Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/t1IVFdkGUI8ppPDb-KfcCIxI4vM.roa
File: t1IVFdkGUI8ppPDb-KfcCIxI4vM.roa (raw, json)
Hash identifier: bqEd3s4r/mn1qKYvsYuUbBMqPBDCv3CL/T1Lw7kXfuQ=
Subject key identifier: B7:52:15:15:D9:06:50:8F:29:A4:F0:DB:F8:A7:DC:08:8C:48:E2:F3
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 0A392EB5
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/t1IVFdkGUI8ppPDb-KfcCIxI4vM.roa
Signing time: Sat 01 Jan 2022 09:53:40 +0000
ROA not before: Sat 01 Jan 2022 09:53:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29262
IP address blocks: 185.86.81.0/24 maxlen: 24
185.86.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171519669 (0xa392eb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Jan 1 09:53:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7521515d906508f29a4f0dbf8a7dc088c48e2f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:df:a2:20:86:44:ea:95:63:ac:10:00:5c:cd:
75:3a:8d:24:3b:03:dc:61:eb:69:ab:27:ad:2a:91:
2e:f9:d2:ff:32:53:84:be:9f:dc:46:7e:78:8f:59:
13:48:40:19:2c:6f:49:82:fc:13:89:3b:86:c2:4c:
08:5f:55:19:d9:c9:1a:47:96:df:cb:64:22:5c:d4:
89:31:9d:f9:ba:c7:2f:6a:7f:19:63:c8:49:98:bf:
38:0e:21:38:8d:96:35:5a:f6:fd:9a:10:47:8c:cb:
aa:f4:00:4a:7a:07:ea:5b:90:19:92:98:61:fa:ad:
f0:c2:b0:6b:6e:c6:89:be:32:45:e9:25:9f:75:3a:
14:b4:a9:69:fe:5d:d0:80:cf:c8:a6:c5:d8:38:2c:
0b:d6:a6:71:2b:cd:a0:c0:a6:ca:bf:e3:e2:ef:55:
fe:2f:4e:ac:bd:20:c8:70:fb:98:e1:e2:a2:b3:80:
11:02:5b:6f:63:55:1b:d8:26:cc:0a:9a:fa:e3:7a:
32:b8:3f:c8:4e:f5:98:a1:16:56:c2:8a:4f:5e:ba:
bc:ed:dc:13:c2:44:09:c1:f4:04:a8:fa:87:ce:50:
37:42:6e:4b:d5:99:2f:24:27:15:d0:ae:55:cc:a6:
7a:37:40:66:7e:ab:65:19:1a:c1:38:f2:58:58:47:
8f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:52:15:15:D9:06:50:8F:29:A4:F0:DB:F8:A7:DC:08:8C:48:E2:F3
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/t1IVFdkGUI8ppPDb-KfcCIxI4vM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.80.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:3b:ee:d3:bd:b3:45:db:4b:ae:30:de:b8:e7:6c:0f:62:35:
90:fe:74:54:b9:2c:44:92:cd:b7:22:46:00:9c:a2:f0:d0:4d:
d4:9a:db:1f:3f:b4:75:e3:67:96:f9:93:b0:63:2d:1a:ce:e2:
c1:07:9a:dc:b6:84:93:22:a7:c0:08:6d:00:bf:a2:99:54:77:
07:3c:c2:3f:82:1c:db:7c:f3:13:fc:67:d6:41:f2:ce:1a:80:
d8:66:52:ec:86:72:2f:56:9a:e0:dc:50:98:35:a1:ab:cf:65:
20:c3:08:a7:c3:d2:74:2e:95:6b:27:72:20:93:43:77:00:ae:
b6:4d:1d:c8:f7:1b:4d:a3:7f:c9:fe:8b:80:57:45:7c:38:ec:
20:1c:98:44:9a:d5:3f:0c:0a:21:06:f7:02:f3:53:b2:46:70:
a3:c0:9e:ad:d2:69:e9:11:f4:de:d1:ee:ed:1b:a0:21:ae:b4:
48:97:5b:87:43:75:22:53:a3:66:c7:97:2b:20:7b:d1:61:36:
18:d7:c8:4a:5e:f7:11:6f:69:ea:2f:6b:17:7c:ca:9a:df:c5:
58:1e:17:a9:55:1a:81:56:26:ce:2d:c6:f7:34:9a:2e:59:50:
60:1a:40:a8:94:5c:b3:58:e7:bc:4d:cd:c2:e8:28:a7:bc:cf:
d8:45:db:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:52 2024 by rpki-client on console-ams.rpki-client.org