Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/xMnIL5Nt9UUFn8YTjdwtLTZP5hQ.roa
File: xMnIL5Nt9UUFn8YTjdwtLTZP5hQ.roa (raw, json)
Hash identifier: mBgoQDAIGJ5YWuguPTHH9N1vQiAbBzDOv8BIEVjY87M=
Subject key identifier: C4:C9:C8:2F:93:6D:F5:45:05:9F:C6:13:8D:DC:2D:2D:36:4F:E6:14
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 1562A2BC
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/xMnIL5Nt9UUFn8YTjdwtLTZP5hQ.roa
Signing time: Sat 01 Jan 2022 11:55:38 +0000
ROA not before: Sat 01 Jan 2022 11:55:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61091
IP address blocks: 185.11.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358785724 (0x1562a2bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 11:55:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4c9c82f936df545059fc6138ddc2d2d364fe614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a8:87:bc:93:09:4a:4c:50:8f:a0:84:1d:45:
ec:08:d4:35:03:22:0e:11:e4:e9:ae:80:b9:7e:94:
5f:fd:5f:23:3f:b0:c7:a6:f3:a9:55:f1:78:4c:b0:
9c:de:a0:00:31:32:eb:32:99:9e:ee:fa:4a:9a:14:
47:54:d0:35:14:97:fb:1c:5a:0e:b0:4d:b5:22:06:
6e:a5:f6:73:fd:b4:fe:c7:5b:7f:33:f2:9c:75:92:
36:5b:3b:db:cb:0e:bf:a9:5d:e5:a7:6d:9d:be:70:
e5:61:f6:e8:a0:1f:1f:87:82:a4:5d:a9:ee:6e:92:
24:c9:f4:e4:1f:25:49:3d:71:87:46:03:d4:73:c8:
f6:6b:27:33:1f:13:5e:85:e0:37:51:48:53:18:f0:
f7:45:9c:cc:45:dd:9a:f6:fe:b1:a4:e5:70:12:e3:
db:29:d9:75:90:8c:16:34:47:81:1b:6e:aa:4a:f3:
bb:b8:fd:cc:11:6f:d6:31:83:69:51:60:50:8e:1d:
66:25:96:ce:8d:b6:f1:0b:87:fe:ff:3b:49:8e:b2:
46:a7:97:35:a5:3f:59:6b:c8:86:81:26:50:37:aa:
04:ed:60:3d:dc:8d:f7:30:f0:a1:34:97:ed:ac:ba:
ce:5d:c6:e0:7e:eb:e1:4f:15:cc:c6:db:3a:5e:c2:
76:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C9:C8:2F:93:6D:F5:45:05:9F:C6:13:8D:DC:2D:2D:36:4F:E6:14
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/xMnIL5Nt9UUFn8YTjdwtLTZP5hQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.24.0/24
Signature Algorithm: sha256WithRSAEncryption
07:1d:89:b7:2c:d6:97:9c:bd:c2:f4:50:37:91:80:bc:49:db:
2f:18:2f:c4:cc:19:55:d0:0c:3d:56:7e:85:6f:a1:3a:3b:68:
ab:c3:04:fa:01:51:15:59:d9:35:ce:43:cd:ed:c8:29:ac:64:
9e:e6:1a:f3:cf:b5:3a:f9:88:ea:70:3f:61:b9:63:1f:41:11:
1c:97:6b:bc:99:67:93:22:d0:26:9f:dc:d6:0a:de:61:ea:b9:
cc:71:8d:10:41:df:ae:b2:ac:72:ec:36:24:81:41:fd:6a:c4:
3e:6a:40:9d:76:c7:a5:ab:ab:f6:d0:ba:6e:e5:92:d2:85:89:
77:de:be:78:d3:91:b4:97:83:6c:97:e2:65:b7:62:af:3a:11:
f5:dd:ea:00:f2:3b:a2:d9:0a:79:4a:e9:bf:4a:cd:8e:a1:97:
8d:6b:5a:b1:dd:5d:cf:85:57:e9:d0:3e:9d:5a:65:66:20:fb:
1c:8b:77:e8:bc:4d:18:28:01:fa:d5:84:c0:2a:d6:9e:01:43:
b2:6b:28:7e:d6:59:10:de:fd:e6:01:95:1b:16:3d:1e:73:c0:
dd:aa:d2:b0:bb:c0:24:30:2e:b9:2a:97:64:e4:c1:95:c7:23:
ad:23:26:4a:d5:02:a5:ec:32:65:2e:c7:80:7b:b4:07:1d:f1:
60:e7:06:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:49 2024 by rpki-client on console-ams.rpki-client.org