Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/U3v0nsVhUOeSHzTVoQagp-XRpkw.roa
File: U3v0nsVhUOeSHzTVoQagp-XRpkw.roa (raw, json)
Hash identifier: D5tHgxjNwpf8xNfH+TegqFrDdSxPINKGoMghC0Y+EqI=
Subject key identifier: 53:7B:F4:9E:C5:61:50:E7:92:1F:34:D5:A1:06:A0:A7:E5:D1:A6:4C
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17F621FD
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/U3v0nsVhUOeSHzTVoQagp-XRpkw.roa
Signing time: Sat 01 Jan 2022 04:54:53 +0000
ROA not before: Sat 01 Jan 2022 04:54:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212728
IP address blocks: 185.215.215.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402006525 (0x17f621fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=537bf49ec56150e7921f34d5a106a0a7e5d1a64c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d2:b0:8d:13:b0:a6:a7:86:56:6f:ee:c7:0a:
5a:a7:28:92:09:be:88:ca:6b:12:ba:d1:52:ee:0a:
36:2d:38:9a:1a:74:fe:50:69:39:ec:d4:06:f4:11:
e3:f7:5c:85:13:e8:ef:f3:4e:b6:c9:65:97:b1:d6:
3d:1d:dd:0f:f2:73:95:b0:73:aa:98:98:08:77:7c:
42:9b:9a:f7:16:6a:57:19:d1:63:e1:cf:24:1d:ff:
82:d1:9a:c8:4c:90:07:5c:d3:bf:1b:04:66:bb:7d:
78:e9:57:ee:42:1f:42:95:98:f3:c7:2f:01:5c:3a:
8f:d4:07:01:d9:e8:48:8c:6e:6e:2a:00:de:f4:5e:
6e:80:30:c5:21:38:ee:a6:82:d5:ec:ed:7a:5b:78:
62:7c:48:a8:6a:d9:8b:36:b5:d7:cb:29:28:3f:34:
44:d1:de:e2:31:b1:dd:8c:16:a7:21:18:7a:3c:87:
12:a9:de:45:1f:22:2a:77:98:c7:f9:92:97:34:af:
8f:f0:cb:d3:d4:31:13:46:f7:a5:fc:ef:5c:e9:75:
3c:46:51:81:f3:90:cf:c6:8d:61:1a:af:03:61:92:
22:4c:6c:d1:66:55:0d:ad:2f:0a:1d:29:9e:0c:9a:
8f:0f:91:a4:e4:b3:1b:c4:0b:44:1e:6f:2e:d6:fd:
a0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:7B:F4:9E:C5:61:50:E7:92:1F:34:D5:A1:06:A0:A7:E5:D1:A6:4C
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/U3v0nsVhUOeSHzTVoQagp-XRpkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.215.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:b3:5c:c3:09:07:c1:d9:e6:ed:00:50:8f:f8:9b:ee:2a:27:
d5:29:dd:c5:17:7d:b6:a4:bc:45:b7:db:fe:a4:05:c9:e1:12:
28:5e:47:00:b9:52:aa:f3:40:fb:3f:30:ef:c1:36:0e:d3:e2:
cb:58:f8:86:ed:ca:6b:cb:55:d6:86:71:ec:7a:7d:90:2b:8e:
e2:1c:0c:49:c3:36:79:5f:34:96:07:8d:2e:e3:1d:39:b1:56:
d3:90:d4:8c:5d:f5:29:90:02:8a:f4:17:af:48:01:42:98:b1:
cd:f5:ea:18:50:45:8a:2f:5c:03:a7:c8:0e:c0:33:54:3e:6f:
0a:4f:a3:fe:2a:f7:ca:d3:00:29:71:20:1b:93:1f:65:56:8e:
1e:2a:ec:e3:59:f5:e1:0e:89:f0:eb:5c:fd:d3:7d:96:3c:88:
af:b1:6d:16:87:a0:55:81:ff:8e:80:e2:96:02:08:68:d1:10:
d2:63:f1:5c:47:fd:90:d4:76:cb:be:e7:be:76:2e:4c:c1:30:
88:63:52:e7:8e:df:06:99:6c:e0:90:24:a9:72:15:ae:68:ce:
07:db:b2:25:57:63:aa:69:81:9d:8c:53:ed:54:ce:69:be:4f:
b6:dd:ae:ee:8d:f3:be:2a:8a:fd:69:41:af:dc:ee:7c:12:77:
ca:26:f0:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org