Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/ac8e6f-5f83-449b-8c9d-77c1048422d8/1/6p9pSulD9CXNmMhqHDRtih47m0g.roa
File: 6p9pSulD9CXNmMhqHDRtih47m0g.roa (raw, json)
Hash identifier: /++zGnsIrJ+rs1arPkoEB07usoKyx+ypwUbJ1eMfJbk=
Subject key identifier: EA:9F:69:4A:E9:43:F4:25:CD:98:C8:6A:1C:34:6D:8A:1E:3B:9B:48
Certificate issuer: /CN=ac67c93b8225d04c3761c13cefee5f8329358e23
Certificate serial: 1B3248F4
Authority key identifier: AC:67:C9:3B:82:25:D0:4C:37:61:C1:3C:EF:EE:5F:83:29:35:8E:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rGfJO4Il0Ew3YcE87-5fgyk1jiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/ac8e6f-5f83-449b-8c9d-77c1048422d8/1/6p9pSulD9CXNmMhqHDRtih47m0g.roa
Signing time: Sat 01 Jan 2022 06:55:42 +0000
ROA not before: Sat 01 Jan 2022 06:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62140
IP address blocks: 185.24.139.0/24 maxlen: 24
185.24.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 456280308 (0x1b3248f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac67c93b8225d04c3761c13cefee5f8329358e23
Validity
Not Before: Jan 1 06:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea9f694ae943f425cd98c86a1c346d8a1e3b9b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:34:1f:5c:93:3c:fd:4e:78:02:fe:0f:31:c2:
e3:5f:0c:8f:52:b4:86:4f:e2:7c:06:cf:55:d3:46:
84:63:6f:64:d7:bb:b1:9e:42:e1:08:39:77:e5:b9:
f8:e6:8c:8c:90:c7:f7:6f:df:0c:ca:c0:ac:3e:80:
c3:3b:fd:bb:5d:25:3f:2b:bb:d2:a4:ec:e6:2c:ef:
a6:13:ac:f2:c1:c1:3f:82:2c:1a:8e:88:72:d7:23:
5e:b2:01:ec:35:81:b2:13:9a:bd:5a:9f:22:75:c2:
cf:69:d2:2c:53:48:a8:ee:4a:a6:64:13:46:3a:8b:
aa:1f:22:fd:99:9b:ab:46:63:54:84:29:4d:14:c0:
ac:3e:0a:d3:6e:26:e4:0a:a4:88:69:3a:0d:f2:b0:
bd:0d:68:20:16:cf:d5:04:4d:9e:46:3a:4b:c7:a4:
2c:97:3b:a9:13:24:eb:0e:b2:cc:43:71:4a:b3:3b:
ca:02:bb:5a:8e:76:d0:46:f0:23:59:34:b9:4a:99:
ca:22:27:15:e4:87:7b:62:8d:ba:5e:47:2b:ad:f9:
7b:b7:a5:66:e6:57:af:2b:9d:41:5a:af:56:43:88:
9b:5c:00:3e:04:73:1c:40:07:ba:e5:9b:70:a0:1b:
6b:ee:3c:84:15:23:57:69:0e:80:70:23:74:53:25:
91:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:9F:69:4A:E9:43:F4:25:CD:98:C8:6A:1C:34:6D:8A:1E:3B:9B:48
X509v3 Authority Key Identifier:
keyid:AC:67:C9:3B:82:25:D0:4C:37:61:C1:3C:EF:EE:5F:83:29:35:8E:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rGfJO4Il0Ew3YcE87-5fgyk1jiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/ac8e6f-5f83-449b-8c9d-77c1048422d8/1/6p9pSulD9CXNmMhqHDRtih47m0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/ac8e6f-5f83-449b-8c9d-77c1048422d8/1/rGfJO4Il0Ew3YcE87-5fgyk1jiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.138.0/23
Signature Algorithm: sha256WithRSAEncryption
07:45:28:63:88:6c:7a:b9:20:c8:18:de:78:e8:01:31:c2:19:
8c:68:91:b9:3b:99:ef:1c:0c:28:2c:7d:8b:49:56:f6:cb:64:
88:86:ce:7c:9b:26:14:ed:73:98:a9:9b:30:5e:42:0e:26:7a:
b0:c3:74:98:df:f4:03:89:51:be:6f:15:6c:da:c5:ce:0e:b1:
a0:31:ca:af:6e:b4:45:9b:2b:91:7e:b2:90:dd:96:89:96:9f:
5f:69:fb:d1:b4:4b:b4:53:98:b5:5a:0b:a7:ea:83:44:f6:73:
f6:9a:63:cd:f1:b8:e6:8a:d0:5a:8c:b1:2b:a6:79:18:72:02:
34:dc:67:78:21:17:77:69:1a:9d:e9:fd:41:fc:57:38:2e:6f:
1c:9a:dc:5f:5d:f5:c1:26:a0:97:cf:ad:db:cc:51:64:99:18:
c8:32:c8:7f:94:01:33:d4:da:31:7b:93:fc:09:fd:c4:6a:fa:
ef:d9:d2:b5:ae:52:b5:52:0b:26:d9:9a:99:4c:85:46:a6:c9:
08:f3:af:48:97:32:c8:91:57:28:03:51:08:bd:7a:85:23:22:
7c:3f:6e:47:8c:44:87:da:26:3f:96:65:cf:c2:f7:d5:47:2f:
1a:19:f3:d6:11:91:be:f6:14:2c:56:6f:e9:d0:df:29:ec:81:
9b:af:4c:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:27 2024 by rpki-client on console-ams.rpki-client.org