Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/YjKlsJPT3PcFDqTb_ds4kzIZ-G4.roa
File: YjKlsJPT3PcFDqTb_ds4kzIZ-G4.roa (raw, json)
Hash identifier: I+e1JWhS3YaeC6zgWPGNpQHtpVSYS1P9AlntAT5h8yg=
Subject key identifier: 62:32:A5:B0:93:D3:DC:F7:05:0E:A4:DB:FD:DB:38:93:32:19:F8:6E
Certificate issuer: /CN=60ceeb253845c6dca190d3616dba23f37d8b6397
Certificate serial: 04F55715
Authority key identifier: 60:CE:EB:25:38:45:C6:DC:A1:90:D3:61:6D:BA:23:F3:7D:8B:63:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YM7rJThFxtyhkNNhbboj832LY5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/YjKlsJPT3PcFDqTb_ds4kzIZ-G4.roa
Signing time: Sat 01 Jan 2022 14:07:26 +0000
ROA not before: Sat 01 Jan 2022 14:07:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1836
IP address blocks: 185.38.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83187477 (0x4f55715)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ceeb253845c6dca190d3616dba23f37d8b6397
Validity
Not Before: Jan 1 14:07:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6232a5b093d3dcf7050ea4dbfddb38933219f86e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:17:d6:45:a9:53:ed:6f:c4:6b:f1:b1:de:83:
07:17:04:e6:68:08:80:da:18:f9:4e:bb:b7:df:66:
c8:0c:c9:1b:d0:72:da:d4:7a:8c:60:e8:81:c7:6a:
74:db:6d:0b:45:50:ee:94:05:55:9b:a0:31:86:34:
f3:81:40:f6:8f:52:6f:b9:58:d1:d0:fe:f8:bc:60:
b9:d1:4c:0e:e0:f3:4b:0f:d2:e3:3d:7a:96:fe:f3:
d2:8b:68:f1:08:a1:33:e8:cf:e5:1c:6e:be:44:5b:
df:68:d9:d7:22:d9:6a:cd:41:9f:88:ad:9a:c0:54:
d2:49:8c:6f:d4:63:b0:9a:77:c3:80:99:d6:4b:8b:
7a:b8:ac:90:c8:c5:9e:32:69:fd:84:14:9d:ed:bd:
7d:e4:4f:05:2b:ae:a2:80:93:05:1d:e8:1c:3b:2e:
40:ac:c3:2b:25:56:ec:d1:55:ee:50:e9:60:90:c8:
c7:74:72:75:c5:88:f4:15:5c:6e:0e:03:3e:c3:be:
ab:35:78:64:04:41:ae:62:7e:5b:d3:32:c8:5c:f2:
68:33:be:33:b7:c2:1b:fa:84:0b:c7:41:1e:03:d8:
ee:04:65:ac:56:9e:9b:0d:0d:14:a5:50:86:16:84:
dd:02:b4:06:5f:1c:24:7a:68:a3:d1:8e:5a:9a:ef:
fc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:32:A5:B0:93:D3:DC:F7:05:0E:A4:DB:FD:DB:38:93:32:19:F8:6E
X509v3 Authority Key Identifier:
keyid:60:CE:EB:25:38:45:C6:DC:A1:90:D3:61:6D:BA:23:F3:7D:8B:63:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YM7rJThFxtyhkNNhbboj832LY5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/YjKlsJPT3PcFDqTb_ds4kzIZ-G4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/YM7rJThFxtyhkNNhbboj832LY5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.66.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:fb:21:1b:9c:6c:07:7a:5a:d8:42:1f:4b:85:66:38:16:1b:
b3:8d:e6:27:5b:fe:47:95:77:c7:1a:fe:4e:a8:d7:8c:68:0e:
78:43:8b:74:83:a8:0e:3e:05:6c:8d:96:d8:26:5f:7a:28:f0:
9e:3d:0f:a2:94:5c:5d:80:28:62:c8:90:e8:09:18:ed:8d:53:
5c:9c:b8:29:8e:3e:96:90:97:b0:3d:99:0b:a6:05:ec:61:07:
9b:59:c8:13:92:31:66:67:d8:51:6d:bb:02:1f:50:35:0d:14:
b6:8d:8f:f8:70:7f:10:af:b9:20:18:33:c4:6c:60:49:eb:bd:
c8:c5:13:d7:d1:33:8f:a0:94:30:ec:1f:4b:96:b4:75:42:33:
d9:7b:58:8e:01:68:e1:7e:ba:5f:4c:98:7e:13:8f:8f:e3:78:
68:a6:30:74:ab:3d:b6:21:3a:86:08:ba:e1:ca:59:bb:5b:b1:
79:28:4e:fc:ef:a2:21:31:79:c5:ef:b4:57:96:fa:01:63:8f:
a2:ea:f8:9b:24:73:54:4f:53:92:4b:ae:9b:28:be:1c:20:75:
cf:ae:9c:87:10:d0:f9:ed:bd:d0:6e:93:df:61:67:65:cb:c6:
ac:4b:bb:ce:e4:e3:88:e1:74:33:28:57:25:33:59:0a:8b:2d:
1d:27:07:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:04 2024 by rpki-client on console-fra.rpki-client.org