Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ai9X9AVW8Fq7hhy7ljYlr5nnzPQ.roa
File: ai9X9AVW8Fq7hhy7ljYlr5nnzPQ.roa (raw, json)
Hash identifier: 0jIYyFqCLE3RK4Jj7BNGE/jx7hu5j1l7ULzMXUsPMGs=
Subject key identifier: 6A:2F:57:F4:05:56:F0:5A:BB:86:1C:BB:96:36:25:AF:99:E7:CC:F4
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0184D345B9E2AD71F72FF020FE45BC14F1C3
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ai9X9AVW8Fq7hhy7ljYlr5nnzPQ.roa
Signing time: Fri 02 Dec 2022 14:37:52 +0000
ROA not before: Fri 02 Dec 2022 14:37:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52000
IP address blocks: 185.229.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d3:45:b9:e2:ad:71:f7:2f:f0:20:fe:45:bc:14:f1:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Dec 2 14:37:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a2f57f40556f05abb861cbb963625af99e7ccf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:4d:89:1c:d7:0c:84:f5:bd:7d:c1:05:e7:b1:
1e:b3:2b:b2:8d:12:fb:1a:0f:86:ef:cd:8e:2a:5e:
25:8b:93:cf:71:63:36:ce:01:2a:a0:81:bd:b4:7c:
2f:cc:d1:a2:37:62:e5:17:c0:b8:b1:43:cd:c2:6b:
3e:27:38:49:4a:e3:0a:43:fa:bd:08:6c:9b:29:5a:
1c:b5:04:24:22:53:c4:3a:c1:72:1f:c9:c5:76:7c:
11:cc:a8:52:f6:c5:6b:48:f2:54:09:40:ee:35:b5:
d8:de:bf:c2:54:22:19:55:67:60:9a:41:34:41:dc:
2f:77:c4:e2:99:5f:15:d8:f0:a9:9b:23:94:45:04:
db:56:97:d7:2f:f5:42:9b:65:fe:c5:d0:10:cc:af:
47:12:ef:bf:05:69:8b:e4:7a:13:43:ed:21:4d:dd:
99:31:a9:3b:10:70:a0:bf:a1:24:35:15:13:ff:91:
cb:9c:58:9b:c9:4a:7d:53:c6:b6:0a:b6:13:df:62:
33:31:d4:86:a4:df:73:90:3e:04:04:23:11:40:ea:
bf:9f:ec:a7:61:4c:e3:a0:be:3d:98:aa:b5:52:2d:
bd:2d:61:36:88:95:45:26:fd:c1:dc:08:b5:7d:5c:
e0:84:a7:ca:9c:1e:69:ed:36:23:53:39:80:20:fa:
37:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:2F:57:F4:05:56:F0:5A:BB:86:1C:BB:96:36:25:AF:99:E7:CC:F4
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ai9X9AVW8Fq7hhy7ljYlr5nnzPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.65.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:ce:16:b2:e2:aa:fe:8b:89:4d:83:c9:77:ed:4c:49:1b:67:
ee:fd:d4:d7:db:d3:70:59:34:52:3d:37:6d:00:64:95:4e:ef:
b1:2e:dd:af:ba:bf:3e:c9:a9:55:4e:dc:8d:48:76:66:87:37:
fd:6a:09:29:38:13:4d:5f:3e:3e:41:b3:56:62:69:93:f7:17:
86:ec:d2:0b:a9:39:c2:ab:45:04:51:c7:7c:0a:2f:6a:99:2e:
ac:2b:71:47:2e:d0:c0:2b:eb:7e:71:52:cd:14:6d:56:ea:86:
b8:ec:b0:bb:f7:01:ca:ac:69:7c:a9:c2:1b:9c:45:23:14:ec:
05:d1:c9:cd:7b:b2:1e:33:3d:79:f5:6e:c2:0d:13:f7:ca:83:
e9:b0:04:95:f5:f1:06:df:ac:24:53:08:95:25:7d:b3:7f:48:
36:d6:b6:7d:c1:2d:b3:4a:ed:c0:6e:39:ae:bc:b5:b1:7f:bf:
fa:5b:8b:dd:6f:79:06:08:a7:b6:1c:5e:2d:13:ff:53:6b:70:
b3:ea:f4:41:db:51:03:b8:d0:42:a8:d7:65:c7:91:4d:85:a6:
68:6f:16:95:f1:35:8c:4a:d1:80:d5:a8:21:40:aa:77:72:b8:
75:d1:47:e9:a1:15:0b:77:d8:5f:0e:91:5c:56:25:b0:42:e8:
f5:62:04:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org