Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/2xpNo9-Q986VXkNghhBbwOKszGY.roa
File: 2xpNo9-Q986VXkNghhBbwOKszGY.roa (raw, json)
Hash identifier: GiXhF0gdWIeElrcKbB89IB7mZRn3IJxmkhvWA9fouqA=
Subject key identifier: DB:1A:4D:A3:DF:90:F7:CE:95:5E:43:60:86:10:5B:C0:E2:AC:CC:66
Certificate issuer: /CN=9588d8b4c7aa45a9b2cd737c614871eb7181babe
Certificate serial: 04C392CE
Authority key identifier: 95:88:D8:B4:C7:AA:45:A9:B2:CD:73:7C:61:48:71:EB:71:81:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYjYtMeqRamyzXN8YUhx63GBur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/2xpNo9-Q986VXkNghhBbwOKszGY.roa
Signing time: Sat 01 Jan 2022 08:56:15 +0000
ROA not before: Sat 01 Jan 2022 08:56:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204393
IP address blocks: 185.187.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79925966 (0x4c392ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588d8b4c7aa45a9b2cd737c614871eb7181babe
Validity
Not Before: Jan 1 08:56:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db1a4da3df90f7ce955e436086105bc0e2accc66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:07:b7:92:72:29:a6:fc:b2:0d:e6:d2:61:ed:
ca:2f:0b:63:6d:2e:b7:98:b1:b2:5e:d6:b6:a5:d1:
b7:3a:dd:95:79:16:cd:4c:d0:ee:93:80:0e:13:2a:
48:18:82:09:32:64:d9:b5:3b:ae:32:ab:4b:53:ab:
47:56:69:9e:68:f7:c3:e8:bc:6f:b2:a4:15:31:5c:
aa:0d:3e:5e:91:62:a4:ee:ca:3c:d4:14:73:68:8a:
b2:55:cf:35:4b:1b:5a:7c:a7:a9:dd:3e:1b:69:63:
4c:91:e1:f3:b0:25:ab:78:4c:f2:bb:c2:7b:7e:b5:
ee:41:0b:fd:af:8e:b5:8b:55:01:15:95:6b:30:dc:
ed:f4:b1:b7:56:74:2a:6a:1a:c8:8e:09:86:cf:c4:
1a:7a:4f:81:b7:12:06:10:e8:cf:03:74:a8:08:cd:
d8:6f:9d:31:d6:78:e3:3f:85:ad:3e:50:3d:62:f5:
b7:94:7f:53:24:74:50:a9:a3:25:4e:a4:3b:3f:f3:
6d:72:4b:f1:56:b9:50:30:ce:af:a3:61:fb:9d:96:
cc:d6:23:ec:45:ee:c8:35:78:b6:64:a0:96:38:d3:
c8:c8:1c:1b:e5:d7:b0:42:d1:f7:52:e8:cf:48:1b:
01:d6:95:e4:d3:eb:f0:63:d8:2e:ef:70:89:8f:d1:
7d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:1A:4D:A3:DF:90:F7:CE:95:5E:43:60:86:10:5B:C0:E2:AC:CC:66
X509v3 Authority Key Identifier:
keyid:95:88:D8:B4:C7:AA:45:A9:B2:CD:73:7C:61:48:71:EB:71:81:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYjYtMeqRamyzXN8YUhx63GBur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/2xpNo9-Q986VXkNghhBbwOKszGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/lYjYtMeqRamyzXN8YUhx63GBur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.48.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:7d:aa:f7:68:42:36:9f:06:71:b0:85:91:22:88:0f:03:33:
69:a3:4a:55:c4:24:f3:68:f9:86:14:cd:38:58:4e:52:cb:98:
9f:cc:35:95:97:7b:f7:65:75:f5:96:fd:ba:e7:0a:bc:69:44:
d6:f4:0b:05:09:63:c7:ee:bc:07:8e:45:0a:e4:a1:d3:5c:8c:
60:19:f7:a6:27:9d:89:db:96:d7:08:46:1a:20:a4:9b:16:5a:
e7:82:4e:eb:38:b9:2f:30:db:e5:f9:aa:dc:7f:e0:ff:18:17:
16:e3:fa:5d:e4:04:29:db:32:00:0e:dd:f8:0d:41:90:6a:76:
45:2e:8e:4b:8d:f1:45:e6:91:d5:e9:83:c8:ad:c9:0f:18:80:
6c:0f:6f:26:b7:d7:31:27:4b:b0:c4:41:2f:69:8b:d3:f5:5b:
3d:8a:0d:cb:92:7f:24:41:40:1a:b1:2e:6c:d2:4f:c8:b0:5c:
83:be:75:f3:0e:8c:69:e8:b1:e9:6b:bd:a5:dc:81:30:8a:8d:
91:5d:d0:68:cb:48:a8:fe:9d:9f:7c:7f:56:b5:f7:92:ec:9a:
80:ab:67:92:42:e7:66:1d:79:78:22:63:08:37:24:1f:d1:94:
69:c3:85:a4:ee:9a:67:1b:fa:0a:21:ce:95:c3:f0:27:16:60:
57:63:dd:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:11 2024 by rpki-client on console-fra.rpki-client.org