Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/84548d-3f3b-46b9-836c-38a3924776e9/1/l8rJNLI9ydArQFdhzPy9uP5rn8I.roa
File: l8rJNLI9ydArQFdhzPy9uP5rn8I.roa (raw, json)
Hash identifier: og1Jg6a/3+JsS2OhRdpi+e9LUuWMwD7v3gqPzt5b6Ww=
Subject key identifier: 97:CA:C9:34:B2:3D:C9:D0:2B:40:57:61:CC:FC:BD:B8:FE:6B:9F:C2
Certificate issuer: /CN=509c63c6d756bb2acd3f1ad92ac415da857e6c98
Certificate serial: 0B1EF686
Authority key identifier: 50:9C:63:C6:D7:56:BB:2A:CD:3F:1A:D9:2A:C4:15:DA:85:7E:6C:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJxjxtdWuyrNPxrZKsQV2oV-bJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/84548d-3f3b-46b9-836c-38a3924776e9/1/l8rJNLI9ydArQFdhzPy9uP5rn8I.roa
Signing time: Sat 01 Jan 2022 13:03:55 +0000
ROA not before: Sat 01 Jan 2022 13:03:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6724
IP address blocks: 185.122.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186578566 (0xb1ef686)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=509c63c6d756bb2acd3f1ad92ac415da857e6c98
Validity
Not Before: Jan 1 13:03:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97cac934b23dc9d02b405761ccfcbdb8fe6b9fc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:34:79:2f:7b:84:bc:d7:66:04:65:d6:08:1c:
47:8b:33:b2:6a:1c:62:d5:b7:c8:e4:88:90:39:3c:
40:b6:57:05:31:54:f7:b0:5d:66:38:3c:80:09:22:
12:f1:98:31:8d:b3:3b:c7:67:5b:bd:a5:47:31:ea:
ab:ed:cd:2d:14:8e:5d:30:d8:d4:b2:57:d7:87:26:
af:c8:7c:69:d1:c7:9c:8e:0d:30:68:e5:d5:f7:9c:
a5:b6:b3:5e:c6:9b:04:8b:7e:6a:5e:24:12:b9:2b:
99:1d:87:a2:92:f9:0d:48:52:3f:e7:1e:39:2f:89:
57:7f:20:06:2a:ce:0f:26:01:f1:7d:b4:92:cb:12:
a7:b4:78:e5:9b:0a:56:6d:12:5a:34:20:c5:9b:ca:
ea:42:3c:9c:4e:2f:60:bd:b2:84:ef:66:59:fe:b6:
29:b5:4c:6c:cf:f2:d4:47:5a:cc:53:9a:11:d5:7f:
49:72:9d:9f:b0:02:a2:7d:34:5b:da:6d:e4:7e:ab:
af:3d:29:26:87:f2:c1:81:65:48:9b:03:15:d0:e2:
7f:45:9a:80:ac:5c:29:2d:15:e1:e5:1e:79:5b:49:
59:27:82:f5:fd:8f:e6:d3:c0:75:0b:b7:98:65:16:
d0:0e:da:08:60:1c:24:37:f3:55:9e:0e:27:ef:f7:
50:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:CA:C9:34:B2:3D:C9:D0:2B:40:57:61:CC:FC:BD:B8:FE:6B:9F:C2
X509v3 Authority Key Identifier:
keyid:50:9C:63:C6:D7:56:BB:2A:CD:3F:1A:D9:2A:C4:15:DA:85:7E:6C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJxjxtdWuyrNPxrZKsQV2oV-bJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/84548d-3f3b-46b9-836c-38a3924776e9/1/l8rJNLI9ydArQFdhzPy9uP5rn8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/84548d-3f3b-46b9-836c-38a3924776e9/1/UJxjxtdWuyrNPxrZKsQV2oV-bJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.183.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:e6:6b:09:f7:c7:82:7d:1f:8f:e4:99:b0:3b:cb:f6:09:4e:
51:ee:39:4c:69:9e:3a:3b:cf:28:51:7c:18:7d:31:05:ce:bb:
d7:47:d8:18:56:84:7a:00:6e:f9:7e:56:30:ad:86:0d:3d:51:
9d:06:de:2c:99:53:2c:1a:0d:0c:6f:ae:bc:bc:c4:02:9f:b8:
9a:4e:5c:9b:dc:d4:2b:13:ba:6f:85:25:8b:2e:cb:6a:d8:03:
b8:30:9b:40:03:fa:4e:13:d8:47:77:cf:cc:4b:40:54:69:97:
32:f3:78:aa:96:43:c9:ea:d9:6d:ae:56:b2:0b:93:7a:ab:32:
b0:57:6a:eb:7e:d8:70:8c:84:1c:15:bb:c6:58:7c:c5:ec:85:
fb:71:bc:cb:d7:17:06:be:a5:7b:ea:dd:07:06:4b:5e:b8:b6:
87:1a:e5:50:15:f0:60:5b:53:32:e0:7b:ff:27:80:f9:c3:ad:
b0:a8:c8:b0:e2:7d:07:06:d8:b8:76:06:a4:d1:63:9f:66:df:
5a:70:cf:77:9c:f1:89:07:80:06:bc:e9:3e:e6:b6:f5:79:e1:
fe:f8:f7:d4:60:aa:78:bc:dd:44:02:81:26:bd:fb:02:7f:11:
39:3e:1b:99:42:ab:f6:d4:1f:42:b4:03:a3:22:76:d3:0c:5c:
ea:d0:cc:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:45 2024 by rpki-client on console-ams.rpki-client.org