Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/CaWuPs9SqfdWhUY5JQp0-M20Adc.roa
File: CaWuPs9SqfdWhUY5JQp0-M20Adc.roa (raw, json)
Hash identifier: cxBq51JIvPaqk785hKD+Deq9L7h1QI7QThjwwKGcwMI=
Subject key identifier: 09:A5:AE:3E:CF:52:A9:F7:56:85:46:39:25:0A:74:F8:CD:B4:01:D7
Certificate issuer: /CN=a934b8dec1281bc54317c7fed0e9acbc7b97cac7
Certificate serial: 1D8EB38E
Authority key identifier: A9:34:B8:DE:C1:28:1B:C5:43:17:C7:FE:D0:E9:AC:BC:7B:97:CA:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qTS43sEoG8VDF8f-0OmsvHuXysc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/CaWuPs9SqfdWhUY5JQp0-M20Adc.roa
Signing time: Tue 05 Jul 2022 07:59:09 +0000
ROA not before: Tue 05 Jul 2022 07:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 577761
IP address blocks: 185.27.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 495891342 (0x1d8eb38e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a934b8dec1281bc54317c7fed0e9acbc7b97cac7
Validity
Not Before: Jul 5 07:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09a5ae3ecf52a9f756854639250a74f8cdb401d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8f:52:fc:7d:aa:99:40:05:df:a7:fc:e9:99:
bc:11:b2:a4:77:d7:cc:9d:66:7c:f5:cc:f2:ca:52:
f1:d0:8f:86:ba:ff:12:48:9c:60:bd:4d:a9:ce:4c:
d7:54:df:54:56:d1:6c:c3:c3:a5:51:7a:e2:49:6a:
44:e9:70:c2:51:a1:ef:af:af:5e:27:90:6f:8d:ce:
69:6b:59:d2:c1:92:3d:d2:88:e1:95:3c:2d:25:67:
86:f8:e0:3b:86:b1:99:cf:81:0d:e8:26:66:06:c0:
30:c1:ab:a8:e7:bc:e3:07:9b:88:96:61:e9:cd:2d:
04:9d:29:93:cb:da:f6:31:ed:31:95:3b:ef:da:f8:
67:81:12:61:dc:4e:57:89:86:95:e7:69:50:8a:34:
bb:ae:3c:c3:ba:3b:f0:a6:81:06:47:3f:bc:fc:d1:
3b:c1:f6:fc:f6:19:1b:75:73:e6:5e:cc:2c:64:b4:
b5:fd:93:a2:a7:a0:4a:fb:c4:83:d5:4a:df:fd:33:
5d:bb:e2:d7:ec:5b:7c:dd:d7:2a:d6:32:eb:c1:bb:
f9:08:f8:ea:1b:cb:08:d5:13:a1:8b:df:62:78:d3:
c1:9e:17:33:1d:7d:d6:d4:f2:7a:f7:8f:39:22:e2:
21:9b:b0:f3:1f:ed:ac:10:70:be:68:3f:53:30:c6:
9e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A5:AE:3E:CF:52:A9:F7:56:85:46:39:25:0A:74:F8:CD:B4:01:D7
X509v3 Authority Key Identifier:
keyid:A9:34:B8:DE:C1:28:1B:C5:43:17:C7:FE:D0:E9:AC:BC:7B:97:CA:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qTS43sEoG8VDF8f-0OmsvHuXysc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/CaWuPs9SqfdWhUY5JQp0-M20Adc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/qTS43sEoG8VDF8f-0OmsvHuXysc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.217.0/24
Signature Algorithm: sha256WithRSAEncryption
40:92:4d:ff:6f:fd:a5:48:0f:5f:86:67:b7:92:31:c8:3d:c4:
4c:3a:54:4b:68:3b:ad:c8:c3:22:52:a0:49:78:22:3f:2b:27:
db:26:13:7b:fc:5f:6a:3a:14:7d:fd:6e:34:00:e8:c8:2e:c7:
68:ed:8a:54:4c:1c:5b:6f:02:7a:fc:ae:48:86:b1:18:58:13:
3c:dc:48:9f:12:a1:61:50:9f:32:b4:3a:0a:22:25:61:ba:76:
5e:81:32:87:79:19:8d:f6:b3:8a:aa:e7:f9:a0:36:0c:9c:45:
2c:97:a7:56:33:6d:11:59:87:4d:8c:f1:e9:4d:4c:99:71:aa:
21:23:a1:2f:85:86:ec:94:97:fa:82:5e:cc:f2:1e:4c:bc:d1:
91:57:6f:e2:06:a0:95:00:0d:f8:fc:81:b0:78:14:12:19:c4:
8b:af:0c:d9:8a:fa:a8:35:0b:2d:6e:92:1e:7a:d5:a5:25:9e:
bb:35:b9:4e:2c:49:75:2a:ff:a3:10:14:53:db:c9:c1:63:a9:
42:5d:8b:dc:f3:d7:fc:4d:c4:f2:50:c6:14:3e:e1:0c:56:ea:
69:b0:8f:19:42:c6:16:b9:7f:12:17:f7:f0:b4:a4:43:39:1a:
a5:41:b1:a7:30:34:45:dd:0a:5e:c7:d9:e7:97:06:9b:df:67:
12:61:60:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:57 2024 by rpki-client on console-ams.rpki-client.org