Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b2d604-ddfb-4eff-b49a-df5ce56e7b4b/1/aycnBCeFe418rLRtBfGOlLa5mp8.roa
File: aycnBCeFe418rLRtBfGOlLa5mp8.roa (raw, json)
Hash identifier: 1V766O8I/4/Eq6iAGQg0yFliGZ1gAPbZMH+v92kz/NA=
Subject key identifier: 6B:27:27:04:27:85:7B:8D:7C:AC:B4:6D:05:F1:8E:94:B6:B9:9A:9F
Certificate issuer: /CN=0cc81d074357de5d32f8a65cd9ee7a585bf3ec6f
Certificate serial: 094E4ABF
Authority key identifier: 0C:C8:1D:07:43:57:DE:5D:32:F8:A6:5C:D9:EE:7A:58:5B:F3:EC:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DMgdB0NX3l0y-KZc2e56WFvz7G8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/b2d604-ddfb-4eff-b49a-df5ce56e7b4b/1/aycnBCeFe418rLRtBfGOlLa5mp8.roa
Signing time: Sat 01 Jan 2022 09:00:30 +0000
ROA not before: Sat 01 Jan 2022 09:00:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203092
IP address blocks: 185.218.24.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156125887 (0x94e4abf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cc81d074357de5d32f8a65cd9ee7a585bf3ec6f
Validity
Not Before: Jan 1 09:00:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b27270427857b8d7cacb46d05f18e94b6b99a9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:98:a3:da:59:b9:47:29:74:d9:dc:72:14:c0:
32:62:c8:fb:7a:87:87:aa:9c:da:4e:7b:8f:fa:fe:
85:c1:1b:81:1f:4c:97:55:a9:fb:ed:64:13:f6:02:
87:ec:44:a0:72:f7:5d:60:1a:4d:90:07:ee:ee:4b:
19:9b:88:87:47:9a:6b:a2:79:75:43:b6:d2:e9:02:
52:02:f9:d8:e5:ae:2c:72:e1:49:bb:f0:d8:be:c3:
72:f1:3d:e7:de:da:ad:12:ce:a0:1b:6b:bd:87:5b:
88:07:3e:c7:8a:6f:ac:0f:16:18:90:d3:2a:37:ce:
32:7a:30:0f:c2:36:63:09:25:68:cb:2e:7a:60:6b:
63:1f:50:eb:f6:12:1e:a0:d2:dd:69:67:51:1d:46:
cc:41:3a:6f:93:85:51:ea:39:78:b1:7e:fd:3d:c7:
bb:e0:10:e5:34:e6:ea:f6:6e:2c:c9:3d:7f:ac:bb:
e0:76:e6:23:66:ac:c6:5b:eb:22:5e:72:3d:4a:dd:
80:99:42:40:b5:29:d2:94:94:c2:c2:0a:99:47:64:
d2:ba:8c:e2:9c:6a:49:f7:d5:32:1c:c6:f2:1d:33:
23:da:24:9e:8e:9b:e3:96:1b:4a:62:1c:88:03:07:
81:9d:5c:d9:39:83:84:2a:e5:99:a6:57:c6:57:52:
04:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:27:27:04:27:85:7B:8D:7C:AC:B4:6D:05:F1:8E:94:B6:B9:9A:9F
X509v3 Authority Key Identifier:
keyid:0C:C8:1D:07:43:57:DE:5D:32:F8:A6:5C:D9:EE:7A:58:5B:F3:EC:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DMgdB0NX3l0y-KZc2e56WFvz7G8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b2d604-ddfb-4eff-b49a-df5ce56e7b4b/1/aycnBCeFe418rLRtBfGOlLa5mp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b2d604-ddfb-4eff-b49a-df5ce56e7b4b/1/DMgdB0NX3l0y-KZc2e56WFvz7G8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.24.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:3f:e7:95:6d:49:87:57:a7:32:53:6b:6e:c5:d9:e3:a3:51:
03:60:19:62:89:e8:2d:ef:41:e7:4a:eb:92:df:e2:0a:1d:d4:
a5:b1:b1:31:7c:4f:ed:1f:c1:eb:12:b0:99:8b:ed:55:61:40:
b3:9f:97:36:64:c6:7e:ac:d7:8c:12:55:54:3c:e7:4a:a7:54:
d2:69:b3:43:e3:48:cb:99:a0:c0:10:00:66:2e:a2:4a:9c:4e:
e4:eb:3e:b9:89:57:b6:fb:7a:62:83:af:45:3c:f7:3a:30:8f:
8c:73:96:b5:34:96:53:55:b0:0c:b5:c0:9e:e3:63:88:7c:50:
0d:62:c0:2f:9c:3b:c7:9c:9c:dc:40:36:d0:5e:06:06:05:75:
19:f2:c2:b7:30:22:02:7b:18:49:45:61:76:e9:48:b0:80:31:
50:81:a1:21:dc:dd:25:03:bb:18:6b:0d:bb:43:c4:92:3f:52:
a3:77:15:c6:cf:48:01:f6:2e:9b:12:a2:76:79:74:ac:a5:62:
05:f7:ce:87:7d:47:c5:86:2c:fb:d2:a7:df:25:69:b3:7a:c5:
6e:b1:40:83:01:74:59:d5:3b:b2:9b:2a:30:f9:b9:14:66:cd:
d3:12:a2:23:43:9c:9b:7d:fe:7a:ce:92:6b:44:9a:e6:b0:0c:
7c:21:d3:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:37 2023 by rpki-client on console-fra.rpki-client.org