Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/ntAy8yIDKPKlztjNXOMrOhvxOTs.roa
File: ntAy8yIDKPKlztjNXOMrOhvxOTs.roa (raw, json)
Hash identifier: Ke3UmRgWTriO7YTJhVReciaXDtf+DpWMc/s44ef5T7w=
Subject key identifier: 9E:D0:32:F3:22:03:28:F2:A5:CE:D8:CD:5C:E3:2B:3A:1B:F1:39:3B
Certificate issuer: /CN=54d6ff134bd656f0ce14d410b02bec551eb69a2c
Certificate serial: 02F9EEEB
Authority key identifier: 54:D6:FF:13:4B:D6:56:F0:CE:14:D4:10:B0:2B:EC:55:1E:B6:9A:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VNb_E0vWVvDOFNQQsCvsVR62miw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/ntAy8yIDKPKlztjNXOMrOhvxOTs.roa
Signing time: Sat 01 Jan 2022 04:52:37 +0000
ROA not before: Sat 01 Jan 2022 04:52:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60267
IP address blocks: 185.87.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49934059 (0x2f9eeeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54d6ff134bd656f0ce14d410b02bec551eb69a2c
Validity
Not Before: Jan 1 04:52:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ed032f3220328f2a5ced8cd5ce32b3a1bf1393b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8c:e2:e2:ae:69:8c:69:0b:4f:59:c6:38:8d:
71:7d:ac:db:45:87:65:56:2a:20:21:fb:08:db:69:
a9:74:22:df:05:b4:00:25:d6:ad:51:4e:ad:2d:47:
4e:c4:83:aa:67:fa:b9:92:73:67:fb:2a:26:7e:9f:
ab:69:2c:55:6e:6b:5b:24:c8:17:24:1c:34:3a:90:
9e:18:58:16:a0:7f:81:32:6a:c9:18:7c:4b:14:14:
b5:d5:b2:bb:4d:82:6d:43:4f:66:a0:de:5e:6d:f1:
2f:95:65:bd:21:67:90:df:96:7c:08:14:55:1a:90:
9f:f8:44:29:90:20:89:fb:55:ae:56:07:70:7b:40:
d7:1d:24:d7:b9:62:34:23:54:fb:fb:02:47:5e:20:
8a:43:ea:a6:6f:82:3a:bd:29:c7:6a:28:10:25:00:
5f:11:a5:a3:e5:de:94:e2:a7:01:e7:e3:44:d9:ff:
6e:a3:25:bc:6c:1c:e0:94:18:e9:8f:e5:33:08:8e:
55:20:a1:ac:10:14:f3:b9:52:2e:6c:13:42:32:89:
91:0a:d9:f1:d9:f9:61:13:bd:57:bd:00:87:e7:f9:
69:32:5e:3a:71:af:90:bc:2d:05:9c:39:ac:ab:cf:
ee:1f:8f:37:54:9b:73:f7:11:9e:7f:5d:ca:4a:0a:
16:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:D0:32:F3:22:03:28:F2:A5:CE:D8:CD:5C:E3:2B:3A:1B:F1:39:3B
X509v3 Authority Key Identifier:
keyid:54:D6:FF:13:4B:D6:56:F0:CE:14:D4:10:B0:2B:EC:55:1E:B6:9A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VNb_E0vWVvDOFNQQsCvsVR62miw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/ntAy8yIDKPKlztjNXOMrOhvxOTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/VNb_E0vWVvDOFNQQsCvsVR62miw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.96.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:04:e6:3c:14:c3:a9:fb:6b:df:4b:19:ba:da:45:84:1c:30:
9d:55:bc:9b:1a:5a:5c:08:48:2b:a0:45:89:b2:03:3e:d9:1b:
05:40:5c:ad:02:41:a6:3f:8a:39:94:ac:8c:99:1b:5c:3a:35:
9e:e3:d8:3d:64:27:ef:50:30:f4:d4:53:f8:42:4c:5f:52:18:
a9:17:2e:16:25:84:a8:79:20:65:60:7f:6f:6d:b1:f8:a1:01:
0d:b9:4e:87:5f:ba:1b:16:dc:e4:86:50:2a:a9:a1:6d:5d:63:
8b:54:50:9a:29:ed:3a:80:9e:bc:8e:20:50:c9:83:bf:1e:d7:
fb:13:00:ba:ea:83:69:9d:77:62:cc:b4:83:e6:d9:13:6b:2d:
a9:53:40:f1:89:3c:ba:4e:c0:38:2e:a7:36:b4:fc:8b:08:31:
84:69:28:fa:14:01:ee:80:79:ec:70:0b:26:e4:59:d7:57:64:
c2:e2:c8:42:e0:9c:50:8e:6d:e7:32:6d:3d:cf:9a:f4:6e:54:
c3:90:51:fc:03:f6:a7:99:e9:37:1c:c8:e5:42:48:10:d3:72:
d4:d4:75:63:4b:43:2b:97:8c:07:eb:cc:20:e0:cd:87:ac:f1:
8f:a4:a1:0f:df:26:fb:e7:ad:37:50:d6:b9:6b:e2:fc:4b:6e:
f4:5f:4d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:35 2024 by rpki-client on console-fra.rpki-client.org