Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/G6reZOtD7k1bh69GGrjbs5TbgMU.roa
File: G6reZOtD7k1bh69GGrjbs5TbgMU.roa (raw, json)
Hash identifier: 7EtR8GWP+LNILUSj5zCCHhvpjuYJWmV03geFrReKM9I=
Subject key identifier: 1B:AA:DE:64:EB:43:EE:4D:5B:87:AF:46:1A:B8:DB:B3:94:DB:80:C5
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 375262D6
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/G6reZOtD7k1bh69GGrjbs5TbgMU.roa
Signing time: Sat 01 Jan 2022 15:07:00 +0000
ROA not before: Sat 01 Jan 2022 15:07:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197071
IP address blocks: 185.11.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 928146134 (0x375262d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jan 1 15:07:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1baade64eb43ee4d5b87af461ab8dbb394db80c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f0:97:2a:b6:e0:c8:4e:a7:70:65:f5:6b:9e:
71:5e:1e:6a:82:9e:9d:3a:ae:44:a6:ea:c6:20:55:
da:e5:3b:cf:9b:3d:63:04:4c:11:19:18:25:f8:0d:
c5:59:ad:99:c3:72:cf:6c:3d:59:e5:75:18:b7:16:
85:59:e5:15:a9:f9:b8:ef:c9:07:1f:56:e0:38:bf:
92:0b:f8:32:4b:e0:93:0d:89:45:e0:38:af:38:b2:
0f:74:e7:cb:0f:ac:29:0d:4c:98:3d:fb:15:fd:10:
59:ae:a0:bb:47:1b:22:31:bf:2b:d8:1b:a4:62:9e:
42:3e:ff:e6:44:60:0c:fd:d3:3c:9f:e2:0e:2a:b6:
59:f4:06:82:67:80:98:2a:13:3c:5d:69:70:df:43:
76:f7:ce:dd:75:e7:1b:54:9c:f0:b8:8c:9c:ba:90:
e3:63:7a:ae:c1:ce:41:ec:ba:a9:e8:fc:7e:19:4f:
e8:b7:12:0c:d0:d0:49:92:b0:5b:b6:e4:98:50:f4:
6f:be:9e:73:52:7b:39:ee:a6:14:0a:b0:f3:3b:c6:
ee:b7:35:db:0b:ee:2f:68:7b:01:7b:8e:c9:db:5c:
eb:b6:66:82:6b:7b:a4:9f:c5:48:88:7e:ab:a5:90:
de:09:bf:e1:27:54:83:d6:87:f4:9c:d7:82:a2:63:
49:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:AA:DE:64:EB:43:EE:4D:5B:87:AF:46:1A:B8:DB:B3:94:DB:80:C5
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/G6reZOtD7k1bh69GGrjbs5TbgMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.140.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:b0:95:92:b6:0a:92:88:8f:52:d2:4d:0a:c2:37:25:07:85:
ae:58:5d:60:2e:47:3e:3f:f4:a4:c6:3e:ec:07:e3:84:b8:2a:
83:2a:00:e6:91:64:5c:ec:f9:21:31:81:f2:de:86:bd:c3:3f:
c2:fa:8d:4e:91:4d:e0:5d:6e:b4:2a:7c:b5:52:4e:59:3c:81:
cc:a8:ca:d5:0d:ae:3e:31:8e:92:05:d8:e4:2d:f8:f3:3f:46:
e8:a9:1a:62:f7:5d:83:4d:0b:4b:31:73:f8:96:fc:41:d5:6b:
bb:e2:88:75:a0:39:92:28:49:97:3c:b0:9c:a4:7a:32:be:76:
87:f8:44:99:01:29:47:2f:87:3c:ff:68:92:66:f0:9e:43:c0:
c7:27:11:b5:38:d9:52:e4:d4:94:67:1c:8e:55:9c:56:e3:1f:
c3:80:b6:05:30:a7:99:54:4c:67:38:d8:29:f9:97:24:51:b6:
79:e9:12:7e:44:d3:24:42:f5:02:9d:24:f2:dc:64:7d:9f:03:
e7:24:46:c1:c0:e4:23:a1:73:c8:35:47:ac:c9:17:e4:df:66:
ac:d9:e3:2e:63:2e:c7:dd:5f:36:2e:50:e1:da:2e:7f:b6:50:
53:3c:38:b8:5b:c3:80:25:a6:4d:5f:aa:54:c5:14:3a:7f:45:
f5:44:27:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:30 2024 by rpki-client on console-ams.rpki-client.org