Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/X_dmREYR4fU74Q5AKJ_rz1c34Wg.roa
File: X_dmREYR4fU74Q5AKJ_rz1c34Wg.roa (raw, json)
Hash identifier: JjhI1L/BQZsPXv1wDM16J+ZuyJuj5BeoM68aXPbmosc=
Subject key identifier: 5F:F7:66:44:46:11:E1:F5:3B:E1:0E:40:28:9F:EB:CF:57:37:E1:68
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01821BA60C3943007C7D4F80D8690050DEB1
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/X_dmREYR4fU74Q5AKJ_rz1c34Wg.roa
Signing time: Wed 20 Jul 2022 12:47:23 +0000
ROA not before: Wed 20 Jul 2022 12:47:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51440
IP address blocks: 185.86.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1b:a6:0c:39:43:00:7c:7d:4f:80:d8:69:00:50:de:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jul 20 12:47:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ff766444611e1f53be10e40289febcf5737e168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7c:2a:a8:63:04:00:7f:29:98:ae:68:b4:e2:
83:47:6a:13:52:50:51:c3:8b:a4:be:dc:14:3e:04:
e6:94:04:ea:42:0d:19:93:ce:cc:af:b9:24:df:24:
e5:e8:a9:31:e3:19:1e:96:8d:b0:dc:7c:a1:15:97:
f8:f0:e3:59:8f:21:1a:44:ba:c2:06:1b:90:a3:19:
23:45:c2:b6:ed:6d:a0:7b:f3:76:95:96:44:dd:a9:
dd:a2:dd:af:d7:19:20:7a:b1:1e:f2:73:d4:78:c6:
b0:39:41:50:f0:07:12:6a:6e:ad:6f:11:8a:58:3d:
6d:2a:e7:51:63:eb:0e:58:c4:f7:bf:8b:75:c5:cd:
73:79:61:bc:49:d1:82:80:44:16:21:ea:d2:58:70:
c8:ee:57:2a:5a:d1:d5:9b:c7:75:64:3b:a3:f6:4e:
82:d7:ec:26:67:98:83:1b:2f:eb:53:62:c3:e6:ce:
67:0f:d9:57:71:83:87:56:20:21:f8:60:a3:7f:cf:
2b:b9:56:fe:32:92:2b:d5:20:1b:ce:17:ad:02:b6:
ae:16:ad:90:60:c8:48:8b:fb:47:60:04:33:cc:83:
33:fa:0e:70:87:5d:8a:28:2c:33:a0:c2:e1:c4:90:
9c:3b:ce:3b:a1:b7:30:48:93:a8:eb:08:46:cc:b0:
28:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F7:66:44:46:11:E1:F5:3B:E1:0E:40:28:9F:EB:CF:57:37:E1:68
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/X_dmREYR4fU74Q5AKJ_rz1c34Wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.143.0/24
Signature Algorithm: sha256WithRSAEncryption
77:87:2a:b8:71:75:fe:58:b0:16:da:94:91:04:a7:8e:74:5d:
11:c0:74:16:53:4c:55:a5:72:82:a5:f9:77:60:91:d2:29:d0:
2c:43:c2:99:19:3f:3c:12:6f:4d:a7:c8:42:25:3f:a7:43:e4:
bd:3f:55:e1:68:d3:6f:ff:4c:be:ba:be:cc:61:25:2f:a4:a0:
4a:d5:e8:2a:c3:75:f6:65:69:d7:5f:70:2b:dd:c4:a4:77:ec:
9d:a1:1a:07:32:69:0e:8c:83:c2:bc:5c:5e:74:3e:aa:e6:e3:
8c:a8:4c:9a:44:d6:5e:c6:8d:6e:d2:17:79:8d:ef:5b:94:e5:
8c:bf:7b:86:91:1e:ed:0c:e6:f1:e1:a3:26:e1:12:46:41:2e:
00:43:ff:a9:45:08:7e:10:ca:de:3c:70:1e:59:4c:e8:d0:a0:
b5:8f:df:e4:40:86:08:c9:82:ad:47:02:59:64:eb:69:1d:61:
c7:29:30:05:1d:d0:b3:7b:08:8a:7f:9d:20:b1:81:a9:e0:00:
b0:e4:d9:88:d6:7f:b4:50:47:8f:74:71:f6:19:da:1c:5e:f3:
4b:2c:7b:35:81:e1:e0:0b:7d:60:3d:a0:e8:07:d4:1c:6a:f4:
57:61:f7:0b:47:03:e7:4c:7e:67:d5:3a:87:ed:e9:34:33:b8:
bb:f8:b5:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org