Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/c5fc54-74c2-4f3d-95c1-44023c3b784e/1/bGABmYG8SDrQ-qp3Gvd2uC3B6wk.roa
File: bGABmYG8SDrQ-qp3Gvd2uC3B6wk.roa (raw, json)
Hash identifier: i2yubZjkIGxesyXU8G5Req/4c7dlZvUEVaQwlrAP/7s=
Subject key identifier: 6C:60:01:99:81:BC:48:3A:D0:FA:AA:77:1A:F7:76:B8:2D:C1:EB:09
Certificate issuer: /CN=26d9a16c2fa7d4c370b5325214be4420b611f1f9
Certificate serial: 0D70B98C
Authority key identifier: 26:D9:A1:6C:2F:A7:D4:C3:70:B5:32:52:14:BE:44:20:B6:11:F1:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JtmhbC-n1MNwtTJSFL5EILYR8fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/c5fc54-74c2-4f3d-95c1-44023c3b784e/1/bGABmYG8SDrQ-qp3Gvd2uC3B6wk.roa
Signing time: Sat 01 Jan 2022 14:00:49 +0000
ROA not before: Sat 01 Jan 2022 14:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8412
IP address blocks: 185.225.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225491340 (0xd70b98c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26d9a16c2fa7d4c370b5325214be4420b611f1f9
Validity
Not Before: Jan 1 14:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c60019981bc483ad0faaa771af776b82dc1eb09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:54:d3:70:c2:4c:32:61:2a:84:cb:87:93:3f:
fb:54:ac:67:10:90:20:aa:34:02:a2:a0:dd:92:3f:
d2:e3:27:de:68:87:c7:cc:24:4d:38:40:03:4a:4a:
c0:26:46:63:b5:c9:5a:06:ac:b8:2e:b0:2a:dd:06:
57:12:c8:6c:7c:e4:83:f4:bc:ff:01:48:7a:5b:43:
3f:a6:91:73:50:87:a0:77:68:c2:e2:0d:97:a5:2e:
e5:56:4f:1a:da:f3:05:d3:6e:1a:bb:c9:55:3e:fb:
a5:99:47:f1:d4:ff:55:65:11:8a:4e:d8:8c:34:7e:
06:ff:f1:ae:6a:21:99:14:e0:d7:ba:cc:0d:21:00:
86:03:99:21:c2:e5:1e:f8:ee:88:89:55:30:64:49:
30:ec:74:35:a3:77:a0:63:e7:40:19:e5:3d:11:6e:
43:7e:7f:80:5b:98:cb:66:16:32:3f:f1:e7:85:75:
bf:2e:53:7b:f0:cb:df:88:11:5f:89:43:36:59:87:
d4:04:cc:9c:2e:8c:fd:b8:95:7b:47:00:10:ee:3e:
60:48:55:2d:91:75:8c:ec:b5:8e:36:3a:9c:52:20:
d4:97:48:b5:44:f9:45:51:49:de:03:30:5e:f1:1a:
08:b8:d3:73:df:2d:45:a9:1e:be:0d:5d:5b:65:8a:
a8:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:60:01:99:81:BC:48:3A:D0:FA:AA:77:1A:F7:76:B8:2D:C1:EB:09
X509v3 Authority Key Identifier:
keyid:26:D9:A1:6C:2F:A7:D4:C3:70:B5:32:52:14:BE:44:20:B6:11:F1:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JtmhbC-n1MNwtTJSFL5EILYR8fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/c5fc54-74c2-4f3d-95c1-44023c3b784e/1/bGABmYG8SDrQ-qp3Gvd2uC3B6wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/c5fc54-74c2-4f3d-95c1-44023c3b784e/1/JtmhbC-n1MNwtTJSFL5EILYR8fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.96.0/24
Signature Algorithm: sha256WithRSAEncryption
39:10:fe:3f:f5:75:db:31:c7:74:b8:52:a6:06:b2:3c:56:b0:
97:e7:1e:eb:69:c4:b8:b2:ac:49:2a:48:87:d9:07:6c:63:42:
9c:c8:66:a5:18:fd:e9:4f:68:e3:f5:b9:e4:2a:f2:1c:1d:3e:
a0:50:ad:c3:00:45:ee:ca:03:70:7a:7f:dd:71:0b:83:01:21:
13:ed:d1:c4:bb:9c:70:d1:ba:6f:d6:90:37:24:73:07:99:96:
be:8b:95:3b:ef:57:a8:26:ee:d7:b3:7f:44:59:1d:89:10:06:
60:fa:c0:1f:8c:08:67:84:9a:41:57:cd:84:e1:03:22:0e:9b:
26:5a:60:2c:2e:57:f6:6a:b7:76:78:93:ca:7b:2a:67:49:b9:
29:a1:aa:99:88:cc:eb:c3:a2:7d:4e:9f:94:5e:a7:1a:36:05:
39:82:d5:01:02:8f:c2:e8:48:da:c6:82:78:38:20:3a:51:a0:
bb:0c:0b:c9:82:33:e4:74:fb:44:8d:5f:3e:b9:88:b0:60:02:
ef:8e:3e:68:03:f2:47:12:83:4d:16:fb:cc:ea:2e:41:4c:9e:
7a:1b:c1:7e:8f:9f:ae:96:17:cc:09:74:40:3b:3e:5c:51:60:
ee:ac:a1:cc:a6:53:dd:80:85:9c:0c:0f:ce:4f:8b:fd:e8:d9:
3f:08:2c:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:10 2024 by rpki-client on console-fra.rpki-client.org