Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f3fb24-9a20-449e-af62-28f52052c1dd/1/_pExqIqSCg3tIrljHES4wlwkNRA.roa
File: _pExqIqSCg3tIrljHES4wlwkNRA.roa (raw, json)
Hash identifier: Il+XlzfRvbOzogJlqJW/Q6fbLZv4jAXjTY3g1ns8ooY=
Subject key identifier: FE:91:31:A8:8A:92:0A:0D:ED:22:B9:63:1C:44:B8:C2:5C:24:35:10
Certificate issuer: /CN=150183623fc16dc74cb775462c36d31016a40ac1
Certificate serial: 9B1F11
Authority key identifier: 15:01:83:62:3F:C1:6D:C7:4C:B7:75:46:2C:36:D3:10:16:A4:0A:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FQGDYj_BbcdMt3VGLDbTEBakCsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f3fb24-9a20-449e-af62-28f52052c1dd/1/_pExqIqSCg3tIrljHES4wlwkNRA.roa
Signing time: Sat 01 Jan 2022 02:59:19 +0000
ROA not before: Sat 01 Jan 2022 02:59:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49832
IP address blocks: 185.16.24.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10166033 (0x9b1f11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=150183623fc16dc74cb775462c36d31016a40ac1
Validity
Not Before: Jan 1 02:59:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe9131a88a920a0ded22b9631c44b8c25c243510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ba:1c:0a:48:dd:c7:ef:cf:04:6c:75:19:f9:
d6:33:74:31:27:75:b8:31:c8:c5:a0:a9:0c:2a:cc:
a0:d4:a5:c1:4f:dd:3c:57:d6:fc:54:3a:cb:bb:b9:
da:26:aa:18:32:77:b0:70:e8:b7:bc:9d:1d:cb:f7:
72:08:22:5e:90:1f:2d:4a:36:5f:24:5f:fb:2a:76:
e5:db:8f:df:95:bc:77:38:07:46:f9:60:c0:df:92:
eb:15:a7:1b:c3:61:c0:fb:b1:a6:31:65:90:33:9a:
79:93:cd:95:4e:cb:14:e4:7b:d7:cc:83:f3:7d:a6:
4a:a3:77:3e:c4:41:7b:b6:93:65:63:82:a4:1b:a0:
e8:6f:59:37:cb:07:2d:bc:aa:bf:7f:c7:32:52:48:
5e:b8:a7:60:96:da:fa:53:1d:9b:89:1a:89:b9:95:
2d:3d:2b:42:cf:61:78:06:43:87:5d:2f:64:3b:de:
0f:b9:4e:09:37:e0:85:75:0b:45:81:37:3f:f7:18:
dc:c6:9c:a5:7d:ba:22:5d:c5:ac:5c:c1:3b:67:c6:
c2:76:b4:22:06:00:dc:26:07:91:d9:70:ee:c3:39:
19:a7:37:21:69:b2:0e:49:50:59:ff:cb:95:f0:b7:
48:93:85:3e:85:96:94:84:19:47:3a:03:ac:db:e1:
0c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:91:31:A8:8A:92:0A:0D:ED:22:B9:63:1C:44:B8:C2:5C:24:35:10
X509v3 Authority Key Identifier:
keyid:15:01:83:62:3F:C1:6D:C7:4C:B7:75:46:2C:36:D3:10:16:A4:0A:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FQGDYj_BbcdMt3VGLDbTEBakCsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f3fb24-9a20-449e-af62-28f52052c1dd/1/_pExqIqSCg3tIrljHES4wlwkNRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f3fb24-9a20-449e-af62-28f52052c1dd/1/FQGDYj_BbcdMt3VGLDbTEBakCsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.16.24.0/24
Signature Algorithm: sha256WithRSAEncryption
34:4d:63:a4:25:b6:40:bb:43:df:af:b0:97:36:6a:73:69:10:
63:49:ad:a3:c2:25:ae:27:43:17:b3:1d:30:f4:6e:f7:9d:ae:
77:3f:54:f5:ed:f1:e0:35:59:d1:58:39:0e:46:08:a9:22:8d:
0e:74:76:e2:26:01:98:46:de:5e:8e:43:9a:63:69:e3:f0:d2:
29:45:01:84:06:be:eb:c1:12:5d:8e:5c:4f:f9:79:0f:c6:db:
a6:6f:87:d1:d7:92:6d:e4:9c:cd:d1:a5:ce:95:94:a9:fd:06:
0e:27:a9:aa:57:f5:1e:65:ae:87:48:67:05:93:5d:a2:f4:27:
c6:ae:1a:96:04:17:b3:de:b2:ce:af:30:47:e4:0b:aa:0a:4f:
30:23:d3:19:da:54:41:da:fb:c4:28:9f:b1:eb:69:86:0d:e0:
59:98:bf:ff:7d:e8:ca:ab:87:a3:a7:f1:76:11:e6:67:25:e5:
8b:f4:d7:71:5c:e8:11:4e:37:dc:1e:9f:fa:38:f4:ad:e1:ba:
44:7e:1c:cf:9b:68:de:45:e0:20:c7:b5:a7:21:f9:c9:58:5b:
26:2e:5e:9b:ee:b3:cb:25:e6:41:81:3e:d1:a1:be:c0:55:e0:
ba:d4:0e:c1:74:0a:85:43:9e:66:99:30:f4:45:46:11:4c:26:
d3:07:e3:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:41 2024 by rpki-client on console-ams.rpki-client.org