d2:0a:7c:d5:55:8b:46:02:08:d9:
b6:08:29:05:5f:ff:3b:75:45:d9:dd:48:f8:e3:6b:9a:78:60:
31:1a:ed:56:c9:27:e6:34:04:08:f5:bc:0d:bb:a5:0a:22:34:
0e:e4:9f:d4:0b:20:58:a3:83:ad:80:66:c5:a1:0a:3f:6b:92:
ae:4f:82:fe:a6:fb:6f:e9:b0:f8:85:76:3f:19:96:f5:12:0e:
84:2c:e0:13:99:f8:09:9c:7d:93:bb:ce:d1:23:87:e1:e1:f9:
ad:40:b5:de:01:38:83:4b:de:32:51:f4:d5:40:dc:5f:bb:66:
f4:6c:ae:58:2a:f7:9d:96:48:64:78:f4:16:9c:26:76:0a:99:
c1:9d:5d:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:14 2024 by rpki-client on console-ams.rpki-client.org