Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/9ilbNEH-L2M1RfiKJqRYguhtG1A.roa
File: 9ilbNEH-L2M1RfiKJqRYguhtG1A.roa (raw, json)
Hash identifier: S5Y3GkFm5/vfo8FdYLzrXSOvyqC+DrENsph+dRTAdJ0=
Subject key identifier: F6:29:5B:34:41:FE:2F:63:35:45:F8:8A:26:A4:58:82:E8:6D:1B:50
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 0F7DCEB5
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/9ilbNEH-L2M1RfiKJqRYguhtG1A.roa
Signing time: Sat 01 Jan 2022 06:04:39 +0000
ROA not before: Sat 01 Jan 2022 06:04:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19437
IP address blocks: 185.143.242.0/24 maxlen: 24
185.200.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 259903157 (0xf7dceb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jan 1 06:04:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6295b3441fe2f633545f88a26a45882e86d1b50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0f:d0:9d:4d:4c:54:96:cf:16:7b:11:5a:91:
da:75:2d:27:8b:2a:ac:0c:5c:cf:d0:68:ce:3f:be:
a7:4f:91:58:86:e1:6e:4d:bf:54:e6:6d:52:d1:ed:
b9:e0:7c:3b:98:0e:b0:27:43:88:4b:f8:33:eb:40:
36:5e:89:43:52:f5:da:d2:d0:60:ac:97:53:c4:f3:
37:5d:7c:61:96:d6:21:b0:b8:0a:1c:e1:82:3b:39:
a6:da:60:6b:a9:f4:bb:97:e9:ad:55:aa:0b:11:a0:
75:a3:f0:c3:2d:1e:45:23:86:4b:2f:97:d3:83:b9:
72:d6:b8:b3:c2:6d:82:3f:25:a6:0f:20:0b:e6:36:
90:c2:1d:0a:e2:9d:19:a6:54:c6:a6:38:cf:14:23:
68:94:61:d0:ba:5f:7c:78:bc:0a:fb:e1:bc:d2:fb:
b4:d6:58:08:8b:8d:9a:8a:3a:8e:f2:4b:8b:0c:d9:
23:de:fb:57:fd:fe:9f:bb:71:73:cc:79:73:38:bf:
fd:5b:af:2d:bf:0f:86:11:bd:1d:f9:22:53:a4:ab:
1c:64:1a:ec:1f:9f:4b:8e:d5:d0:35:da:2d:3c:15:
83:23:47:14:4a:bf:ab:53:0f:9e:b3:99:54:98:c1:
ee:14:1d:99:51:79:7b:ef:cc:70:d2:f3:ea:2c:3e:
84:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:29:5B:34:41:FE:2F:63:35:45:F8:8A:26:A4:58:82:E8:6D:1B:50
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/9ilbNEH-L2M1RfiKJqRYguhtG1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.242.0/24
185.200.245.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:03:57:59:f6:3b:26:41:38:01:54:ff:f0:17:e0:71:33:83:
cd:a4:43:7e:ba:0c:dd:7c:78:23:1a:0b:a1:70:da:a7:25:3f:
89:48:9b:41:ce:ce:2a:a8:d6:48:7e:ae:10:c2:44:5d:57:31:
93:da:32:1f:c7:cd:47:a7:e6:a6:a2:0c:9b:67:73:ba:d7:d3:
01:13:18:4b:8d:fb:38:7e:90:5f:59:2d:a6:f1:d0:47:a6:78:
ca:8e:af:69:f5:cb:2a:82:a4:6f:82:4b:85:1a:ec:84:9c:6c:
22:6e:95:5e:ff:f5:5a:d0:e5:7b:69:ef:a2:1e:1e:a4:02:cf:
a4:1c:72:c7:7f:58:91:51:96:ec:ab:6d:b8:7e:45:1a:5f:21:
84:6d:7e:66:84:ba:bc:28:ce:d5:20:72:1c:d3:e3:90:be:f7:
c7:33:8e:3f:eb:c6:9e:45:53:35:72:f2:28:3e:1a:d3:9a:7b:
1c:11:ed:f6:34:2a:51:c9:45:cf:81:08:be:9a:37:e1:6d:f0:
a1:6e:e0:93:bf:1f:99:ea:46:57:9d:6d:b0:cf:ee:bf:7f:da:
28:a0:c4:43:db:20:0c:c0:0c:20:fd:f4:11:b3:cd:5a:1d:af:
2a:8f:1a:88:62:51:be:fc:7b:1d:98:0c:8a:1c:65:f5:75:c9:
04:b5:cb:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:07 2024 by rpki-client on console-fra.rpki-client.org