Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/wN3_ByERaMk_fyFzxULMbBOCDjY.roa
File: wN3_ByERaMk_fyFzxULMbBOCDjY.roa (raw, json)
Hash identifier: Aiqf2jvjfuacTaUuldCKWOjBo3CV6vXoWL2MFuoCaWQ=
Subject key identifier: C0:DD:FF:07:21:11:68:C9:3F:7F:21:73:C5:42:CC:6C:13:82:0E:36
Certificate issuer: /CN=ff1f615b91839f51ed3a5b53753b27b02c76da95
Certificate serial: 08FFC78C
Authority key identifier: FF:1F:61:5B:91:83:9F:51:ED:3A:5B:53:75:3B:27:B0:2C:76:DA:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_x9hW5GDn1HtOltTdTsnsCx22pU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/wN3_ByERaMk_fyFzxULMbBOCDjY.roa
Signing time: Sat 01 Jan 2022 09:06:27 +0000
ROA not before: Sat 01 Jan 2022 09:06:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59706
IP address blocks: 185.114.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150980492 (0x8ffc78c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff1f615b91839f51ed3a5b53753b27b02c76da95
Validity
Not Before: Jan 1 09:06:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0ddff07211168c93f7f2173c542cc6c13820e36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:73:c4:b0:fd:90:29:de:37:94:66:11:21:e2:
90:5e:17:9a:9f:34:ca:18:b6:9d:c6:4c:a6:45:b9:
53:11:3f:06:02:bf:9a:fa:0c:65:a5:ed:fc:f1:e8:
f7:1a:25:1e:b9:0e:b6:fe:55:26:53:2d:b6:89:a5:
08:56:3e:49:09:5e:1b:5e:e8:51:a9:a3:65:af:dd:
5c:87:a9:a4:0b:fd:ca:af:ec:63:1e:ff:90:f7:8e:
0f:73:f3:cc:1c:64:e0:c8:03:2e:73:6c:13:c7:28:
ae:0b:ee:e1:b9:1e:e9:96:64:b1:d3:36:53:41:92:
43:2e:72:65:f8:cc:3f:19:65:5b:39:2d:f3:b9:14:
43:96:a2:a6:7c:31:19:80:ab:3b:ef:57:8c:86:0a:
1f:00:64:ef:b6:23:52:35:45:56:e6:7d:50:38:74:
ff:2d:97:ce:25:3f:8b:52:05:6a:1b:01:36:95:36:
1b:fc:92:0c:ca:19:35:0b:83:50:bd:0a:26:b5:21:
16:09:ba:d6:5d:1f:6e:0a:20:0b:43:34:40:8b:86:
9d:1c:ea:e6:aa:91:17:9b:a3:de:3d:b0:23:80:61:
1b:44:59:97:91:bd:e5:34:03:bc:44:54:b8:76:b7:
09:94:52:7d:82:0d:00:1c:79:ee:3f:26:67:cf:15:
9d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:DD:FF:07:21:11:68:C9:3F:7F:21:73:C5:42:CC:6C:13:82:0E:36
X509v3 Authority Key Identifier:
keyid:FF:1F:61:5B:91:83:9F:51:ED:3A:5B:53:75:3B:27:B0:2C:76:DA:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_x9hW5GDn1HtOltTdTsnsCx22pU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/wN3_ByERaMk_fyFzxULMbBOCDjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/_x9hW5GDn1HtOltTdTsnsCx22pU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.151.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:71:a5:48:d8:89:b1:50:48:81:df:0e:26:a5:64:d3:6d:70:
23:dc:58:63:a0:7e:f3:26:43:f8:b6:58:c2:8b:da:77:82:07:
31:72:90:06:d0:51:f8:98:31:05:5f:b8:f6:9e:2e:4b:49:70:
52:ef:ee:1c:a1:85:af:63:06:dd:4c:cd:a0:c6:e6:db:ab:63:
ac:2c:fa:c8:f3:02:46:12:83:5c:b3:d2:83:b6:25:94:82:d7:
6a:13:68:06:0a:8a:20:85:60:45:6a:06:0d:6c:78:cb:3d:69:
b9:0f:67:c3:5c:9c:83:df:5b:1f:21:59:9c:fd:c2:48:90:07:
9a:54:c6:02:5b:ce:bb:cd:c4:b1:29:5a:46:06:91:d5:1b:43:
89:e5:e4:72:c3:38:13:fb:f2:79:78:ae:a1:17:c0:80:15:ce:
ce:88:15:d0:52:a7:27:9c:66:4b:75:ce:77:ee:12:d6:dc:00:
c8:e3:83:be:c0:86:7d:b7:c5:0b:2a:79:1d:17:be:ac:e5:77:
40:81:dd:06:39:23:83:01:24:02:27:b8:c7:b9:82:6b:34:b8:
4a:6d:83:9b:9d:a1:6b:a6:ae:6e:fa:9f:c7:8e:73:ed:79:2e:
d5:bc:59:d9:e0:01:3b:ea:c9:ad:27:1d:f0:e3:97:74:69:ad:
58:26:a0:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:24 2023 by rpki-client on console.sobornost.net