Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/abeb11-e681-434c-8558-ab7700b1627f/1/bylxhr64b7fV2d7z5s6nbP7npQ4.roa
File: bylxhr64b7fV2d7z5s6nbP7npQ4.roa (raw, json)
Hash identifier: LVW68Gh/XItnkgLZwy0oJLuZtV2bSXf8oYHja+5Xf6Q=
Subject key identifier: 6F:29:71:86:BE:B8:6F:B7:D5:D9:DE:F3:E6:CE:A7:6C:FE:E7:A5:0E
Certificate issuer: /CN=6b2f22abf5747fdfcd5163cb924608e1c78cd182
Certificate serial: 0183BD6D0450AFD8E1761042C7587CCE4F2C
Authority key identifier: 6B:2F:22:AB:F5:74:7F:DF:CD:51:63:CB:92:46:08:E1:C7:8C:D1:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ay8iq_V0f9_NUWPLkkYI4ceM0YI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/abeb11-e681-434c-8558-ab7700b1627f/1/bylxhr64b7fV2d7z5s6nbP7npQ4.roa
Signing time: Sun 09 Oct 2022 15:46:21 +0000
ROA not before: Sun 09 Oct 2022 15:46:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48551
IP address blocks: 185.128.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:bd:6d:04:50:af:d8:e1:76:10:42:c7:58:7c:ce:4f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b2f22abf5747fdfcd5163cb924608e1c78cd182
Validity
Not Before: Oct 9 15:46:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f297186beb86fb7d5d9def3e6cea76cfee7a50e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f0:1b:c5:45:73:df:19:91:27:b0:9a:9e:09:
48:a5:60:ac:cf:fa:dd:0a:0b:60:06:45:98:92:0b:
60:70:b1:3c:6e:61:2b:0b:12:aa:02:35:fe:ea:ee:
1a:d4:f0:68:21:93:5d:fe:a7:58:ba:a2:4b:73:56:
fe:0a:a4:cd:e6:bf:fc:47:94:0a:60:e8:10:b3:47:
10:b3:d0:16:51:6a:19:14:5e:23:48:36:d3:40:f4:
bc:d7:32:af:7d:ed:df:fc:20:c1:db:cc:cc:87:60:
1b:54:a9:bb:ac:e0:cf:10:e8:d0:61:ac:44:00:3a:
42:8a:30:13:bb:56:e3:d2:bb:8c:11:0b:b3:69:b2:
df:39:eb:56:21:fe:96:be:36:a1:81:3a:9c:5e:b7:
dc:12:ec:36:85:7c:86:48:f1:c8:cd:22:b0:26:62:
21:6c:dc:46:5d:f4:93:55:2d:16:70:51:ec:73:b9:
e4:e9:56:23:7d:df:21:07:69:36:ed:07:97:aa:33:
dc:10:66:e5:f5:4f:1c:99:c8:24:b3:c7:31:19:78:
d8:95:53:be:42:1c:3a:b8:1e:45:aa:35:29:87:43:
c9:34:6b:b9:72:ce:90:f3:b6:c9:18:87:df:96:78:
d2:9b:f7:0f:47:8f:8d:0d:db:c9:2e:13:4a:a2:22:
73:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:29:71:86:BE:B8:6F:B7:D5:D9:DE:F3:E6:CE:A7:6C:FE:E7:A5:0E
X509v3 Authority Key Identifier:
keyid:6B:2F:22:AB:F5:74:7F:DF:CD:51:63:CB:92:46:08:E1:C7:8C:D1:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ay8iq_V0f9_NUWPLkkYI4ceM0YI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/abeb11-e681-434c-8558-ab7700b1627f/1/bylxhr64b7fV2d7z5s6nbP7npQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/abeb11-e681-434c-8558-ab7700b1627f/1/ay8iq_V0f9_NUWPLkkYI4ceM0YI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.40.0/24
Signature Algorithm: sha256WithRSAEncryption
82:a8:03:b6:02:44:66:6b:cb:cc:fb:b5:d4:f6:aa:78:40:a9:
82:69:6e:a6:f5:e6:cc:dc:c1:ce:ab:00:92:62:54:fa:87:c5:
da:fa:50:73:2b:1d:76:ea:ee:b5:40:e7:84:ba:15:45:46:af:
05:ad:d1:4e:19:0b:77:aa:3b:57:4c:62:f6:07:2f:dd:5b:07:
3b:67:89:b8:bf:c8:b7:ef:45:52:9f:5f:3e:b9:80:c3:6c:64:
01:f7:7a:c1:2a:dc:42:72:b4:4f:39:7f:da:0b:c4:36:26:a5:
99:cc:e5:79:58:9e:9e:d7:3c:52:90:da:c4:49:77:3d:a0:13:
ce:11:34:d3:46:a8:41:b6:75:7e:0f:f6:6f:73:70:5e:a6:c9:
57:95:a3:58:1d:d0:d2:8c:58:45:4e:c3:ce:9b:fc:c8:3b:26:
83:de:ab:5a:1e:a2:44:4f:5e:d4:b8:c0:3c:4a:01:0d:e0:37:
d9:90:e8:cc:f9:f3:e1:29:70:29:a4:2a:85:94:2a:5a:6a:43:
bf:30:f5:d7:33:56:d9:59:23:14:46:67:82:30:80:1b:38:17:
b1:94:f0:38:a4:86:40:a9:b1:06:ad:cb:c9:49:53:98:8c:a1:
1c:46:01:ea:54:4a:36:62:5e:09:02:e6:32:15:5c:73:01:fe:
54:73:48:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:47 2023 by rpki-client on console-ams.rpki-client.org