Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/yJAM5gYoMr350FP3xg48vmX7AZo.roa
File: yJAM5gYoMr350FP3xg48vmX7AZo.roa (raw, json)
Hash identifier: r/82+0YOMRKXpYKm4lkKLZ3iSTssp2QC/D3s4HM4Z6k=
Subject key identifier: C8:90:0C:E6:06:28:32:BD:F9:D0:53:F7:C6:0E:3C:BE:65:FB:01:9A
Certificate issuer: /CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Certificate serial: 9EF012
Authority key identifier: CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/yJAM5gYoMr350FP3xg48vmX7AZo.roa
Signing time: Sat 01 Jan 2022 00:53:06 +0000
ROA not before: Sat 01 Jan 2022 00:53:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206061
IP address blocks: 185.24.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10416146 (0x9ef012)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Validity
Not Before: Jan 1 00:53:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8900ce6062832bdf9d053f7c60e3cbe65fb019a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:10:ec:1e:90:4d:18:4b:c2:28:ed:9e:31:ae:
8e:04:d5:74:c7:4d:0e:26:c1:92:4d:01:ca:5a:39:
65:24:24:14:32:bb:52:a8:28:df:23:85:37:5e:e0:
15:26:f7:95:a5:3e:13:69:58:7e:99:0a:d8:a9:b0:
bc:78:6a:32:a3:68:9b:50:22:29:40:45:d4:d1:f2:
0f:66:23:97:26:9d:c9:0c:7e:4d:21:15:8e:d4:b8:
4f:e1:15:ac:5f:31:89:da:a6:45:8e:c2:18:81:ac:
d9:25:47:a1:83:95:17:1f:3b:78:e4:6f:31:79:d5:
ae:30:e5:5c:cd:cf:e6:73:5e:85:ba:74:75:0a:db:
6e:ac:c8:3b:26:6b:d2:62:44:9d:35:1e:35:25:89:
b9:27:a5:1f:6b:25:9b:1e:a4:5c:03:36:08:71:52:
07:79:b5:94:47:63:b3:7d:15:89:8c:69:e2:e5:a1:
05:80:9d:87:c0:27:30:d1:a8:1c:17:f8:6f:38:94:
5d:02:e4:89:89:94:33:cb:eb:b1:c4:1e:a8:62:db:
e9:08:31:c7:1f:c2:97:cf:c6:4b:d1:6d:15:fa:2c:
76:f2:ac:eb:ad:51:a9:3f:ef:95:b1:2c:62:c6:3a:
9e:b0:da:22:3a:14:03:50:0c:6b:85:2e:18:08:f6:
e5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:90:0C:E6:06:28:32:BD:F9:D0:53:F7:C6:0E:3C:BE:65:FB:01:9A
X509v3 Authority Key Identifier:
keyid:CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/yJAM5gYoMr350FP3xg48vmX7AZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.217.0/24
Signature Algorithm: sha256WithRSAEncryption
29:a6:4c:39:10:44:60:ce:31:7b:e1:21:85:79:c4:9b:7f:dc:
b1:50:65:ed:97:c7:d7:69:fd:0f:63:f3:c6:66:3a:a4:d9:6a:
58:96:6d:80:26:d1:44:7b:89:bf:44:87:30:66:77:cc:15:f5:
f0:6f:d1:26:73:33:b9:7a:d1:e7:d6:9f:f6:df:fa:f7:1b:52:
a9:06:c8:b3:97:02:ea:08:5b:ce:20:13:e0:76:07:37:9c:d7:
74:59:d2:71:31:48:ba:4c:b3:18:bc:f0:fd:f7:9b:bb:93:69:
35:66:d3:38:1b:4f:56:e3:d8:b6:e6:31:6a:6c:36:30:20:7b:
9e:53:3d:f9:db:3e:e3:38:95:7a:8d:c3:bc:5d:13:7b:fb:4a:
9f:71:e0:22:ad:c8:31:b5:3c:78:05:aa:0f:ab:f8:fc:0d:5e:
5d:49:71:97:d0:83:8f:27:e6:2e:8d:e8:d5:37:f7:b6:e8:da:
59:f2:0b:dd:36:e5:a6:8e:dd:34:23:29:ba:70:18:de:32:13:
a6:60:57:8d:59:49:8c:05:41:97:fa:da:2e:2a:0c:bc:5a:bd:
94:20:3f:9b:80:69:95:4b:87:12:48:7b:29:90:fa:40:60:6c:
7b:36:c3:e4:04:dd:09:cf:6e:d4:2f:3b:93:e6:ea:dc:3a:2d:
13:d7:c4:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:23 2024 by rpki-client on console-ams.rpki-client.org