Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/ipHuNbxkSRXpJquQZ35atTANmTk.roa
File: ipHuNbxkSRXpJquQZ35atTANmTk.roa (raw, json)
Hash identifier: z129Zf3Sk5ip81TpEnLudK7y/XNxKrdFpsk9JUu3++s=
Subject key identifier: 8A:91:EE:35:BC:64:49:15:E9:26:AB:90:67:7E:5A:B5:30:0D:99:39
Certificate issuer: /CN=e168e36ba577ed47e6928729691991e4e7f235da
Certificate serial: 018312E383E9A1C85FBDEA376161424E2131
Authority key identifier: E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/ipHuNbxkSRXpJquQZ35atTANmTk.roa
Signing time: Tue 06 Sep 2022 13:00:43 +0000
ROA not before: Tue 06 Sep 2022 13:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137409
IP address blocks: 185.211.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:12:e3:83:e9:a1:c8:5f:bd:ea:37:61:61:42:4e:21:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e168e36ba577ed47e6928729691991e4e7f235da
Validity
Not Before: Sep 6 13:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a91ee35bc644915e926ab90677e5ab5300d9939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:35:c2:5c:75:46:aa:03:7b:21:b4:51:f4:5c:
8a:c7:e2:fe:55:75:44:c6:8a:c8:a8:f0:84:72:c5:
53:2e:25:f6:9e:8d:7c:a8:95:e0:66:21:5f:e9:e4:
86:54:51:ae:54:34:48:cd:50:54:37:ac:b4:c6:6b:
1f:47:91:e1:c9:83:25:a5:ca:0e:5b:e6:9d:60:7d:
37:51:40:71:97:02:3c:8c:0d:cf:38:f0:d8:6d:50:
9e:39:00:7c:58:92:8b:9b:a5:a1:52:6e:95:5c:69:
c2:9a:9b:cf:68:2a:e1:39:b8:0e:a4:97:2e:73:99:
14:7e:b0:c1:a7:20:8b:7c:51:8c:4f:ac:3f:17:80:
17:7a:bb:70:ec:6f:87:11:7c:ca:ce:92:48:6b:04:
41:6f:9b:33:88:51:23:a5:c4:51:f7:8c:42:26:4d:
fd:58:35:8b:4d:df:90:ed:3f:47:34:1a:6c:ec:d7:
d3:cf:f6:1b:96:3a:d3:fa:f2:02:b9:77:3b:36:7a:
17:1b:cf:0f:2d:8a:38:a3:17:38:cd:5b:2c:84:73:
47:bb:bc:2a:2e:1b:68:03:5c:c8:57:2c:64:02:84:
af:a0:e8:d8:14:35:d5:84:10:bd:13:74:9b:7b:7a:
9e:f6:f9:64:34:40:54:ed:8e:7b:e1:21:28:c7:28:
68:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:91:EE:35:BC:64:49:15:E9:26:AB:90:67:7E:5A:B5:30:0D:99:39
X509v3 Authority Key Identifier:
keyid:E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/ipHuNbxkSRXpJquQZ35atTANmTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/4Wjja6V37UfmkocpaRmR5OfyNdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.9.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:fd:0a:81:97:b7:1b:85:6c:7e:39:32:78:8d:5e:82:f8:45:
db:1e:51:46:1c:38:9d:dd:38:16:a9:ff:0c:cd:e6:1c:e1:a6:
a7:1b:79:5d:38:07:1f:8f:11:1a:8c:91:fc:07:85:48:87:db:
fb:ab:3e:11:f4:19:dd:4b:14:87:34:89:c1:b9:96:be:80:5d:
3a:dd:13:ee:00:2c:61:5a:32:2a:a5:55:73:0a:82:f0:75:3c:
9d:05:69:ab:95:6f:f4:4c:5b:a1:a0:58:60:93:7f:54:99:e3:
0b:2d:96:f8:02:df:37:66:73:ba:43:5b:bd:6b:91:42:f6:f6:
03:87:f5:ad:eb:91:41:b8:36:9b:2a:8f:d9:45:b3:85:d9:56:
d8:54:64:ac:74:68:91:f3:72:48:eb:c5:eb:77:27:b0:db:54:
f1:e3:05:fe:10:f2:3b:51:3d:c8:90:6c:cc:50:1a:d1:89:f6:
5d:d7:b8:d0:53:98:e7:98:76:90:fa:14:41:81:19:87:d5:7f:
67:b6:6a:f6:5a:d6:bb:41:79:d2:0e:eb:da:46:55:f5:2c:32:
85:ee:ad:54:18:dc:1e:9b:28:1f:52:63:83:e3:ed:44:c4:d0:
b6:73:42:64:7f:5c:60:b9:93:1f:e2:ff:d7:a1:4a:cd:59:22:
84:2a:12:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:20 2024 by rpki-client on console-fra.rpki-client.org