Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/1-cnpxPoqp6TmEyPDMwT61dQFYE0.roa
File: 1-cnpxPoqp6TmEyPDMwT61dQFYE0.roa (raw, json)
Hash identifier: To+aGtfzW3za8akZepo1tHkr/C6BIgGDBnYj4RpD+FY=
Subject key identifier: F9:C9:E9:C4:FA:2A:A7:A4:E6:13:23:C3:33:04:FA:D5:D4:05:60:4D
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FDDC335
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/1-cnpxPoqp6TmEyPDMwT61dQFYE0.roa
Signing time: Sat 01 Jan 2022 14:59:40 +0000
ROA not before: Sat 01 Jan 2022 14:59:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56382
IP address blocks: 185.133.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266191669 (0xfddc335)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9c9e9c4fa2aa7a4e61323c33304fad5d405604d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:39:94:68:c0:81:f1:b9:33:5c:73:95:cc:a8:
f7:fc:fb:0e:29:fe:3f:4d:b8:a7:b7:81:aa:41:6e:
dd:35:6b:44:fa:64:27:a6:fd:be:c7:53:d7:6a:19:
6f:11:61:85:6f:be:41:9e:7f:59:b7:6b:40:3b:83:
38:7f:1a:75:12:16:cc:1a:23:36:e4:f9:5e:3c:a5:
a0:46:5e:56:eb:9c:f4:fc:34:b8:01:89:4e:01:12:
bc:02:12:b8:9e:0b:53:33:ce:7e:16:20:46:f9:7f:
73:b3:92:fc:54:a2:c4:03:b0:47:1a:d0:52:ac:b6:
5d:08:65:a4:37:2c:bb:0f:f6:3d:1a:34:f8:46:d2:
b6:22:9f:24:c6:ff:e3:ec:bb:31:48:74:64:9f:49:
8b:14:1f:81:bf:9f:58:9f:02:f4:26:ee:a1:50:17:
94:03:48:9e:4d:03:62:cd:e0:9f:c4:9f:46:00:00:
8c:63:6a:89:3e:a3:ce:20:1b:87:40:8e:d2:05:ff:
5a:5b:e5:34:3b:04:b9:f1:aa:56:6e:2e:46:7b:c0:
fe:56:1e:63:3b:7b:a0:fa:2d:ba:2e:b7:16:87:3d:
fb:27:76:b2:0b:07:fe:95:88:60:8e:5b:73:2a:6a:
20:15:a5:ba:a2:3e:c8:70:5a:c9:87:32:e8:33:d2:
ba:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:C9:E9:C4:FA:2A:A7:A4:E6:13:23:C3:33:04:FA:D5:D4:05:60:4D
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/1-cnpxPoqp6TmEyPDMwT61dQFYE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.208.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:5d:65:62:f0:92:e5:2f:22:4e:13:99:f9:ad:39:dd:9d:25:
b5:66:d8:14:f2:8e:40:68:bc:7f:fd:6e:63:28:bb:84:53:2a:
a6:27:42:62:eb:ec:7f:1a:b4:4a:d5:b3:64:ab:b5:05:7b:58:
d9:88:2f:17:7d:92:ea:99:ce:fe:f3:a4:32:b2:47:cb:d0:d8:
19:18:b9:99:bb:d0:d4:2d:fc:90:4d:6e:74:e9:08:08:d7:90:
4d:b2:32:dc:d9:b6:14:04:9d:8e:ab:fc:4f:60:18:05:33:1c:
fe:8a:e3:0f:ce:7f:ae:15:5d:e4:86:70:d6:f9:27:9f:9f:1c:
81:42:61:39:a1:7a:bf:de:fd:72:92:1c:cc:67:d0:23:3e:e3:
97:d8:5a:35:e2:1d:fe:b3:2d:e6:ca:fe:c7:b2:db:dd:16:b2:
68:35:b7:3b:09:31:b7:28:c4:86:26:cc:f2:a7:13:7b:3c:de:
ea:19:db:53:55:6e:c0:da:86:01:7e:36:2a:34:bd:72:df:88:
9b:47:fe:cd:2c:51:e9:05:a7:c5:ab:89:19:68:e9:b9:6d:9e:
46:78:d4:a9:f7:a8:28:36:be:05:ec:b7:d0:67:f2:49:78:a5:
ed:35:3a:9d:cf:ab:02:c2:a2:a2:e6:28:be:fc:08:80:1c:59:
e9:2a:b6:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-ams.rpki-client.org