Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/l0UrCspAft8Pln5lyI-qcUhqa6I.roa
File: l0UrCspAft8Pln5lyI-qcUhqa6I.roa (raw, json)
Hash identifier: f3B6wOgTs/OnF9LVRS/9TPQIjn1xCgUzQh14mnvua+8=
Subject key identifier: 97:45:2B:0A:CA:40:7E:DF:0F:96:7E:65:C8:8F:AA:71:48:6A:6B:A2
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 063821E0
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/l0UrCspAft8Pln5lyI-qcUhqa6I.roa
Signing time: Sat 01 Jan 2022 06:52:31 +0000
ROA not before: Sat 01 Jan 2022 06:52:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 185.223.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104341984 (0x63821e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97452b0aca407edf0f967e65c88faa71486a6ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:98:1c:8d:bd:03:3c:b5:0c:17:7a:9f:ff:15:
42:16:b3:55:cf:b1:64:9e:8b:79:98:15:31:f3:c0:
31:ff:4e:2c:b8:cd:d2:16:0d:9b:96:4f:c2:ad:89:
1f:32:85:5a:69:e9:49:1a:84:79:87:19:1a:b7:3e:
bc:90:da:0a:b4:51:8b:a9:9d:2d:ae:f3:07:bb:30:
b6:d1:4d:c4:5e:d5:f7:ef:79:0a:4a:fb:4d:32:95:
bb:97:78:1a:de:17:92:ec:a1:b8:59:ba:a0:33:60:
fb:f9:a7:f3:66:3d:ae:30:ee:e1:6d:4f:b0:bb:4d:
21:b1:a8:33:cc:b6:85:56:b9:57:a2:12:c6:7f:c9:
52:18:b8:5e:1e:33:2d:02:eb:94:90:19:10:94:97:
6c:be:02:e6:42:9c:0b:ef:eb:c5:a2:e3:af:08:30:
00:6e:5d:a8:e8:ce:08:a1:f3:ea:8d:8d:9d:d4:e8:
50:3f:0c:6b:b5:ce:27:f9:2f:07:7f:88:1c:f3:59:
16:d4:9e:ec:c9:ad:4a:22:f1:bb:39:a0:e5:b9:c1:
64:b2:67:cd:5d:c7:be:48:5c:eb:d9:b9:92:f5:87:
05:9a:e0:01:eb:e6:98:b0:f3:d0:39:55:60:76:4c:
8f:44:ed:28:27:11:36:da:fa:51:1b:78:5f:e9:cf:
fb:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:45:2B:0A:CA:40:7E:DF:0F:96:7E:65:C8:8F:AA:71:48:6A:6B:A2
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/l0UrCspAft8Pln5lyI-qcUhqa6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.77.0/24
Signature Algorithm: sha256WithRSAEncryption
91:b3:1a:67:9e:ae:f7:13:80:ac:68:d7:fd:8f:75:c7:55:a1:
55:6f:67:3d:d2:85:34:a1:c0:6c:93:0a:a2:c6:9a:31:a5:d2:
0d:f5:b1:27:4f:54:e6:bd:8a:35:b2:38:f0:97:e1:f5:50:9e:
a0:e8:d1:c9:3c:bd:2f:1f:64:7d:3e:ea:61:0a:b9:e4:33:e2:
ba:75:94:b7:ee:d4:75:33:77:ee:c7:28:18:62:db:c1:b2:a4:
e4:03:ed:32:0f:83:8d:8d:3d:a7:8d:86:62:ec:ca:00:21:b2:
55:bc:10:a1:ea:20:10:7f:3a:e9:e6:f1:1c:13:23:e9:fd:6c:
db:29:a3:23:83:9b:53:e1:37:ad:2c:44:88:cf:7f:0d:b3:23:
e7:f7:af:60:bf:73:3e:a7:bc:26:07:41:11:cf:11:2f:c2:fd:
2a:d6:8d:14:40:53:a8:40:c3:6c:b8:b3:85:a8:4f:1e:53:2c:
ab:64:47:54:98:62:77:d0:12:bf:8f:fd:ef:85:1f:03:28:7c:
3d:99:63:c0:8d:77:45:d2:a2:4f:07:c2:cc:3c:46:79:6a:97:
4c:6d:f9:70:bd:65:6a:05:a3:34:40:67:f8:69:42:ea:72:cd:
6d:1e:85:cc:37:b0:9c:e4:10:13:2c:15:ad:8a:f3:19:33:63:
f7:07:6c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org