Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/ayPbXnz7UWEg1CoPWvdU0tI3wF0.roa
File: ayPbXnz7UWEg1CoPWvdU0tI3wF0.roa (raw, json)
Hash identifier: LfAu6mySzlsGmqhayzSh5j7qaleKRkWLsUr8fw/PUcQ=
Subject key identifier: 6B:23:DB:5E:7C:FB:51:61:20:D4:2A:0F:5A:F7:54:D2:D2:37:C0:5D
Certificate issuer: /CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Certificate serial: 0A946D6C
Authority key identifier: 99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/ayPbXnz7UWEg1CoPWvdU0tI3wF0.roa
Signing time: Sat 01 Jan 2022 16:05:34 +0000
ROA not before: Sat 01 Jan 2022 16:05:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212634
IP address blocks: 185.149.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177499500 (0xa946d6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Validity
Not Before: Jan 1 16:05:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b23db5e7cfb516120d42a0f5af754d2d237c05d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1b:c2:7f:a5:8c:7c:9a:ea:a6:d7:3c:d9:ab:
7a:e1:8f:a1:78:88:43:f9:1c:43:27:f8:a5:cf:a7:
f7:07:93:c1:8d:a2:22:2e:b6:49:8c:74:c4:e0:83:
97:5b:8a:96:0b:7b:ec:f4:40:09:46:d7:71:94:be:
9d:a7:3e:b9:40:6e:4b:ff:32:e6:b6:65:29:ea:9a:
31:00:12:75:51:e7:4e:e6:e3:6e:c4:c2:b6:65:e9:
5b:d6:24:96:18:37:31:a1:7a:48:b4:b4:d8:78:6d:
16:e0:21:3e:e5:8a:fd:53:05:d8:0c:81:d0:17:28:
e6:63:26:c9:18:47:29:b4:84:24:0f:d3:bf:87:5f:
0a:48:81:74:e1:4f:36:39:18:b2:ce:84:0f:9f:f7:
59:b8:66:40:73:ac:d5:7b:d9:52:23:a8:56:98:84:
91:47:d3:dd:e8:d2:ff:f6:26:66:fa:b6:e8:97:25:
dd:1c:f3:1d:f5:6e:90:ee:47:f0:91:ed:6e:c0:e7:
18:01:da:92:c3:d9:d3:3e:79:f3:6f:b7:24:37:fa:
d5:d8:b2:bd:a7:9c:bd:ed:f2:c1:98:80:58:84:fa:
2c:00:ec:04:fb:5e:b2:66:2b:63:1e:08:97:93:30:
38:8b:81:85:78:c3:fa:ff:2d:61:95:2b:5e:28:cc:
4f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:23:DB:5E:7C:FB:51:61:20:D4:2A:0F:5A:F7:54:D2:D2:37:C0:5D
X509v3 Authority Key Identifier:
keyid:99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/ayPbXnz7UWEg1CoPWvdU0tI3wF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.24.0/24
Signature Algorithm: sha256WithRSAEncryption
12:f7:89:cd:2f:1b:33:a2:89:05:ba:bc:db:52:e1:92:0a:13:
68:7c:cd:2a:33:a5:c1:89:09:8e:9f:60:9c:d6:48:9a:48:df:
9b:d0:04:f5:14:53:1b:0b:3b:83:78:db:58:e8:8a:50:b7:92:
34:df:fa:e0:ac:57:1f:75:38:4e:83:11:a2:80:16:80:1b:b1:
96:f0:0b:79:78:e9:81:a5:ad:69:96:6d:8c:13:41:07:dc:45:
f6:43:76:60:fe:5c:22:1c:71:a0:b7:70:82:12:c6:d8:70:a2:
2a:30:19:79:bc:17:dc:15:ed:c3:49:5f:e3:4a:cd:22:e5:8f:
37:36:e1:95:7d:f0:33:9a:16:51:fb:84:72:52:6d:be:37:af:
69:3c:73:b1:58:2d:26:3c:4a:67:58:7d:96:ff:83:dd:d9:7e:
49:fa:07:cf:3b:38:51:6e:4e:c2:c3:dc:34:23:2c:c5:06:5f:
d8:0a:d2:4e:e0:1a:3b:a8:85:cc:ca:04:9d:ee:62:4d:29:c4:
c7:0b:72:9c:f6:6f:55:4e:ca:45:da:d6:80:ef:a3:91:34:f6:
e5:eb:b6:7b:e6:0a:c4:6c:20:a9:ff:93:1d:09:79:18:ff:9d:
06:5d:3a:73:31:10:49:88:22:88:d4:4e:82:2a:5b:ee:dd:d8:
2e:d2:3f:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:27 2024 by rpki-client on console-fra.rpki-client.org