Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/AF1JYVZ_BHeAobxs831PgXm5Tkg.roa
File: AF1JYVZ_BHeAobxs831PgXm5Tkg.roa (raw, json)
Hash identifier: q3mDh7cB1pG7fhoc5Me0ljouhLJHaVixgNu10iwXSR4=
Subject key identifier: 00:5D:49:61:56:7F:04:77:80:A1:BC:6C:F3:7D:4F:81:79:B9:4E:48
Certificate issuer: /CN=cb9f8612b7f14750016b848c42f60df36ad832d9
Certificate serial: 09005208
Authority key identifier: CB:9F:86:12:B7:F1:47:50:01:6B:84:8C:42:F6:0D:F3:6A:D8:32:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5-GErfxR1ABa4SMQvYN82rYMtk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/AF1JYVZ_BHeAobxs831PgXm5Tkg.roa
Signing time: Sat 01 Jan 2022 03:55:13 +0000
ROA not before: Sat 01 Jan 2022 03:55:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205870
IP address blocks: 185.145.31.0/24 maxlen: 24
185.145.30.0/24 maxlen: 24
185.145.29.0/24 maxlen: 24
185.145.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151015944 (0x9005208)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb9f8612b7f14750016b848c42f60df36ad832d9
Validity
Not Before: Jan 1 03:55:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=005d4961567f047780a1bc6cf37d4f8179b94e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:18:5d:52:67:9a:dc:62:74:00:9b:75:c3:e4:
38:f7:fd:43:9d:f8:9d:93:d4:a3:a5:b1:c7:a3:b9:
d7:1c:85:6b:f3:98:63:e5:ca:a4:be:85:7a:00:78:
6b:d7:9f:94:2d:32:af:94:3a:a2:47:51:84:f4:d8:
e7:55:65:bb:bb:ee:2b:b7:39:a1:32:06:8d:fa:a6:
42:76:5f:12:4e:2b:29:88:79:9f:a3:ea:c3:e1:99:
3e:ec:26:28:da:c1:d6:00:f8:75:28:c4:c5:d0:24:
40:21:96:73:5f:54:76:d9:c5:8e:f5:67:4c:48:9c:
4f:31:09:fb:be:17:33:1f:24:ea:c4:2e:51:59:47:
61:6e:4d:41:b2:5b:a2:42:98:f0:95:ad:2a:fa:db:
2d:bc:44:0c:42:f5:e5:78:82:96:66:8b:54:7d:37:
f9:42:50:e7:d0:0b:d1:e9:74:c0:d0:63:26:56:3b:
1a:ac:f7:ae:ad:82:d9:d4:94:9e:40:5b:14:27:8a:
f3:3a:ae:c3:1b:91:3f:1a:00:5d:5c:f4:8e:90:28:
ed:1b:09:60:1e:43:56:e3:23:55:e9:77:64:f9:cf:
d6:15:ef:9f:89:48:ff:46:4a:1e:1d:d9:ad:2e:da:
68:4e:85:1d:37:ea:27:b1:d1:63:cc:03:2a:b2:e9:
da:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:5D:49:61:56:7F:04:77:80:A1:BC:6C:F3:7D:4F:81:79:B9:4E:48
X509v3 Authority Key Identifier:
keyid:CB:9F:86:12:B7:F1:47:50:01:6B:84:8C:42:F6:0D:F3:6A:D8:32:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5-GErfxR1ABa4SMQvYN82rYMtk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/AF1JYVZ_BHeAobxs831PgXm5Tkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/y5-GErfxR1ABa4SMQvYN82rYMtk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.28.0/22
Signature Algorithm: sha256WithRSAEncryption
95:31:4e:bc:76:8e:bf:8c:57:b6:4a:3e:6b:09:e4:bf:01:46:
08:7d:c9:f8:51:62:a9:63:55:9f:94:f2:45:ef:51:16:1c:7a:
4d:20:d2:a2:c4:a6:1a:1b:38:3b:eb:7d:a3:6e:ec:6a:ec:1f:
2a:a0:3d:8e:e1:78:78:d9:81:48:52:a5:40:18:70:45:e3:59:
e5:76:d1:3a:93:88:7d:80:82:9a:c8:52:ba:c3:cd:57:c3:6a:
fa:64:d0:35:43:93:dd:59:4e:35:d6:9e:9f:b3:27:9b:6a:27:
f8:99:de:05:74:dd:2d:ac:50:7b:ab:17:ec:3c:ba:39:b0:df:
57:c1:fe:fa:d8:c8:c7:df:f6:6a:82:c1:82:7a:20:1e:21:48:
d5:b0:10:7e:3e:bf:71:2d:4b:c1:d4:dd:b8:f0:f3:01:11:c2:
b1:c6:15:0f:93:73:47:a1:ee:43:75:76:57:95:d7:80:96:a1:
26:c1:41:93:58:0f:d4:10:99:06:a8:f8:41:2d:20:cb:84:9c:
c1:aa:08:19:56:8e:84:32:6e:fe:43:85:24:ad:f5:4d:da:6e:
0e:e2:8d:e7:86:a4:8b:32:2c:d1:ad:1d:34:1f:08:70:7e:62:
73:1d:f8:d9:eb:9a:d0:1e:ff:ed:07:19:2d:39:b0:bf:95:ea:
ac:d1:4f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:43 2024 by rpki-client on console-fra.rpki-client.org