Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/r_aqz1l9Biud_5rRcZ3S8XIG2wY.roa
File: r_aqz1l9Biud_5rRcZ3S8XIG2wY.roa (raw, json)
Hash identifier: hrQuJtuDgqygqbVteSlpIeYvNQ5Oi54SGDK87As30yo=
Subject key identifier: AF:F6:AA:CF:59:7D:06:2B:9D:FF:9A:D1:71:9D:D2:F1:72:06:DB:06
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 05F98651
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/r_aqz1l9Biud_5rRcZ3S8XIG2wY.roa
Signing time: Sat 01 Jan 2022 16:01:16 +0000
ROA not before: Sat 01 Jan 2022 16:01:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44024
IP address blocks: 185.225.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100238929 (0x5f98651)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 1 16:01:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aff6aacf597d062b9dff9ad1719dd2f17206db06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fb:f1:b1:65:4e:5c:3f:99:9a:26:c0:b2:dd:
32:63:35:78:2b:19:27:74:ef:ab:31:10:3b:e8:13:
0b:7b:e9:04:81:26:a6:e1:c6:09:56:2c:5e:76:c4:
c8:5b:ce:1d:9b:a6:03:02:7c:04:e9:f7:e0:2b:e6:
05:6d:a8:bb:d2:49:7c:4e:19:bf:e2:1e:55:2e:fd:
99:1f:2d:23:6f:d8:8d:ac:69:fc:ce:69:49:38:69:
15:33:28:be:67:f7:9b:86:51:99:42:f5:0a:fc:df:
37:b1:e8:a5:d6:23:15:df:1e:07:d6:c8:43:92:4c:
5e:32:b1:fb:e3:58:84:f4:2b:68:f6:66:a6:3c:e2:
48:37:ac:db:4d:07:90:80:09:2f:2d:6a:39:9c:ae:
96:5a:25:a8:5e:19:bd:0d:b8:03:3f:41:68:bb:f2:
c0:26:3a:88:1a:56:8a:f6:6b:0e:ca:f5:14:9b:26:
b1:80:e1:e0:37:f0:cd:ca:2a:67:77:65:4b:db:0f:
7a:a3:b0:10:2b:44:a5:d0:b2:c1:86:19:aa:30:5d:
41:96:18:a5:44:17:52:1c:d7:6c:5e:51:cd:a6:5b:
a6:8f:83:99:3a:d8:df:13:ef:c9:4a:6d:d4:f5:55:
44:37:a7:b0:02:a5:4e:3d:00:72:5f:3d:b3:c9:34:
20:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F6:AA:CF:59:7D:06:2B:9D:FF:9A:D1:71:9D:D2:F1:72:06:DB:06
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/r_aqz1l9Biud_5rRcZ3S8XIG2wY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.207.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:c7:a7:43:f3:b4:b0:a2:b9:7c:e1:84:4d:bd:44:f1:fe:0c:
f6:c7:c0:c8:d8:77:34:cc:30:6a:89:23:90:27:c5:b9:de:ed:
e3:58:ad:52:01:da:14:04:15:0d:6c:d2:68:25:ca:ac:49:4d:
0d:a2:d4:71:95:0f:fb:58:13:eb:8a:b0:e4:07:2f:a3:42:6d:
ce:bf:ba:03:ba:64:77:56:29:25:8e:c4:5d:fa:7b:9d:5a:8a:
05:44:17:1d:49:83:80:10:d8:4a:c5:11:3f:53:a8:52:a9:61:
68:52:0e:b4:7e:75:c8:e6:e9:3a:a2:d9:8d:e1:ee:81:83:ba:
c9:7c:63:6c:db:05:a7:f8:de:d8:55:1e:57:d5:89:01:06:de:
a8:0a:20:93:71:41:75:ea:f4:c9:2d:85:35:b1:c9:ce:0f:2b:
96:4c:bd:f7:c4:a8:11:88:f5:2a:e0:8c:21:6b:a8:a2:c4:8d:
fd:78:ae:d0:67:79:2d:ee:ea:1e:02:aa:4b:8c:a7:ac:82:fb:
25:6e:40:68:18:86:90:a6:a4:e1:2e:88:4c:fa:57:8d:2f:c5:
2a:27:44:85:8d:c8:fa:1a:ac:e1:50:88:d9:7f:4b:96:04:6a:
71:57:78:53:a8:b4:ac:c9:b2:f4:18:aa:66:d5:29:e0:b4:21:
c1:7b:69:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org