Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/k_D8pwR2mSI2andVdfKqnMe4T20.roa
File: k_D8pwR2mSI2andVdfKqnMe4T20.roa (raw, json)
Hash identifier: INrIcwZiN1T17eKo5ucAE3QNOIcvvCFdKRs1YtMjkls=
Subject key identifier: 93:F0:FC:A7:04:76:99:22:36:6A:77:55:75:F2:AA:9C:C7:B8:4F:6D
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 0189D0D74DA14018A63CA0E19AEB0C752898
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/k_D8pwR2mSI2andVdfKqnMe4T20.roa
Signing time: Mon 07 Aug 2023 16:31:58 +0000
ROA not before: Mon 07 Aug 2023 16:31:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.21.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d0:d7:4d:a1:40:18:a6:3c:a0:e1:9a:eb:0c:75:28:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Aug 7 16:31:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93f0fca704769922366a775575f2aa9cc7b84f6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cd:8c:3a:3d:7b:62:01:75:8f:9d:c0:c0:7a:
69:61:ad:20:30:9f:93:fe:cf:b3:8e:05:72:1f:b1:
f3:9c:11:d4:3f:f7:a7:87:89:ff:12:59:e6:e3:24:
59:87:85:02:06:f0:37:5d:d4:21:01:9a:6d:4f:43:
c3:94:0d:d9:a2:01:1e:e1:cb:5f:67:f8:10:da:db:
14:4f:47:c1:78:33:ff:c2:32:81:9a:cb:d6:14:1b:
86:ca:35:c5:87:e9:3a:3c:5f:88:57:6c:0f:5a:e5:
7f:28:2a:34:d6:c1:56:a0:be:51:65:67:6f:f0:dc:
45:fa:f2:3d:6a:5c:0b:79:9d:cd:48:ed:c1:96:34:
b1:bd:23:cb:15:95:a1:38:10:95:2a:15:09:50:b0:
62:ad:3d:05:1b:8e:f9:ce:d2:a2:a6:9a:8a:70:54:
bc:c1:a7:3e:55:b0:35:0b:0b:e2:43:90:8a:56:93:
6d:58:e4:98:8a:cd:d7:cd:86:36:b6:43:8b:c3:4f:
e2:df:1c:8d:a4:21:6c:9c:66:7f:f8:d1:3b:53:3b:
e7:fa:c2:86:52:33:6f:b8:20:ad:d4:7c:2c:9d:08:
16:4a:77:18:b6:e4:aa:a1:5d:08:6c:bf:7c:5f:1a:
35:4d:d2:8d:dd:87:33:6c:e1:2d:47:0d:d1:1d:bc:
71:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:F0:FC:A7:04:76:99:22:36:6A:77:55:75:F2:AA:9C:C7:B8:4F:6D
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/k_D8pwR2mSI2andVdfKqnMe4T20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.252.0/24
Signature Algorithm: sha256WithRSAEncryption
16:29:2d:58:bb:2e:15:f7:f3:1b:a1:8e:12:d8:be:62:d7:2a:
9e:13:aa:e3:61:1b:fd:d8:e5:89:fb:c9:bf:51:80:85:e4:e4:
ea:44:20:b1:10:ad:8a:a7:be:f6:a2:36:e0:dc:94:83:7b:62:
34:88:9f:e5:de:97:45:b5:42:26:79:4d:f2:ff:22:75:80:1b:
0c:31:ec:12:ee:75:ef:b1:55:d9:17:88:3a:f1:0f:47:64:29:
4d:2b:ea:82:5e:f8:e7:e9:45:f8:25:3f:01:be:7f:27:b7:a5:
0a:e6:02:05:77:94:8a:75:38:02:14:de:32:6a:2f:a8:91:3f:
fe:47:8d:bb:9d:26:da:23:72:86:31:fb:85:0c:e8:23:b9:22:
42:40:1f:09:99:4c:47:f9:db:aa:0a:5e:b4:a7:0c:03:a1:15:
69:c5:93:f9:a6:14:4d:8b:37:d9:be:55:4b:13:5e:bd:5a:71:
a9:fc:68:fa:f8:10:b6:cb:b2:ad:e0:8a:f3:4e:cf:49:f6:45:
5a:27:ef:13:a1:42:22:a9:74:50:cb:c8:07:94:c7:44:fa:f0:
0c:a2:80:a8:7b:88:1b:58:cc:e9:42:0b:ef:a5:2b:99:f8:29:
cd:23:9c:1f:92:aa:f0:f0:a3:87:ca:7e:e9:5b:4c:73:c6:0a:
de:fc:42:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:53 2025 by rpki-client