Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/XPNwfWgIdge_JHY9o0jfVR0we3g.roa
File: XPNwfWgIdge_JHY9o0jfVR0we3g.roa (raw, json)
Hash identifier: h1X2FoCSUGOEQzIqh2F9Wx3W3E9mA9w30XIINtTSfeE=
Subject key identifier: 5C:F3:70:7D:68:08:76:07:BF:24:76:3D:A3:48:DF:55:1D:30:7B:78
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 9B8ED5
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/XPNwfWgIdge_JHY9o0jfVR0we3g.roa
Signing time: Sun 08 May 2022 07:22:51 +0000
ROA not before: Sun 08 May 2022 07:22:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51407
IP address blocks: 185.86.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10194645 (0x9b8ed5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: May 8 07:22:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5cf3707d68087607bf24763da348df551d307b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ac:32:8b:ff:cc:31:55:90:7f:af:b0:ed:95:
11:61:ca:b5:d6:4c:f5:be:5d:b5:92:6e:13:22:88:
fd:26:66:28:da:e7:22:f3:31:de:7e:30:fc:c4:91:
8a:09:70:b8:3f:c5:de:4c:00:ae:3d:6e:b7:a2:29:
0a:b5:84:9a:4d:1f:a6:ae:b8:06:e8:75:f1:3d:55:
13:98:eb:5c:38:da:b0:d2:6b:78:27:74:7e:14:20:
2d:e3:18:95:5c:93:91:f0:2d:5d:85:78:2e:64:5d:
f9:01:38:14:75:f2:c1:02:60:67:4f:20:af:d1:af:
2b:fb:35:a9:ac:ed:9d:ac:2e:0c:26:63:36:96:3a:
0e:ce:a9:60:b3:ee:5d:c7:36:f2:b6:54:bf:a1:00:
c2:e0:65:4f:41:2a:4e:56:ac:34:e8:d1:9f:6c:04:
63:5f:18:a4:10:76:ca:19:f1:39:70:4c:23:73:89:
45:c4:8f:22:05:17:16:b7:0d:2a:57:70:cf:16:64:
3e:c1:8f:ca:b5:4a:cd:d6:3d:06:7e:d2:8d:ba:b1:
7b:5a:5a:23:96:4e:f2:09:66:a9:60:d9:ae:c3:0b:
1c:02:f5:cb:4d:e2:6a:d8:59:74:bf:6d:f6:4f:8c:
a5:25:d7:bc:fb:30:50:b4:ee:f9:c6:5d:e9:10:b2:
65:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F3:70:7D:68:08:76:07:BF:24:76:3D:A3:48:DF:55:1D:30:7B:78
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/XPNwfWgIdge_JHY9o0jfVR0we3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.140.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:b8:09:8b:8e:a9:27:30:0e:82:13:5e:59:2f:db:de:3c:b8:
c3:bd:05:46:02:e3:92:31:ee:6c:85:fd:7b:09:f9:69:57:cf:
96:b7:9b:42:b7:eb:81:43:a5:bf:0e:17:c2:fa:96:9b:6c:5d:
85:55:bb:2f:a1:d5:c7:98:06:11:84:77:7c:5b:54:2b:f3:84:
02:df:d2:a5:4d:b6:04:f8:e8:4f:bb:83:fa:e5:18:c7:79:fa:
1b:be:ee:af:cb:e8:69:17:f3:d1:d2:dd:6e:72:22:95:3b:44:
93:29:7f:bc:5e:22:e1:26:40:a1:ef:f7:c1:09:31:1e:96:a6:
6f:34:aa:cc:5a:3a:9c:68:47:60:f1:31:9f:dd:7d:30:dd:2a:
b2:d4:58:90:6e:47:ef:15:cf:5c:cd:0f:28:20:32:b4:f2:18:
c4:53:cb:a6:f2:1e:c4:26:28:81:9a:74:30:5b:d1:3e:21:3a:
2e:dc:f8:e9:55:49:0a:30:23:56:f6:51:91:e2:ad:00:57:de:
07:48:1d:0d:a9:5b:5f:00:08:43:65:d4:ea:b0:c9:d2:0c:3e:
b0:f1:db:6e:2d:5d:9c:b7:67:7d:8f:d4:c9:b5:01:19:4d:1b:
bb:d0:fd:0c:14:3d:ae:45:b4:17:ed:b6:d8:26:e3:56:63:d3:
25:17:59:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org