Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/l_3-qvUrbdHtOOw1L80gijwlaJE.roa
File: l_3-qvUrbdHtOOw1L80gijwlaJE.roa (raw, json)
Hash identifier: iJx0oa9bgJyhV5o7wV6pzhz2syVVU0yl6dZJQt+xriI=
Subject key identifier: 97:FD:FE:AA:F5:2B:6D:D1:ED:38:EC:35:2F:CD:20:8A:3C:25:68:91
Certificate issuer: /CN=72098efaae8063cacecc4f1c1a0b64483bb69503
Certificate serial: 0B9CBC8B
Authority key identifier: 72:09:8E:FA:AE:80:63:CA:CE:CC:4F:1C:1A:0B:64:48:3B:B6:95:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgmO-q6AY8rOzE8cGgtkSDu2lQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/l_3-qvUrbdHtOOw1L80gijwlaJE.roa
Signing time: Sat 01 Jan 2022 08:58:49 +0000
ROA not before: Sat 01 Jan 2022 08:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204546
IP address blocks: 185.213.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194821259 (0xb9cbc8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72098efaae8063cacecc4f1c1a0b64483bb69503
Validity
Not Before: Jan 1 08:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97fdfeaaf52b6dd1ed38ec352fcd208a3c256891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d7:d5:4c:f1:42:91:bf:16:78:ea:f8:e8:e7:
e4:e6:82:58:17:5b:51:5b:d5:87:d4:4b:de:93:23:
dc:54:56:ac:92:be:01:c6:9b:db:5f:d8:21:9a:b5:
b3:38:f9:7f:25:85:54:26:45:85:f7:1f:ff:f8:85:
90:57:12:e0:1d:0d:34:a5:29:44:c9:4d:31:0b:e4:
99:a3:d3:18:8d:b4:3a:f8:6d:dd:56:d9:51:66:95:
e9:45:7e:27:63:6c:33:a0:04:4e:f7:0b:50:6f:34:
34:1e:9d:8d:f0:b7:ad:51:a1:69:bc:66:6e:70:9a:
63:4c:d1:3a:6a:74:d1:de:48:87:27:e0:aa:1e:26:
6e:29:cb:31:7e:a8:fe:c7:a4:1f:89:e9:3e:58:e7:
55:8e:bd:c9:ac:28:60:a6:8f:20:ae:1b:39:d8:f7:
f3:e9:73:ab:c7:74:0c:6d:61:70:6b:f6:a9:b7:f9:
a0:4d:2f:f7:ec:0e:8e:0f:d5:20:f3:dc:e2:13:d7:
e5:86:76:07:08:86:af:7c:83:c9:e8:ab:39:28:ab:
5b:fd:0c:6d:98:81:06:6d:2b:29:85:1a:ee:7e:76:
59:f2:3d:dc:2e:97:5a:8f:6a:b8:1a:77:52:f3:9b:
3d:37:ec:0f:b8:99:84:9a:3b:20:15:ae:ea:32:eb:
13:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:FD:FE:AA:F5:2B:6D:D1:ED:38:EC:35:2F:CD:20:8A:3C:25:68:91
X509v3 Authority Key Identifier:
keyid:72:09:8E:FA:AE:80:63:CA:CE:CC:4F:1C:1A:0B:64:48:3B:B6:95:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgmO-q6AY8rOzE8cGgtkSDu2lQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/l_3-qvUrbdHtOOw1L80gijwlaJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/cgmO-q6AY8rOzE8cGgtkSDu2lQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.115.0/24
Signature Algorithm: sha256WithRSAEncryption
10:12:d1:7f:86:82:cc:3e:a9:91:06:68:e7:4d:51:ff:1c:33:
3b:ed:43:82:f6:35:16:e1:2e:02:5f:9e:02:cd:59:ee:64:2c:
fa:88:cb:35:12:45:c8:8c:95:8c:1b:fc:ee:0e:01:41:00:72:
90:45:41:5f:48:37:a3:7f:ed:76:18:14:e3:29:d8:d2:b9:b4:
37:ee:3a:af:89:ea:00:21:35:24:eb:b3:3e:11:30:e8:83:55:
59:af:a9:b0:67:e8:13:fe:08:03:99:11:4e:b0:c9:7f:97:82:
27:6c:5c:22:40:7f:32:26:7d:d9:fc:de:71:5c:46:e5:5e:d8:
f5:a2:01:ca:08:e9:bb:12:9f:30:0d:f6:38:e6:a6:d6:42:60:
13:80:a8:4b:86:59:df:fa:b7:c2:6f:37:08:31:65:20:85:04:
2c:33:c1:d2:36:92:05:05:3f:9b:83:38:e9:ae:39:43:50:cc:
3c:0d:1b:be:83:36:46:83:27:ee:a3:f5:45:60:7f:f5:08:8c:
8a:b6:83:f9:1f:43:cb:42:47:d1:96:03:a2:27:91:f7:f8:39:
d8:9c:ac:a0:36:dc:3c:f0:69:cc:d7:e0:84:12:db:7a:c9:33:
7a:b7:2e:72:ec:c1:4e:8b:fc:c9:96:5d:b4:30:cf:e9:9a:ce:
cf:e6:3e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:37 2024 by rpki-client on console-fra.rpki-client.org