Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/1tlf8CQYX3YfnAVhlMVdBXAQBq4.roa
File: 1tlf8CQYX3YfnAVhlMVdBXAQBq4.roa (raw, json)
Hash identifier: VGr0TyxcAMqX7lZe3ZEM0QE5jsVFWIWFlApfOse1qZQ=
Subject key identifier: D6:D9:5F:F0:24:18:5F:76:1F:9C:05:61:94:C5:5D:05:70:10:06:AE
Certificate issuer: /CN=a61ada61202413cd8fca2f49742527ad021f9676
Certificate serial: 111566FA
Authority key identifier: A6:1A:DA:61:20:24:13:CD:8F:CA:2F:49:74:25:27:AD:02:1F:96:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/phraYSAkE82Pyi9JdCUnrQIflnY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/1tlf8CQYX3YfnAVhlMVdBXAQBq4.roa
Signing time: Sat 01 Jan 2022 09:56:06 +0000
ROA not before: Sat 01 Jan 2022 09:56:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 11170
IP address blocks: 185.38.242.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 286615290 (0x111566fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a61ada61202413cd8fca2f49742527ad021f9676
Validity
Not Before: Jan 1 09:56:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6d95ff024185f761f9c056194c55d05701006ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fe:92:98:4f:41:59:c8:e1:12:3c:cc:3e:e4:
8d:8b:de:de:73:21:25:94:0d:4b:3f:d4:29:a9:06:
d0:f0:59:91:d5:1b:c2:c3:2a:41:28:e4:64:1d:8a:
96:a5:0c:7e:53:80:91:7e:d7:3c:e1:06:46:f7:59:
0c:e7:b9:23:ac:fe:7d:81:f0:d1:84:4b:ab:97:a2:
fd:1e:5d:c7:4a:51:f5:1c:10:25:62:12:9a:36:83:
42:43:90:ed:e3:14:55:f7:0c:0f:05:68:ce:13:2c:
c7:9a:3a:35:9c:e2:bf:16:a5:15:e5:fd:fb:38:6c:
b9:22:7b:a5:9e:70:88:42:51:c0:4c:d6:2a:4d:bd:
53:06:c6:60:33:f6:f8:92:af:a6:bd:5d:ba:24:5a:
1f:6b:0a:f3:51:32:5d:f0:d5:8a:70:0c:14:bb:21:
2b:c9:ef:de:f5:ea:40:1b:49:cb:58:c5:7f:da:cb:
64:76:16:13:10:ff:f9:7f:2e:fe:48:d0:60:c2:13:
03:70:ba:96:08:e5:fd:1b:ee:a8:41:5d:fd:4b:e4:
20:43:45:de:97:c4:8e:5a:25:06:4a:f8:d4:d2:a4:
e8:d6:54:3e:e7:b8:35:33:56:4c:eb:06:e2:37:e1:
8a:89:e7:2a:d3:fa:f7:de:21:a0:c2:45:88:fc:4d:
7a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:D9:5F:F0:24:18:5F:76:1F:9C:05:61:94:C5:5D:05:70:10:06:AE
X509v3 Authority Key Identifier:
keyid:A6:1A:DA:61:20:24:13:CD:8F:CA:2F:49:74:25:27:AD:02:1F:96:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/phraYSAkE82Pyi9JdCUnrQIflnY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/1tlf8CQYX3YfnAVhlMVdBXAQBq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/phraYSAkE82Pyi9JdCUnrQIflnY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.242.0/23
Signature Algorithm: sha256WithRSAEncryption
58:6d:21:1e:b4:9e:1d:10:38:15:f3:ee:49:38:8e:43:81:2a:
e0:64:8e:c0:44:ab:59:e1:c0:b9:22:74:ab:58:d1:ea:5d:56:
f4:cb:18:42:c7:52:79:46:3a:fa:04:3c:4c:3d:71:1a:1a:01:
1a:82:f6:be:e7:4b:79:cf:29:3a:6c:fe:7f:32:69:29:64:60:
85:7d:dd:39:94:79:c6:cf:b7:48:40:0c:da:af:6c:67:75:d7:
1f:d9:bf:92:8e:5e:96:a3:0c:f5:81:dc:b7:84:6e:2f:cb:17:
e4:81:b7:1b:c0:1e:1a:c2:b0:15:18:a3:54:6b:43:c3:a5:ee:
3d:3d:73:a7:4d:92:f5:3b:80:f1:f6:f9:89:ae:d6:cc:ea:f9:
64:b4:9f:cf:91:ed:74:e0:61:07:2d:ae:f8:17:3f:2a:2a:ae:
bb:be:25:ad:1c:4c:6a:08:ce:35:40:b5:55:8d:d8:98:5e:74:
e8:ff:ab:81:43:af:29:47:95:4b:86:b4:3f:99:7f:6e:06:5f:
f5:24:77:fe:80:9e:a4:5e:78:cb:7e:74:65:03:d0:bc:9f:67:
7a:0c:eb:32:77:7a:93:3f:ee:30:96:2a:ec:dc:7e:4c:22:80:
0f:0b:a7:9b:ac:75:8e:0b:f6:60:2f:c3:ca:72:b9:2b:14:1a:
81:9c:ee:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:35 2024 by rpki-client on console-fra.rpki-client.org