Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/98e650-337b-483d-9f4c-a83383059c18/1/vEkL0HML1ixFItdb_F0YpB_J5eI.roa
File: vEkL0HML1ixFItdb_F0YpB_J5eI.roa (raw, json)
Hash identifier: +pKbcNHHEVPgWMuUW++2m67FUnFdoCXttx+URySKBTc=
Subject key identifier: BC:49:0B:D0:73:0B:D6:2C:45:22:D7:5B:FC:5D:18:A4:1F:C9:E5:E2
Certificate issuer: /CN=99060e2deaffea7d622dd91580ff9015f255758b
Certificate serial: 018C58449C575D87120B301FF55804A6D702
Authority key identifier: 99:06:0E:2D:EA:FF:EA:7D:62:2D:D9:15:80:FF:90:15:F2:55:75:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mQYOLer_6n1iLdkVgP-QFfJVdYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/98e650-337b-483d-9f4c-a83383059c18/1/vEkL0HML1ixFItdb_F0YpB_J5eI.roa
Signing time: Mon 11 Dec 2023 09:45:40 +0000
ROA not before: Mon 11 Dec 2023 09:45:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215894
IP address blocks: 185.159.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:58:44:9c:57:5d:87:12:0b:30:1f:f5:58:04:a6:d7:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99060e2deaffea7d622dd91580ff9015f255758b
Validity
Not Before: Dec 11 09:45:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc490bd0730bd62c4522d75bfc5d18a41fc9e5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:81:63:a9:6d:26:b8:cb:6b:e5:14:bf:7d:d1:
b3:0b:76:a7:df:85:3c:c0:1b:56:cd:fb:ed:38:04:
45:aa:ca:9d:8e:0b:f4:ce:36:ef:6d:f0:fa:59:5c:
92:13:db:75:df:a6:84:04:29:d9:24:96:4c:5b:40:
5f:c8:85:16:5c:16:b7:88:6e:82:f1:79:41:48:e7:
a8:22:1f:8f:ab:e5:41:c4:91:9f:98:e4:19:c5:64:
5f:2c:14:9b:b6:f3:69:44:32:ea:bb:cc:9c:ae:12:
71:1f:cd:16:da:99:11:6b:cd:3f:dc:8a:30:38:1e:
17:d0:ec:3e:06:44:d2:a3:2a:01:c9:f1:3c:fc:e9:
2a:ca:70:be:43:30:6a:94:7c:7b:4f:ae:a2:71:ee:
ae:73:48:7f:be:de:92:1a:e6:f1:54:44:3f:f0:2c:
f7:15:bb:d6:dd:96:c5:c6:e9:56:76:86:50:9c:b8:
6e:14:77:0d:09:c0:55:dd:92:a6:0e:8b:a0:86:a1:
2e:66:3e:ea:d2:02:12:ac:68:14:2f:e4:cc:53:45:
68:27:dc:41:26:bf:03:9a:62:eb:a9:b2:42:7a:41:
67:ee:77:a3:24:e0:41:4c:d8:b1:71:ab:49:75:f8:
6f:5d:26:40:d4:d3:44:75:41:1a:0b:4c:ad:ba:e2:
b1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:49:0B:D0:73:0B:D6:2C:45:22:D7:5B:FC:5D:18:A4:1F:C9:E5:E2
X509v3 Authority Key Identifier:
keyid:99:06:0E:2D:EA:FF:EA:7D:62:2D:D9:15:80:FF:90:15:F2:55:75:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mQYOLer_6n1iLdkVgP-QFfJVdYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/98e650-337b-483d-9f4c-a83383059c18/1/vEkL0HML1ixFItdb_F0YpB_J5eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/98e650-337b-483d-9f4c-a83383059c18/1/mQYOLer_6n1iLdkVgP-QFfJVdYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.246.0/24
Signature Algorithm: sha256WithRSAEncryption
59:a7:3d:f6:11:6c:89:c7:44:a8:f6:10:5d:e8:bf:bb:6a:a7:
be:a3:67:27:1c:40:c0:4a:08:ff:5c:26:03:bb:05:7a:55:cc:
1a:7b:d0:26:c6:60:70:e5:04:aa:45:da:c9:5a:bb:b4:f7:d3:
a0:78:95:57:43:e7:b5:47:ce:cb:b7:78:05:62:ca:bb:09:d2:
82:5f:66:b5:4c:1c:48:d6:27:38:ff:2d:8f:64:33:3b:19:96:
87:0e:45:ad:39:05:00:59:5d:7f:25:88:92:80:a9:8a:6a:1a:
a6:c0:2f:f7:98:00:5f:87:f4:d9:50:9b:16:e0:f5:75:86:d2:
24:9a:c5:9e:5b:ea:21:bc:e3:1f:4b:f6:81:fc:c0:97:4c:f1:
e1:43:9b:a4:d0:a5:6f:cc:2c:e1:f7:2a:fc:43:4c:cb:98:43:
dc:1a:39:dd:ce:e7:90:56:63:4d:8b:69:44:03:79:72:c8:14:
43:f3:87:2b:01:b9:f4:91:4f:0e:ef:30:ce:bd:50:4d:49:12:
3c:3b:a7:7e:e6:ae:90:54:a4:02:31:07:89:d8:4e:a2:49:44:
9d:94:56:de:8c:25:7e:b4:1f:a2:e6:9c:85:81:71:98:42:b1:
19:5b:75:0d:7f:c3:0c:e5:15:e6:81:ce:0d:54:f3:92:9a:53:
6e:41:00:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:59 2025 by rpki-client