Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/2b800e-6953-4009-b195-41b26607bf36/1/c9ZTl9TrNtpWrOdhekCn-o71DB0.roa
File: c9ZTl9TrNtpWrOdhekCn-o71DB0.roa (raw, json)
Hash identifier: 3rEV/NfM8TE0SfWGsJzL/J6MpV8haev28vG9Wgpzf4w=
Subject key identifier: 73:D6:53:97:D4:EB:36:DA:56:AC:E7:61:7A:40:A7:FA:8E:F5:0C:1D
Certificate issuer: /CN=8b9b0163eee9e792aaa16b7d5105d347211f3123
Certificate serial: 159C89
Authority key identifier: 8B:9B:01:63:EE:E9:E7:92:AA:A1:6B:7D:51:05:D3:47:21:1F:31:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5sBY-7p55KqoWt9UQXTRyEfMSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/2b800e-6953-4009-b195-41b26607bf36/1/c9ZTl9TrNtpWrOdhekCn-o71DB0.roa
Signing time: Sat 01 Jan 2022 00:58:43 +0000
ROA not before: Sat 01 Jan 2022 00:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50873
IP address blocks: 185.237.176.0/24 maxlen: 24
2a0c:1b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1416329 (0x159c89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9b0163eee9e792aaa16b7d5105d347211f3123
Validity
Not Before: Jan 1 00:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73d65397d4eb36da56ace7617a40a7fa8ef50c1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:09:a3:6d:a8:59:bf:17:c7:4d:24:e3:a6:d5:
d3:1e:ab:f7:26:3c:5d:f5:bb:48:08:8b:13:81:b3:
4f:5b:0e:ef:a0:12:4a:01:79:c7:7a:b9:c7:4e:7f:
4f:b4:6f:d2:48:07:74:57:ad:b4:da:7b:cf:df:02:
09:18:0a:2f:ad:a1:85:d6:f2:7d:a1:c7:94:15:a8:
a4:57:5a:31:4a:58:c4:4c:55:a5:58:a1:5c:9f:f0:
0e:2e:59:0f:66:a1:3c:a6:d9:68:91:22:64:8b:e7:
ad:4d:b6:40:c1:d7:9e:a0:38:30:66:09:8e:9a:34:
7c:c9:71:8f:e7:c2:8f:b3:62:84:d9:27:b1:fa:47:
00:47:e5:96:7a:59:28:3f:69:8e:0e:f0:07:9f:94:
d3:60:3a:e8:68:14:9d:18:45:d5:66:cb:94:33:5f:
af:99:06:3a:f5:fe:09:2b:49:5c:c3:b9:07:a9:5b:
e2:6c:52:ef:d2:cd:ec:9e:7d:dc:71:ed:23:df:93:
60:ed:4a:2f:a4:48:a7:64:36:fc:30:d9:5d:bd:a9:
94:63:02:29:84:77:6a:68:0e:9e:09:ce:26:1a:b6:
a2:ea:6f:97:bb:53:86:7f:63:47:db:71:1f:e4:14:
96:ac:a0:54:06:33:ca:31:bc:1d:5d:b6:cd:45:90:
a4:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D6:53:97:D4:EB:36:DA:56:AC:E7:61:7A:40:A7:FA:8E:F5:0C:1D
X509v3 Authority Key Identifier:
keyid:8B:9B:01:63:EE:E9:E7:92:AA:A1:6B:7D:51:05:D3:47:21:1F:31:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5sBY-7p55KqoWt9UQXTRyEfMSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2b800e-6953-4009-b195-41b26607bf36/1/c9ZTl9TrNtpWrOdhekCn-o71DB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2b800e-6953-4009-b195-41b26607bf36/1/i5sBY-7p55KqoWt9UQXTRyEfMSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.176.0/24
IPv6:
2a0c:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
49:67:35:27:c6:e5:95:d3:97:b6:b4:32:ff:9a:71:5b:7a:bd:
d7:c9:34:9c:e6:07:ad:79:2d:65:6d:bc:95:77:c1:5c:42:6e:
55:56:dc:d6:1f:62:06:51:db:46:1a:0a:bc:0c:ed:54:5d:57:
cb:a7:9b:08:2b:0d:42:d8:59:d2:51:98:b2:17:65:11:d0:fd:
2c:fd:91:8a:b7:db:ba:24:53:96:43:76:e9:f0:01:1c:50:d6:
49:fd:53:78:4f:31:01:2e:c9:10:76:dd:d2:cd:fc:2a:f3:64:
1f:62:83:67:af:3f:29:3d:f8:cd:f9:e8:38:b1:dc:2e:6e:b4:
f4:c2:1e:f4:d4:5e:c3:1a:56:ba:42:e0:89:f0:5e:b8:cb:cd:
26:c9:a6:ca:18:40:29:91:6a:64:8f:be:ac:75:e5:a3:e5:75:
73:eb:c2:ba:32:8c:1c:45:75:89:30:d3:14:63:bf:7e:e5:b5:
a5:4c:c3:95:d1:43:03:a6:46:bc:fe:d6:61:0c:4f:f7:5d:df:
dc:03:52:2a:35:a1:52:53:c4:20:f9:ed:e9:c5:03:6f:db:9f:
f3:84:b4:07:23:c3:98:ef:11:ac:19:1b:77:46:32:46:67:04:
d6:0d:68:a9:3f:0a:46:a8:06:f3:cd:41:d2:fc:2e:f4:e4:a2:
e3:35:06:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:16 2024 by rpki-client on console-fra.rpki-client.org