Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/l9Onydvt-h2KDoVZHYMEq4TCy40.roa
File: l9Onydvt-h2KDoVZHYMEq4TCy40.roa (raw, json)
Hash identifier: mVp7VL694wwLQpsyK9clqUlB+NrskSEPibtTqjeY2u4=
Subject key identifier: 97:D3:A7:C9:DB:ED:FA:1D:8A:0E:85:59:1D:83:04:AB:84:C2:CB:8D
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17ACE010
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/l9Onydvt-h2KDoVZHYMEq4TCy40.roa
Signing time: Sat 01 Jan 2022 04:54:08 +0000
ROA not before: Sat 01 Jan 2022 04:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43126
IP address blocks: 185.190.82.0/24 maxlen: 24
2a0b:1904::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 397205520 (0x17ace010)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97d3a7c9dbedfa1d8a0e85591d8304ab84c2cb8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e9:39:8b:a1:60:d7:05:99:f2:c5:53:27:fa:
29:4b:4b:b1:ef:d4:c1:d4:64:7e:51:0b:1e:c0:47:
80:76:c2:01:db:ea:c7:cf:f5:11:ac:fa:81:ef:b5:
34:ca:12:7f:f4:c7:92:e1:1f:8d:16:8a:19:9d:d6:
78:04:a3:66:bf:ab:40:e7:fc:90:e2:a4:b5:f7:8b:
a5:16:87:cf:8a:91:56:f7:dd:35:71:e5:ec:a4:77:
be:6e:d2:c0:35:5b:db:a8:53:11:74:31:77:a3:65:
f3:4e:2b:e1:88:4f:b3:a9:30:81:f4:59:74:e6:7d:
f6:2f:79:c5:fd:0a:78:d3:dc:4c:74:38:23:a3:98:
ba:39:82:91:80:6b:f9:32:f8:77:fe:8d:2b:82:2a:
24:23:27:b2:5a:93:75:2f:a4:7c:15:ae:b7:cc:7e:
14:5c:74:1f:74:20:6e:b4:00:81:74:0b:0e:90:62:
43:92:86:32:f2:cb:08:e1:c3:94:ce:a8:82:d5:f4:
72:d7:68:39:b2:42:dd:91:d9:7e:70:f5:e8:a7:b9:
0a:08:2b:3f:99:58:67:dd:44:eb:bc:b8:6f:1f:e6:
bd:c3:d1:6b:8b:22:7a:17:c6:79:60:aa:fb:7c:fd:
49:0b:ba:14:c2:7a:a3:1a:b6:36:a0:b4:73:50:e6:
23:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D3:A7:C9:DB:ED:FA:1D:8A:0E:85:59:1D:83:04:AB:84:C2:CB:8D
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/l9Onydvt-h2KDoVZHYMEq4TCy40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.82.0/24
IPv6:
2a0b:1904::/48
Signature Algorithm: sha256WithRSAEncryption
62:71:1b:2e:0b:54:81:ac:9c:53:4d:b6:51:39:69:2a:84:0f:
54:f9:ef:95:8d:f7:d2:40:03:a1:96:57:fe:6f:52:dd:4d:58:
3d:ed:20:a5:4d:0d:49:00:3d:9e:27:58:73:bd:8f:db:4e:26:
3e:64:22:50:ef:4b:f5:31:7d:e3:1a:86:96:26:31:85:9d:fc:
4e:d1:da:20:1b:d5:7b:70:96:f3:d4:f0:31:4f:d7:02:d1:db:
8a:65:9c:79:a3:79:61:8d:2a:ac:e0:2c:b2:9e:4c:87:4d:50:
c4:46:6a:d0:f9:7a:76:8a:31:7f:65:ab:92:ae:da:51:40:4d:
23:24:5c:50:b5:80:09:a5:62:95:ae:69:7f:d4:8e:62:5d:b6:
c9:6b:f7:5e:e6:1d:53:f3:a7:a9:f0:fe:4a:48:34:54:e9:0d:
81:13:32:1a:99:08:2d:ee:e4:4f:9f:4d:cc:3c:cd:f0:f4:e6:
a7:62:95:76:be:75:9e:7f:3b:b2:5f:a9:19:42:e3:67:5d:47:
02:50:18:af:27:c0:10:8e:9b:42:cf:9c:22:e4:4e:b7:94:a4:
4d:8c:38:6c:c8:9c:c3:b1:10:47:03:68:98:e6:b9:14:18:db:
92:ee:06:6e:48:8c:2c:e8:91:2d:53:50:c3:f9:ac:a6:e1:95:
9f:5d:db:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:33 2024 by rpki-client on console-ams.rpki-client.org