Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/vxYuMpb3AO-LuMjT0AqG_HGRDHc.roa
File: vxYuMpb3AO-LuMjT0AqG_HGRDHc.roa (raw, json)
Hash identifier: MoOciSZHU9+cj+EeJaqgzCWo3LfVS061m479RvJlnC8=
Subject key identifier: BF:16:2E:32:96:F7:00:EF:8B:B8:C8:D3:D0:0A:86:FC:71:91:0C:77
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 374B8AEF
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/vxYuMpb3AO-LuMjT0AqG_HGRDHc.roa
Signing time: Sat 01 Jan 2022 15:06:56 +0000
ROA not before: Sat 01 Jan 2022 15:06:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.11.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 927697647 (0x374b8aef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jan 1 15:06:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf162e3296f700ef8bb8c8d3d00a86fc71910c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:58:8e:85:fc:48:99:bf:f2:64:2e:5e:7e:75:
33:51:10:ee:25:6b:55:ed:b1:84:85:76:5f:e9:0f:
e7:29:d2:78:12:88:3c:32:f2:39:a6:d8:50:f6:33:
32:7d:1c:9e:e5:59:9c:c4:b2:40:d2:3f:5a:4c:05:
47:1e:38:d3:2c:c1:cb:5a:8d:31:99:8d:31:ac:02:
3c:5a:4b:bb:6b:1d:cc:76:d5:ef:76:8e:7f:39:bb:
d2:bc:69:29:90:fc:4a:17:5e:43:98:06:83:0e:07:
16:80:4d:49:5a:6e:2d:f3:85:1d:35:76:7d:46:c8:
5b:f5:db:ae:23:18:28:3e:5f:2c:a5:e2:93:39:cb:
90:f8:8e:fe:e7:51:28:d8:70:8a:78:52:01:aa:e3:
ef:da:07:71:a5:43:6b:67:a0:8a:35:b1:3f:f6:a7:
3c:84:a6:90:36:b5:3f:e8:b6:f4:b3:2d:05:47:e5:
28:98:a9:7e:2f:19:47:c2:b0:b9:9d:af:ad:f7:19:
61:ae:c9:23:f6:f8:ea:47:17:0d:0e:c6:bd:9f:68:
6e:af:0d:5d:b5:bd:dd:45:72:6c:c8:c7:70:fa:11:
6f:60:7e:01:0f:13:d2:9a:50:07:d0:82:27:18:df:
4a:d0:ac:72:5b:af:22:ad:2a:81:9d:99:c8:aa:ba:
fa:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:16:2E:32:96:F7:00:EF:8B:B8:C8:D3:D0:0A:86:FC:71:91:0C:77
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/vxYuMpb3AO-LuMjT0AqG_HGRDHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.141.0/24
Signature Algorithm: sha256WithRSAEncryption
79:c4:03:64:3f:62:60:e4:f0:fe:e9:57:3d:9c:da:80:87:19:
21:57:58:a6:f5:12:db:d1:1b:dc:81:ed:98:d3:82:c6:ba:b1:
a1:38:da:ec:c0:f8:fc:78:43:df:9f:89:bb:7e:54:21:da:8f:
6d:ff:e3:e0:33:a3:9c:32:a3:27:db:2b:53:be:04:47:06:fd:
0d:a4:35:4b:e7:a6:13:04:92:29:8b:8c:a1:50:23:0a:9e:57:
52:9e:56:c7:07:c3:81:e3:4a:7a:a9:05:74:6c:7f:b3:d9:d0:
6c:8a:13:3c:02:b6:00:b9:a0:a4:c7:86:73:06:60:9b:21:b0:
e6:dd:d4:0a:07:c9:21:27:b8:e2:6c:b6:61:0b:5c:3a:78:40:
b4:82:60:8e:8b:50:b5:3f:e9:6f:cb:29:7a:b5:e8:2e:59:2f:
4a:26:0d:da:24:55:c0:88:9c:1d:3a:08:a2:95:12:e9:5d:51:
5c:cc:7d:a3:6f:b6:1c:a3:e6:ce:b9:bf:f6:53:4e:48:de:d6:
3e:d8:d5:5b:ae:95:f1:1b:a8:f1:ec:85:4d:7d:c4:75:61:dd:
36:c0:cc:67:13:d7:55:26:bc:fe:d8:2c:bb:da:d0:55:ba:73:
09:e1:78:f7:fb:22:0a:87:7d:5a:0a:b2:dc:b7:73:42:b6:b5:
78:60:df:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:08 2024 by rpki-client on console-fra.rpki-client.org