Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0i8jdvrgTH8mC25wiDJYXsRjCXA.roa
File: 0i8jdvrgTH8mC25wiDJYXsRjCXA.roa (raw, json)
Hash identifier: MZoj/yECJDsZ/Qoj7o9XyFJdSZTAhPmNOLiU4JsuKZo=
Subject key identifier: D2:2F:23:76:FA:E0:4C:7F:26:0B:6E:70:88:32:58:5E:C4:63:09:70
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 072B4055
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0i8jdvrgTH8mC25wiDJYXsRjCXA.roa
Signing time: Fri 11 Mar 2022 22:56:35 +0000
ROA not before: Fri 11 Mar 2022 22:56:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 271537
IP address blocks: 185.230.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120275029 (0x72b4055)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 11 22:56:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d22f2376fae04c7f260b6e708832585ec4630970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:90:c3:34:7e:2c:94:94:81:87:f2:32:ad:f7:
b3:b6:0b:01:fc:40:e8:18:07:ab:91:54:b7:c8:1e:
17:30:7f:e1:54:77:09:7b:c9:3e:5e:14:d3:77:ab:
05:77:13:cd:83:87:f3:ed:b1:96:33:86:7d:29:cd:
1a:e1:bb:e6:2b:2e:bf:58:99:c0:0b:9b:19:05:1e:
88:d7:c0:a3:77:86:9c:c4:2e:43:f5:4e:8c:11:58:
4a:9d:6a:d8:d2:4b:ad:10:5b:0f:68:17:17:7e:61:
20:ad:b7:03:fd:5b:20:49:25:d1:0a:96:0a:34:e0:
f3:48:a3:e1:4a:b9:ee:b3:7a:a8:4e:f8:bf:c5:8b:
7c:6a:12:8f:d8:b2:5d:a2:5e:ed:9d:5f:21:19:0f:
4c:bf:23:7b:4a:b3:6e:ed:e2:33:d8:71:ac:35:40:
71:dc:a3:39:e3:6b:50:45:62:b2:23:59:e4:cd:47:
70:dd:20:e4:84:80:a4:57:ec:af:31:85:fd:61:08:
3d:26:63:e1:75:46:9f:f9:6a:0d:46:93:76:09:e9:
45:ae:58:f1:59:1c:61:25:4e:05:04:fd:4b:56:f7:
cd:f4:e0:87:5b:49:52:a5:68:10:dc:3a:79:9b:76:
82:39:a0:14:e1:15:e6:f1:1e:56:ff:be:a4:71:ed:
20:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:2F:23:76:FA:E0:4C:7F:26:0B:6E:70:88:32:58:5E:C4:63:09:70
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0i8jdvrgTH8mC25wiDJYXsRjCXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.53.0/24
Signature Algorithm: sha256WithRSAEncryption
21:f6:56:db:04:34:df:da:3b:52:3a:55:17:b4:7b:4b:42:54:
66:b8:2d:f1:a2:bf:08:b8:d0:37:41:8e:92:eb:20:22:4d:4b:
fc:d0:a5:c9:04:a4:7d:dd:73:ea:fb:fb:a9:f3:36:de:f2:eb:
df:8d:41:c6:34:64:00:5b:3a:38:43:48:0d:08:a9:87:5c:43:
00:0f:57:d9:c5:ee:86:9b:8b:d1:20:aa:84:2c:08:1f:e1:d7:
d0:f7:76:2c:84:40:00:40:f5:63:8b:35:ae:1c:65:23:16:0f:
67:a3:68:70:7e:9f:28:32:0d:ff:05:7a:24:6f:c3:f8:c5:3a:
ab:dc:42:b5:55:0b:27:34:8f:2a:d9:63:2e:04:bb:2f:62:23:
87:f8:9c:c5:9c:b4:03:27:8d:01:55:d0:37:35:e6:b2:75:e0:
69:81:15:31:1d:2a:d8:fc:09:77:b8:2c:d2:c4:06:26:c1:05:
7b:4b:ee:e0:45:f6:84:40:0d:43:7e:9e:ad:91:6b:77:80:a6:
ec:80:29:a7:e9:7b:60:5c:53:b1:0f:c2:3e:30:73:c5:e1:64:
e8:57:90:00:26:8c:45:60:0e:2d:1c:f1:80:47:3d:86:2e:4b:
78:d2:ca:d8:3f:f9:8b:70:50:5d:2d:da:61:58:40:a8:6b:13:
23:6c:2a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:19 2024 by rpki-client on console-ams.rpki-client.org