Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/c24341-a7cf-4275-ac4f-5c765c5373a3/1/uy8MBgnNJyHnC0Qw8T_uz-j2wEI.roa
File: uy8MBgnNJyHnC0Qw8T_uz-j2wEI.roa (raw, json)
Hash identifier: slRumzOgbAJPnk0O0eA/YtjcUgxWg5gBj1rymEoyI+w=
Subject key identifier: BB:2F:0C:06:09:CD:27:21:E7:0B:44:30:F1:3F:EE:CF:E8:F6:C0:42
Certificate issuer: /CN=4a8e17fdaa29187b8e40d630addebd9fd24c0176
Certificate serial: 1BA1C58D
Authority key identifier: 4A:8E:17:FD:AA:29:18:7B:8E:40:D6:30:AD:DE:BD:9F:D2:4C:01:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/So4X_aopGHuOQNYwrd69n9JMAXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/c24341-a7cf-4275-ac4f-5c765c5373a3/1/uy8MBgnNJyHnC0Qw8T_uz-j2wEI.roa
Signing time: Sat 01 Jan 2022 08:53:54 +0000
ROA not before: Sat 01 Jan 2022 08:53:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60933
IP address blocks: 185.23.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 463586701 (0x1ba1c58d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a8e17fdaa29187b8e40d630addebd9fd24c0176
Validity
Not Before: Jan 1 08:53:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb2f0c0609cd2721e70b4430f13feecfe8f6c042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4d:3f:14:64:a2:4c:d2:91:85:e4:7a:7e:c7:
6b:c4:4b:5f:83:9b:43:cb:95:c0:ff:61:57:9b:5c:
d4:c9:94:54:14:55:4d:9b:22:77:e4:d4:a7:ec:c1:
cd:f3:07:0d:a1:8c:f0:fe:2e:d9:0f:ed:e7:c4:fd:
26:8a:da:c5:5b:b0:f1:d8:b3:fe:1c:65:fb:9e:55:
40:c8:bb:ef:d0:24:20:74:fb:c3:80:11:90:60:e3:
9a:f9:1a:2b:17:99:52:77:97:a3:40:0a:f9:5e:06:
dc:ba:10:69:76:3a:14:ee:67:b5:06:ef:a3:b5:e9:
cb:cb:a2:2f:dd:2d:f3:9e:87:f9:2c:8b:4b:04:56:
d4:94:36:41:61:fb:c5:9b:ae:66:ec:75:4b:eb:f1:
9e:63:ac:14:b4:b0:85:4d:28:bb:2f:f3:5b:11:16:
65:dd:b9:e2:3e:7c:21:6d:db:a2:ba:80:07:a2:3a:
f6:7e:74:34:d4:cb:09:d1:7b:48:60:da:b9:5e:a9:
b5:8e:25:98:08:d9:cd:1c:3b:e0:99:e7:77:44:98:
26:e7:26:82:ec:de:8c:23:dc:e9:53:d7:73:21:12:
1c:24:cc:28:e3:69:85:ee:ee:37:33:1c:9a:f6:9d:
63:ad:bf:7e:9f:0c:e3:9f:d6:76:33:b2:52:f9:6c:
0f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:2F:0C:06:09:CD:27:21:E7:0B:44:30:F1:3F:EE:CF:E8:F6:C0:42
X509v3 Authority Key Identifier:
keyid:4A:8E:17:FD:AA:29:18:7B:8E:40:D6:30:AD:DE:BD:9F:D2:4C:01:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/So4X_aopGHuOQNYwrd69n9JMAXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/c24341-a7cf-4275-ac4f-5c765c5373a3/1/uy8MBgnNJyHnC0Qw8T_uz-j2wEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/c24341-a7cf-4275-ac4f-5c765c5373a3/1/So4X_aopGHuOQNYwrd69n9JMAXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.60.0/24
Signature Algorithm: sha256WithRSAEncryption
09:9c:f3:ed:3d:bb:c3:1a:e7:04:61:7d:e9:df:11:39:2b:72:
e0:e1:a3:7d:78:f7:35:33:48:14:49:28:a3:9c:0f:ec:ec:e9:
63:6b:1f:51:75:90:50:b8:66:b2:f5:24:4f:4a:59:b5:71:3f:
8b:5c:5c:8d:49:e5:65:a5:86:5a:0b:cb:c3:2e:3d:b6:1d:97:
5a:66:eb:d2:d1:c7:97:37:62:1d:af:ab:82:e4:52:97:ff:48:
64:b3:d2:b4:f2:80:77:bc:63:4b:1c:e7:3e:96:c9:1c:56:12:
e6:9b:b2:b6:b5:c8:6f:52:3f:91:ad:4a:f1:ed:3b:89:92:bd:
b8:02:47:90:3d:62:35:2b:c0:c0:47:e1:ef:db:c0:5a:a8:5c:
aa:04:86:9b:04:2b:88:8f:ba:bf:fa:8a:0d:2e:47:49:72:4d:
5c:16:98:c7:f1:e7:17:92:a5:f0:9e:65:ea:44:14:97:7f:2e:
90:62:97:44:7b:7a:cc:a0:ae:7c:8b:13:d6:0b:71:66:35:c6:
a5:cd:04:3c:43:81:39:90:e9:e0:be:7b:ed:d0:a7:96:2f:36:
09:97:24:32:9b:31:05:77:bc:3d:3e:51:1e:28:e1:69:1f:9e:
0a:ab:1d:06:f9:39:45:73:ba:1c:50:4b:f1:fc:78:ef:ef:fa:
74:26:b7:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:52 2024 by rpki-client on console-ams.rpki-client.org