Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/1-wQN54GsQVxLINIfxFlaCByBdV4.roa
File: 1-wQN54GsQVxLINIfxFlaCByBdV4.roa (raw, json)
Hash identifier: L19RphSA9sRa4mAAP6vRaJxI4K/rvBhW4vHxUdGorsw=
Subject key identifier: FB:04:0D:E7:81:AC:41:5C:4B:20:D2:1F:C4:59:5A:08:1C:81:75:5E
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1A126B2D
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/1-wQN54GsQVxLINIfxFlaCByBdV4.roa
Signing time: Sun 08 May 2022 06:11:05 +0000
ROA not before: Sun 08 May 2022 06:11:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210715
IP address blocks: 185.251.233.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 437414701 (0x1a126b2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: May 8 06:11:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb040de781ac415c4b20d21fc4595a081c81755e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e7:95:e3:71:35:e5:28:39:fe:13:d8:60:7f:
7b:5e:b0:81:65:74:80:71:10:fb:33:49:d2:5d:3a:
a2:8d:01:ef:bc:06:15:56:f1:96:2b:e3:36:16:4f:
ad:08:53:8d:3a:1c:7b:33:56:fb:9b:0b:db:2f:e3:
96:a5:64:a2:a6:54:3b:8a:c1:c9:1f:eb:d0:6d:ed:
87:09:51:ff:2a:0c:fe:dc:9c:fa:cf:32:8c:5f:7e:
f2:8b:77:ce:6f:cb:42:08:e5:ae:7c:c6:0f:f9:2a:
84:b5:eb:62:c5:d2:5a:9e:76:be:85:97:25:a7:2b:
f6:db:0d:8b:9e:0f:80:58:00:2f:0e:9a:25:69:54:
0c:a9:55:f4:12:78:fa:ea:bd:65:c7:35:14:5b:4b:
8c:00:63:55:2b:0c:9d:91:c5:73:27:8b:4c:14:a0:
53:ab:05:76:e9:b0:b5:8e:27:c4:0e:fe:81:c4:a6:
64:e2:15:22:68:01:06:07:9f:22:fc:2d:43:7f:79:
01:d3:13:26:1a:af:55:1a:bf:32:0e:8f:2a:a8:97:
1f:0c:d1:4d:64:70:09:0e:06:be:28:96:d8:21:c6:
a6:87:5b:3d:2d:73:32:28:03:96:7a:6b:7f:f4:1f:
d5:ab:6a:d6:bd:2a:9f:3a:43:97:72:30:f7:ad:e7:
69:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:04:0D:E7:81:AC:41:5C:4B:20:D2:1F:C4:59:5A:08:1C:81:75:5E
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/1-wQN54GsQVxLINIfxFlaCByBdV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.233.0/24
Signature Algorithm: sha256WithRSAEncryption
47:79:36:bb:f9:da:aa:fd:20:92:fe:5a:3e:91:db:79:85:6d:
6b:98:57:37:01:d5:8c:1f:9a:91:5d:c6:59:01:7e:25:5b:73:
9f:cb:7a:83:01:23:54:54:80:55:a4:c4:e0:63:04:6b:3c:02:
37:df:93:a6:72:35:11:4d:84:cb:26:0d:80:7c:d9:de:7d:c3:
bf:21:ed:b8:bb:da:f5:42:a4:86:c5:2c:38:2c:b6:1d:1d:a3:
72:c0:2f:be:22:2c:ca:af:c8:eb:b0:f3:00:69:83:cf:14:ae:
aa:ad:53:e9:18:96:00:3a:4e:a2:4b:b0:08:54:87:7b:d8:a2:
24:06:9b:ed:11:ea:c7:bf:ab:ea:06:b4:61:f7:0e:13:4d:96:
80:ce:a0:ef:08:5b:87:f4:0b:b8:ab:8d:49:e2:14:51:c6:f6:
f3:44:ac:ce:18:e3:a9:0c:02:3f:ad:92:0e:3f:1e:ca:92:a4:
9b:cc:ed:15:de:46:de:c4:77:f7:99:96:ee:80:35:40:79:88:
2c:f4:f0:56:6c:d8:ff:b4:81:5f:2d:d3:f5:50:3d:98:a8:e8:
c7:42:61:0d:40:e1:81:23:62:f4:83:ae:be:2e:0e:93:3c:bb:
ec:9b:6a:75:63:48:e1:9a:c8:58:78:81:ab:ef:84:77:68:f0:
3e:27:be:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org