Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Aqx0MJd7SL4eaT4kaYWtIQafr8A.roa
File: Aqx0MJd7SL4eaT4kaYWtIQafr8A.roa (raw, json)
Hash identifier: djrbhJF6Mz7B2GN4JFquKYp1L/cFKGygdIhsI9CsGuM=
Subject key identifier: 02:AC:74:30:97:7B:48:BE:1E:69:3E:24:69:85:AD:21:06:9F:AF:C0
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 064E7E91
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Aqx0MJd7SL4eaT4kaYWtIQafr8A.roa
Signing time: Sat 01 Jan 2022 06:52:44 +0000
ROA not before: Sat 01 Jan 2022 06:52:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211193
IP address blocks: 185.223.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105807505 (0x64e7e91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02ac7430977b48be1e693e246985ad21069fafc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:80:fd:88:f4:63:84:77:a8:f5:73:c7:e3:78:
c9:fd:e5:17:76:36:78:35:31:9a:d8:08:38:29:2c:
d2:d8:60:49:9c:01:fd:48:07:d3:c5:01:7c:84:23:
f4:34:ef:79:08:52:cd:00:6f:89:2d:02:32:f9:ef:
f0:e7:61:3c:d4:7f:ba:41:55:6f:e6:2a:10:18:cb:
e5:8c:71:16:47:b8:c9:4b:ad:19:2e:cc:63:45:26:
63:81:d0:45:fe:25:ef:7f:3d:45:50:91:f0:bb:de:
2a:0a:ef:76:d2:b0:b9:f5:44:35:6b:02:f2:d5:2d:
47:c5:70:fb:1a:9a:27:8c:81:05:a2:92:51:59:1a:
fa:e1:ae:5f:2f:20:da:1a:31:3c:05:82:50:2f:b3:
3e:c4:84:a3:08:da:8d:5f:08:cc:e3:ef:66:bc:a7:
3f:2c:a9:a5:22:d5:3b:a3:2f:59:d2:ae:26:fe:58:
4d:9c:55:57:e4:c7:bd:72:bf:3e:3e:a5:d9:d3:05:
a3:31:8e:8d:ab:84:78:fa:8c:e0:55:6b:0e:bf:46:
28:68:db:b4:f3:fb:46:12:9d:96:6b:70:74:d7:48:
bd:f9:c2:45:12:8d:09:05:ca:d3:ee:b5:c5:92:ec:
12:fc:0c:22:d9:26:75:2e:2e:00:5a:90:b3:d0:95:
7f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:AC:74:30:97:7B:48:BE:1E:69:3E:24:69:85:AD:21:06:9F:AF:C0
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Aqx0MJd7SL4eaT4kaYWtIQafr8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.155.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:96:b4:3f:4f:61:79:bf:f2:c1:b0:16:b5:83:11:14:fc:fb:
5a:8d:d4:9c:69:69:06:6f:4c:52:4d:dd:94:83:87:68:10:79:
91:2e:71:59:63:65:4f:02:3e:2a:c1:55:80:a9:2a:e1:34:4d:
b6:f1:b6:8f:3b:2d:7b:d8:2a:34:2a:66:68:46:68:07:03:ba:
f1:84:1c:a5:6e:16:37:22:2d:a4:d1:ad:00:40:1a:7d:a4:5b:
62:4a:e6:ee:a3:c7:ae:bb:ed:9d:79:a5:41:c7:10:88:5c:b0:
1c:0c:39:0c:f9:e5:29:6b:00:3a:0e:0a:06:66:42:6e:9e:6a:
7d:21:83:b3:3e:78:78:e6:42:f8:bc:f9:5e:ea:a6:87:4f:61:
bb:9c:d9:b7:ea:47:4d:f0:de:75:0c:f5:d3:7c:26:69:70:6e:
59:b8:26:ff:03:96:70:74:68:c3:9f:4e:49:64:12:22:e6:92:
94:87:21:f6:88:53:80:cc:b8:35:d3:d0:b3:e5:31:83:a7:fb:
80:e0:d2:4d:4c:52:ac:6c:63:8d:7a:8b:58:85:a0:54:e1:f1:
44:9a:ac:e1:59:a6:b2:fc:dc:fb:7e:42:8e:2a:05:24:d4:41:
ff:db:cb:c6:d7:4f:bc:ee:77:d7:70:28:ad:2f:a8:be:9e:bb:
01:49:3e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org