Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/0HzplZYQ3g0n2UZkbJKf87yKxRo.roa
File: 0HzplZYQ3g0n2UZkbJKf87yKxRo.roa (raw, json)
Hash identifier: OGunzBbyR3xRvUbKwpnZfqlKic1sSDRxIgwWkuhUV3M=
Subject key identifier: D0:7C:E9:95:96:10:DE:0D:27:D9:46:64:6C:92:9F:F3:BC:8A:C5:1A
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 0DE260D9
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/0HzplZYQ3g0n2UZkbJKf87yKxRo.roa
Signing time: Sat 01 Jan 2022 10:54:07 +0000
ROA not before: Sat 01 Jan 2022 10:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1101
IP address blocks: 185.100.59.0/24 maxlen: 24
2001:67c:12d8::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 232939737 (0xde260d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 10:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d07ce9959610de0d27d946646c929ff3bc8ac51a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:94:4f:3a:b0:8b:8a:aa:97:d5:b6:28:b8:7d:
cb:3d:e2:f0:39:8b:de:4f:0b:64:61:3a:9a:9c:7a:
f0:23:e4:ea:87:1a:6f:3f:46:36:da:3c:62:27:1c:
6a:b7:75:a3:45:0a:7e:a3:35:7f:f3:7d:5a:a0:b6:
37:eb:69:c2:ea:c5:f7:1b:69:0c:ab:5f:e6:36:65:
4d:ff:52:8f:78:a4:46:7b:f4:8c:47:5d:e2:9f:d4:
67:14:ab:ff:4c:8c:7c:72:a5:e0:fd:3d:45:39:b3:
ec:45:b5:04:4c:fe:30:d1:d6:5e:a2:a7:90:ec:84:
9d:df:09:e8:7b:0d:66:d6:5e:fe:64:4c:53:b0:e7:
6b:bb:82:de:81:b0:5b:a1:84:8a:fe:4f:ef:1f:ad:
90:23:6b:67:24:95:0e:5a:bc:f8:de:c9:f0:83:8f:
f2:c2:55:bd:ac:91:02:aa:02:79:47:94:6f:a4:1a:
87:26:b1:0c:51:b6:75:d2:e9:35:e0:58:61:c5:ba:
7a:5d:b9:96:2b:4b:d1:83:7b:3d:f7:ef:be:cd:6a:
66:6b:87:45:2c:d7:9f:45:53:4c:d8:15:a7:2f:79:
e9:01:47:7b:18:5b:ce:e6:1f:86:f1:5b:6a:53:d9:
6f:4d:ba:ea:7a:e3:3c:a4:7a:aa:52:e7:31:ef:84:
d5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:7C:E9:95:96:10:DE:0D:27:D9:46:64:6C:92:9F:F3:BC:8A:C5:1A
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/0HzplZYQ3g0n2UZkbJKf87yKxRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.59.0/24
IPv6:
2001:67c:12d8::/48
Signature Algorithm: sha256WithRSAEncryption
ac:60:b4:13:74:d7:33:f9:97:04:3a:e6:a7:46:36:87:82:7c:
b5:43:35:fe:de:d1:82:d5:ae:73:9f:f2:93:74:08:64:ef:78:
4d:a2:cc:0b:5d:57:96:e4:fb:3c:a4:2a:ed:e4:8a:77:2d:01:
69:79:83:c1:05:9b:b9:94:86:7f:71:6a:b5:93:d4:50:4d:94:
52:22:12:6b:20:3b:41:79:33:ef:0c:bb:1c:06:a9:fd:50:5b:
70:16:bf:36:cc:e9:13:ca:71:5a:0b:04:5e:0b:85:29:ff:aa:
ea:d9:90:79:7e:87:3b:50:ce:14:87:36:00:b5:cf:1d:42:02:
69:92:bc:38:76:01:9a:ce:6a:bb:9c:32:96:7e:62:6c:c3:55:
9f:fb:83:60:27:73:98:64:66:82:63:fb:75:71:8a:3c:75:9b:
37:f1:eb:50:d6:59:f3:f1:ad:c6:ab:47:58:47:71:c0:36:7b:
3e:03:d6:4b:76:db:0a:81:84:cc:a7:a6:84:ec:7e:3a:35:82:
e5:b8:80:51:32:86:5e:bc:8d:ce:95:0e:1d:5c:d7:7e:b4:fa:
57:f4:31:cc:63:0e:43:43:66:8b:fe:70:1b:8e:f2:03:7d:8d:
62:98:d3:a4:fe:4d:2d:1e:84:f4:f1:5f:bc:a2:7b:e1:88:88:
03:5c:6a:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:50 2024 by rpki-client on console-ams.rpki-client.org