Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/XckYl7npOK4P-i7dVJb6FhU74vg.roa
File: XckYl7npOK4P-i7dVJb6FhU74vg.roa (raw, json)
Hash identifier: oLOUX5U14GrPyv9KIn+sYmGMVTALOjwVa9hxHOiKLb8=
Subject key identifier: 5D:C9:18:97:B9:E9:38:AE:0F:FA:2E:DD:54:96:FA:16:15:3B:E2:F8
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 064E7D59
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/XckYl7npOK4P-i7dVJb6FhU74vg.roa
Signing time: Sat 01 Jan 2022 06:52:44 +0000
ROA not before: Sat 01 Jan 2022 06:52:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210876
IP address blocks: 185.255.124.0/22 maxlen: 22
45.134.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105807193 (0x64e7d59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5dc91897b9e938ae0ffa2edd5496fa16153be2f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:32:7f:6b:14:98:d6:59:f7:af:dd:7e:95:91:
15:e5:e2:37:5d:8d:7f:c2:d2:a9:a5:28:40:2b:4c:
d0:48:02:af:fa:5b:74:42:39:5a:e2:ea:94:75:fe:
86:b8:ec:6d:49:a7:ff:0f:6c:3c:37:75:0c:e2:bc:
d5:05:b0:75:ac:90:49:02:76:1d:85:24:2d:29:96:
ae:5f:72:fc:8e:4b:ec:67:d5:cd:01:54:9e:c3:49:
0e:fc:39:d8:55:45:3f:6b:6f:9c:14:17:2f:b6:2e:
1e:5c:89:df:f6:9e:3e:f7:0d:ea:c9:9b:7b:70:fc:
03:c1:3f:4f:3f:98:72:dc:48:47:73:85:ba:1e:c3:
32:50:11:fc:db:0a:72:60:ea:a5:9c:29:03:f3:19:
05:fa:e7:78:c0:36:81:19:f2:3d:63:a2:96:62:2b:
f5:66:1b:f6:d7:a7:89:58:ec:6f:73:c2:f3:15:ba:
a3:de:22:90:03:98:39:6a:b5:d0:b2:7f:e4:43:d7:
ab:7b:97:62:68:2b:02:dd:d2:ed:10:a2:df:45:ec:
80:c0:e4:8a:e4:fe:fc:f8:fd:9d:29:5a:17:de:a6:
1a:f2:37:68:28:a7:85:a1:bc:9c:61:9f:d4:e0:6d:
d1:b6:32:12:a7:2e:cf:a9:5f:61:fa:c3:03:a9:cb:
e9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:C9:18:97:B9:E9:38:AE:0F:FA:2E:DD:54:96:FA:16:15:3B:E2:F8
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/XckYl7npOK4P-i7dVJb6FhU74vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.84.0/22
185.255.124.0/22
Signature Algorithm: sha256WithRSAEncryption
51:23:d2:34:13:2a:96:bf:68:75:74:d3:da:b1:e8:02:fd:f1:
ce:85:9a:fd:54:ff:33:fc:1f:a1:9f:df:a9:18:ec:70:c7:26:
6e:49:2a:81:60:97:19:58:8f:b0:bc:ff:5e:d4:ab:ca:a1:da:
a8:bd:ba:44:fb:79:4f:18:a3:58:aa:d1:75:18:34:79:f5:99:
f6:47:88:e8:88:1a:eb:63:5d:31:3d:c4:fe:bd:6a:e6:30:c3:
88:b1:e7:ab:d6:60:85:4e:16:0b:18:87:18:04:17:d7:a2:60:
c7:1e:cd:4f:09:cb:ec:04:e3:e4:9d:5c:b3:12:f8:49:28:23:
2b:5c:9c:5e:2c:d3:5b:cd:0d:4e:52:ff:ef:02:eb:ae:31:09:
47:23:c2:07:ce:55:4a:70:ea:08:27:94:9c:0c:a6:2e:dc:8a:
fd:ae:3b:d9:ff:11:bf:a0:6e:d9:9e:fe:2c:5a:60:8c:61:ca:
68:f1:be:ea:7e:79:c2:dc:b4:a5:d7:69:c4:02:2a:f8:1f:45:
25:d2:80:4e:6e:9e:49:86:d6:89:ca:b1:da:c1:51:0f:10:09:
49:26:95:dd:25:27:7a:d5:68:ab:13:0c:67:74:b1:fb:d3:12:
e2:c5:f1:4b:33:ae:33:b3:e6:fb:82:24:da:e7:ca:96:f3:0a:
f8:41:8e:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org