Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/9G9Y5RG0GSE5tVOKLzF65aD3F6s.roa
File: 9G9Y5RG0GSE5tVOKLzF65aD3F6s.roa (raw, json)
Hash identifier: s+RwU55L43Xy4FLNh2JcNudeBnZcCNS7GikyiSbNIxM=
Subject key identifier: F4:6F:58:E5:11:B4:19:21:39:B5:53:8A:2F:31:7A:E5:A0:F7:17:AB
Certificate issuer: /CN=4beccc9d1a76e91469cb63b12bf725d7debafb1b
Certificate serial: 0181F20A9B05D882BB9B874A8D62998EEBD2
Authority key identifier: 4B:EC:CC:9D:1A:76:E9:14:69:CB:63:B1:2B:F7:25:D7:DE:BA:FB:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S-zMnRp26RRpy2OxK_cl1966-xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/9G9Y5RG0GSE5tVOKLzF65aD3F6s.roa
Signing time: Tue 12 Jul 2022 10:53:10 +0000
ROA not before: Tue 12 Jul 2022 10:53:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30848
IP address blocks: 185.208.139.0/24 maxlen: 24
185.208.136.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f2:0a:9b:05:d8:82:bb:9b:87:4a:8d:62:99:8e:eb:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4beccc9d1a76e91469cb63b12bf725d7debafb1b
Validity
Not Before: Jul 12 10:53:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f46f58e511b4192139b5538a2f317ae5a0f717ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:35:15:5c:3a:aa:fe:a7:df:2f:96:8a:a7:48:
5e:0a:4f:54:68:3c:fa:28:02:80:a8:a8:13:49:b8:
e8:01:e1:db:4c:ba:e1:a8:99:7f:75:2d:b2:60:71:
c1:4c:86:fc:1c:0a:6c:6a:57:0d:b9:63:13:95:4c:
d6:22:44:ab:33:23:e3:4a:3f:d5:ba:c4:d7:93:a5:
9d:29:d2:8e:a9:ad:5b:99:44:2c:40:ec:19:3f:da:
c9:1e:ea:2a:5a:31:1d:aa:7a:0e:9c:fd:4e:91:c6:
d1:ed:c3:e3:b7:08:21:3e:66:95:95:15:ad:1c:8b:
6d:b6:81:1e:e9:2f:f9:a1:53:74:d4:a6:0c:06:36:
c1:ef:97:b7:59:e2:6f:b0:32:bc:d8:88:4f:57:34:
32:ee:46:7d:56:99:b2:2c:38:1f:d5:d1:07:53:74:
22:75:0b:9f:8e:a7:35:37:05:d1:f7:e8:b4:c5:44:
7b:f2:b2:fc:04:a4:1b:9f:ad:92:c2:af:7d:10:ea:
c2:9a:41:7e:9b:54:0b:fc:8c:59:a8:94:e3:21:31:
b9:8f:03:88:60:66:ca:6d:95:c6:81:03:ca:86:24:
5f:91:b7:da:24:3b:95:8e:02:f4:62:b0:c2:c5:f2:
4f:38:51:fd:56:93:14:9d:01:06:c1:ce:10:d5:58:
ba:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:6F:58:E5:11:B4:19:21:39:B5:53:8A:2F:31:7A:E5:A0:F7:17:AB
X509v3 Authority Key Identifier:
keyid:4B:EC:CC:9D:1A:76:E9:14:69:CB:63:B1:2B:F7:25:D7:DE:BA:FB:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S-zMnRp26RRpy2OxK_cl1966-xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/9G9Y5RG0GSE5tVOKLzF65aD3F6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/S-zMnRp26RRpy2OxK_cl1966-xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.136.0/23
185.208.139.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:73:2c:68:55:8b:18:80:6c:2c:ca:47:bb:24:6b:17:e1:c7:
be:f7:2f:f9:a4:6b:aa:92:c5:3b:f6:54:a2:6a:7e:de:4e:9c:
22:32:94:27:42:e4:40:d5:fc:ef:d7:0b:31:fe:7e:56:5c:e2:
03:ef:28:14:1f:3c:ad:49:af:95:63:e9:9d:e4:b8:80:7e:2a:
c7:a1:38:a2:48:fa:47:76:f9:e9:cb:62:8c:28:1f:38:5f:ef:
38:3a:8a:56:91:56:44:83:55:83:15:29:65:58:57:e2:2d:bc:
21:69:bc:8e:b4:c2:d2:d8:f3:bf:55:8c:f5:df:2c:b0:e9:22:
ba:7e:b1:56:ab:10:80:a2:09:db:b5:94:db:38:5a:e2:b5:e0:
3f:6e:b0:4e:27:07:e3:9a:4e:f1:b3:c3:cc:20:dd:50:3f:67:
08:d3:1e:c5:c7:1c:b9:46:0b:22:95:1e:82:21:03:94:36:37:
16:23:7b:8c:76:df:c7:51:b3:ec:e4:11:4d:b1:5f:17:9a:f0:
1e:f7:b2:c5:3d:4e:23:56:cc:2b:71:27:20:f6:ef:62:df:d2:
93:50:13:5e:cd:ce:39:d6:c5:93:56:5a:3c:87:7b:39:94:a8:
f6:8c:33:78:29:ba:02:d2:e0:5c:d1:d6:80:27:4d:15:87:8e:
b8:09:be:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org