Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/vL28OT4eREv18svgZjt47aVADOg.roa
File: vL28OT4eREv18svgZjt47aVADOg.roa (raw, json)
Hash identifier: q0Ko4XsFUzw2KZA9KlmlTiKZhmXoLUX5Kavr141UJps=
Subject key identifier: BC:BD:BC:39:3E:1E:44:4B:F5:F2:CB:E0:66:3B:78:ED:A5:40:0C:E8
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD53537A750ECD38B0499CF57B92346
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/vL28OT4eREv18svgZjt47aVADOg.roa
Signing time: Mon 02 Jan 2023 00:15:21 +0000
ROA not before: Mon 02 Jan 2023 00:15:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57646
IP address blocks: 86.107.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:35:37:a7:50:ec:d3:8b:04:99:cf:57:b9:23:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcbdbc393e1e444bf5f2cbe0663b78eda5400ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:e0:14:46:7b:4e:ea:0b:13:88:1b:15:27:c6:
99:e6:ac:11:9a:e0:d4:a5:48:c5:92:7f:c1:0d:76:
53:63:1d:c2:5b:d3:41:8e:4b:41:71:44:39:86:76:
ea:d5:69:9e:cb:d6:49:a5:e5:b0:8a:e9:c9:52:ee:
78:d6:45:fb:f1:35:e2:52:08:66:e3:dd:4b:59:f3:
0d:b7:72:c9:88:71:40:fd:16:f4:9f:21:65:65:06:
81:64:c2:06:5a:68:47:e1:ef:19:7c:4b:36:c5:d2:
d3:eb:89:74:55:c5:3f:b8:cc:33:a8:15:24:da:22:
f3:05:06:a0:b7:8b:28:e0:6b:00:00:b2:9b:83:6f:
00:d5:55:58:62:24:49:66:24:58:09:37:9a:d5:35:
01:e7:01:f2:71:28:b5:75:a6:67:b8:e1:a6:eb:b4:
dc:d0:24:78:37:35:80:f2:3d:0d:4f:30:c4:9f:4c:
69:ea:63:dc:30:de:00:42:b0:ec:7a:99:2a:76:0e:
30:06:c9:3b:a9:f8:7c:8e:83:64:64:7d:31:c2:88:
b2:93:7b:89:c4:5a:72:bb:1f:71:84:1b:cb:46:7f:
77:2e:85:ab:0c:e9:9d:6c:d4:31:18:85:bd:77:25:
a0:eb:42:e7:c7:db:43:f9:68:94:3a:17:ff:07:17:
2d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:BD:BC:39:3E:1E:44:4B:F5:F2:CB:E0:66:3B:78:ED:A5:40:0C:E8
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/vL28OT4eREv18svgZjt47aVADOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.185.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:a8:eb:f1:db:46:27:b2:e8:82:89:42:a1:06:c9:c4:6d:e6:
7b:d6:ca:54:0f:10:2e:38:65:8a:1d:26:fd:ea:e4:7a:86:b0:
e0:bb:7f:74:e1:68:21:ad:ce:ae:9b:9f:09:9d:d2:90:f1:51:
f6:45:e5:bb:6b:f9:94:50:d9:80:94:aa:e6:02:91:42:94:1b:
5c:43:34:64:08:a9:2b:b1:1f:d9:37:c9:87:4e:6e:35:96:12:
60:07:4e:dc:78:48:86:86:b7:85:91:c5:6d:ea:34:21:dd:df:
43:d7:78:2d:ac:5f:10:6e:21:09:b5:96:30:74:32:ba:ef:fa:
95:c3:78:b8:05:24:9b:83:2a:94:c8:2a:5b:c5:72:56:53:a5:
43:3d:4d:3f:4c:dc:1d:82:2b:47:b9:8b:1a:5d:6f:de:a3:0d:
5f:1a:c7:4c:9b:4e:a0:00:56:53:20:3c:9c:dd:e5:d8:c5:4d:
8c:1c:9e:6d:1b:60:05:62:92:3e:a5:87:92:1b:78:a2:d9:c4:
dc:92:fa:44:f7:73:dc:d2:10:55:5b:5c:e6:f3:93:c9:4b:98:
d7:3a:b0:e7:bc:bf:96:e5:30:ea:42:4f:3b:22:b0:90:38:b4:
d1:e9:48:f3:49:2d:be:8c:dd:71:90:66:19:75:ee:9a:34:ae:
9d:eb:8d:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:35:05 2025 by rpki-client