Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/f13f98-4e7a-435d-b1b0-8386e70bdc58/1/sxhmSbperwGQTQ85X6d3BoYfYT8.roa
File: sxhmSbperwGQTQ85X6d3BoYfYT8.roa (raw, json)
Hash identifier: Ycotxl+3+/as0i//EYSclhpnRrRGJyOpKhr3TuBTKL8=
Subject key identifier: B3:18:66:49:BA:5E:AF:01:90:4D:0F:39:5F:A7:77:06:86:1F:61:3F
Certificate issuer: /CN=de6ed0579c3fd253597ec82f0939111ba9d8c88d
Certificate serial: 07A9B9EE
Authority key identifier: DE:6E:D0:57:9C:3F:D2:53:59:7E:C8:2F:09:39:11:1B:A9:D8:C8:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3m7QV5w_0lNZfsgvCTkRG6nYyI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/f13f98-4e7a-435d-b1b0-8386e70bdc58/1/sxhmSbperwGQTQ85X6d3BoYfYT8.roa
Signing time: Sat 01 Jan 2022 10:01:59 +0000
ROA not before: Sat 01 Jan 2022 10:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61148
IP address blocks: 185.48.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128563694 (0x7a9b9ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de6ed0579c3fd253597ec82f0939111ba9d8c88d
Validity
Not Before: Jan 1 10:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3186649ba5eaf01904d0f395fa77706861f613f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:71:6d:3c:5c:09:02:4d:ec:12:53:78:b3:8b:
b0:c5:74:56:5d:3a:ff:87:11:39:00:8b:54:ca:21:
c1:6f:c7:2a:40:15:3c:ef:15:20:39:d1:ef:7e:92:
5d:a9:80:92:61:4a:a7:3c:5f:57:db:80:08:f5:f9:
eb:46:e4:2d:92:e6:e8:16:3c:d6:08:3f:39:03:da:
ec:07:17:78:96:bd:63:b8:38:17:a5:0a:2e:c2:e1:
39:34:5f:e9:a6:f7:e1:4b:cc:79:31:aa:11:39:17:
ef:bd:cb:f3:9c:fe:5e:c6:7c:28:55:f2:84:2e:af:
b8:38:0f:da:a2:86:fd:d5:77:94:fa:c6:46:09:f4:
84:17:b1:53:c3:fa:4e:bc:5b:22:bc:4d:6c:bc:ed:
2d:2e:36:b5:f9:c3:8a:66:f5:9e:08:79:8f:1c:cf:
b0:32:d3:51:94:07:a9:49:03:b5:c5:7f:2b:0b:eb:
dc:25:30:40:fc:5a:90:0e:17:6f:27:30:c5:dc:42:
ce:05:f3:0a:f4:4a:bb:cd:15:c5:9d:20:c3:17:e4:
5f:b5:78:cd:55:76:07:9e:c0:ae:72:72:23:dc:ca:
8c:1d:df:c5:3f:8d:84:70:ac:56:d8:e7:05:f0:be:
c4:5b:7b:01:a8:f2:0c:a2:3f:11:89:3e:c8:c3:16:
31:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:18:66:49:BA:5E:AF:01:90:4D:0F:39:5F:A7:77:06:86:1F:61:3F
X509v3 Authority Key Identifier:
keyid:DE:6E:D0:57:9C:3F:D2:53:59:7E:C8:2F:09:39:11:1B:A9:D8:C8:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3m7QV5w_0lNZfsgvCTkRG6nYyI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/f13f98-4e7a-435d-b1b0-8386e70bdc58/1/sxhmSbperwGQTQ85X6d3BoYfYT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/f13f98-4e7a-435d-b1b0-8386e70bdc58/1/3m7QV5w_0lNZfsgvCTkRG6nYyI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.48.24.0/24
Signature Algorithm: sha256WithRSAEncryption
58:09:ae:f0:bb:d5:d5:16:eb:e0:a4:0e:e1:0c:7e:ff:4b:36:
7a:cd:6d:ee:0b:3d:bb:ea:d8:cb:39:46:34:6f:8c:c2:6e:be:
b1:a7:6a:ff:5c:10:f4:d8:7c:31:ae:6f:88:ff:05:e8:e1:c7:
17:9c:a2:21:41:7f:08:49:bd:4b:d2:a9:90:9e:28:c9:43:f8:
3b:a4:ca:c0:bb:ca:a4:97:44:ea:cb:73:98:d1:0c:a9:79:78:
ea:54:a0:51:2c:05:68:c5:2c:16:91:e0:c6:01:fc:e3:31:bb:
77:0f:73:6f:54:c1:83:64:c6:c3:22:0f:11:b6:58:d7:77:1c:
f1:64:22:d6:07:03:91:f0:91:50:fb:04:43:32:a6:57:4f:04:
e2:02:63:3f:b6:d1:86:8b:47:0e:24:e5:1e:e3:3d:d6:e0:29:
19:e1:e0:d5:c7:4a:19:69:af:b1:d2:67:4b:36:82:15:a2:b1:
3d:c1:c5:12:44:4b:56:9b:63:14:9b:50:ef:58:c4:cb:b2:fd:
74:f9:e0:e9:20:02:60:4f:35:cb:14:15:b2:12:27:fc:fb:eb:
af:22:ac:42:37:b1:a3:32:a6:3c:69:6a:1a:50:6b:d2:cc:ba:
28:ef:ed:00:03:e3:10:67:fa:9c:21:88:ec:16:83:76:49:3e:
04:36:24:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:27 2024 by rpki-client on console-ams.rpki-client.org