Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/6QlwPH6u6GGHQR2eFpCgS-PVoq8.roa
File: 6QlwPH6u6GGHQR2eFpCgS-PVoq8.roa (raw, json)
Hash identifier: G+ySG+TWLrsBEdEfmtHzRiyHhoV+ykZ5GPWsEY5zQbE=
Subject key identifier: E9:09:70:3C:7E:AE:E8:61:87:41:1D:9E:16:90:A0:4B:E3:D5:A2:AF
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 02E9346E
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/6QlwPH6u6GGHQR2eFpCgS-PVoq8.roa
Signing time: Sat 01 Jan 2022 15:59:50 +0000
ROA not before: Sat 01 Jan 2022 15:59:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210950
IP address blocks: 185.193.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48837742 (0x2e9346e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: Jan 1 15:59:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e909703c7eaee86187411d9e1690a04be3d5a2af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e3:5a:75:2a:21:67:6e:62:74:f1:36:e1:e4:
2d:78:a4:83:5e:7b:a9:fe:87:79:68:2d:9a:20:50:
e5:ff:8f:68:15:6c:60:84:a8:a0:44:a7:f5:1e:eb:
bb:15:d1:05:4b:3e:6e:4b:85:26:da:9c:97:31:8a:
7b:9f:5c:e3:b4:b8:43:56:ad:84:9f:70:1d:2d:27:
ff:ad:ad:26:ec:d9:3d:e4:f9:80:c1:02:91:b4:c3:
ad:4b:15:18:bf:5b:70:bd:79:0a:31:6d:51:e1:1b:
bf:62:7b:64:50:fb:35:46:cb:4a:77:a3:23:82:e2:
db:d9:35:01:8d:dd:79:b2:50:f7:6f:6a:37:c8:df:
2c:e3:de:7c:0c:92:d4:83:6d:51:d0:65:6c:16:7e:
4f:9c:7c:58:e3:b9:07:a4:b1:eb:9d:72:39:ec:b3:
9c:c1:09:4c:a6:da:e8:15:f7:c0:0f:e0:84:c6:5b:
46:c3:cc:c3:2d:69:47:5d:6d:d3:d1:2c:98:d2:12:
0c:f0:e4:61:70:27:5b:3d:bc:9c:47:cc:20:6f:b7:
fc:ca:8b:ec:cc:0a:29:22:50:53:11:69:d5:e0:de:
30:e2:f3:1a:64:8b:b2:ac:38:45:7f:3d:08:e8:54:
5e:bd:1e:79:ff:14:b3:45:05:65:85:1e:c2:f6:64:
30:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:09:70:3C:7E:AE:E8:61:87:41:1D:9E:16:90:A0:4B:E3:D5:A2:AF
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/6QlwPH6u6GGHQR2eFpCgS-PVoq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.89.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:30:a1:a2:01:98:8a:25:1d:0e:94:d5:d1:74:eb:eb:03:4c:
e0:e3:6f:a6:db:ee:8f:a1:56:5a:db:15:fb:31:8b:f2:5e:dd:
40:18:fa:e9:fa:7f:5d:e8:fb:ef:b7:b6:6c:ab:f8:06:24:0a:
42:5a:89:a1:0a:d9:d4:da:16:94:76:10:bd:d9:58:1f:a1:cd:
ee:1a:a6:ba:50:f1:22:0f:7b:ee:6f:a5:1a:b9:7f:57:1c:86:
5a:5a:56:37:52:f5:42:01:dd:b7:26:4f:cd:69:c1:aa:c6:35:
b2:bb:a0:97:67:4a:15:db:99:87:d3:b8:ff:9e:98:cd:8b:0a:
59:40:3c:87:e6:f1:a9:f4:a9:23:92:6d:63:53:62:97:c8:88:
a2:98:56:65:09:a7:c8:4d:65:e4:52:bb:ba:54:50:46:2e:85:
aa:2d:3b:f7:d1:d7:57:a4:00:05:3f:71:18:b6:62:f2:7c:08:
e2:97:17:50:4f:18:85:bb:8a:68:88:83:d4:53:e6:20:e1:89:
ea:01:6e:74:45:a5:b8:2e:a6:4c:5b:47:e2:9e:13:e8:ef:01:
04:51:2e:02:53:38:f1:8e:f0:c9:71:c3:28:f1:b1:3b:0f:d7:
39:3b:5a:6c:44:63:cb:24:c0:ca:cb:aa:57:49:5c:05:cc:a8:
53:06:da:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:58 2024 by rpki-client on console-fra.rpki-client.org