Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/9a3aac-2a4c-4387-aea8-04e6f5764c52/1/n42FzxxQQt0bqMPY1i0tqeNUzDo.roa
File: n42FzxxQQt0bqMPY1i0tqeNUzDo.roa (raw, json)
Hash identifier: hsL1nnbJdrejO2uqx1FC4q+t60dIspdhWfuPn23nsfY=
Subject key identifier: 9F:8D:85:CF:1C:50:42:DD:1B:A8:C3:D8:D6:2D:2D:A9:E3:54:CC:3A
Certificate issuer: /CN=d091fe8c540c44e234f9bc668f8a3b1647acdb06
Certificate serial: 04147ED0
Authority key identifier: D0:91:FE:8C:54:0C:44:E2:34:F9:BC:66:8F:8A:3B:16:47:AC:DB:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0JH-jFQMROI0-bxmj4o7Fkes2wY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/9a3aac-2a4c-4387-aea8-04e6f5764c52/1/n42FzxxQQt0bqMPY1i0tqeNUzDo.roa
Signing time: Sat 01 Jan 2022 08:57:19 +0000
ROA not before: Sat 01 Jan 2022 08:57:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41881
IP address blocks: 185.192.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68452048 (0x4147ed0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d091fe8c540c44e234f9bc668f8a3b1647acdb06
Validity
Not Before: Jan 1 08:57:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f8d85cf1c5042dd1ba8c3d8d62d2da9e354cc3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ca:e6:f0:6f:8b:89:f6:88:57:05:39:81:5a:
9b:9b:86:71:38:a1:c9:d5:64:09:ac:d8:0b:58:ae:
cc:33:92:a2:fb:77:85:b5:ff:a0:97:28:12:b3:6a:
45:3f:40:3e:b5:0f:f2:72:fc:28:f3:59:54:65:53:
34:8f:79:b3:60:9b:d0:e1:b9:f7:dd:4d:b8:f5:1a:
80:86:db:b7:90:f8:3d:5f:67:f9:96:52:15:e5:c9:
b7:b2:a9:2b:f7:69:5a:17:90:8a:41:0c:6d:09:d9:
22:6e:2c:35:9b:af:7f:cd:17:89:15:f4:7a:e9:f6:
07:66:c7:6e:09:80:92:d9:3f:9a:7a:6e:b6:61:cc:
fc:5a:fc:4b:9d:da:55:8b:22:e7:2c:56:fd:5b:d1:
72:fb:2c:e9:23:bc:03:e6:a8:ad:db:60:51:6b:04:
cd:7d:4f:9b:55:8a:33:53:c1:53:1e:fb:99:ba:ec:
78:7e:5b:61:aa:6c:00:11:fd:2d:bd:a1:6d:17:d8:
38:1b:25:7e:6a:af:ec:83:c8:01:33:52:e3:6b:f7:
37:e9:2c:7f:76:9d:1d:8d:2a:ee:e3:a4:80:98:9d:
2d:22:27:df:c6:90:00:4c:2d:72:83:81:88:69:03:
82:0f:c1:e5:a1:26:0b:fc:58:e9:bc:9c:d3:41:b4:
81:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8D:85:CF:1C:50:42:DD:1B:A8:C3:D8:D6:2D:2D:A9:E3:54:CC:3A
X509v3 Authority Key Identifier:
keyid:D0:91:FE:8C:54:0C:44:E2:34:F9:BC:66:8F:8A:3B:16:47:AC:DB:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0JH-jFQMROI0-bxmj4o7Fkes2wY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/9a3aac-2a4c-4387-aea8-04e6f5764c52/1/n42FzxxQQt0bqMPY1i0tqeNUzDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/9a3aac-2a4c-4387-aea8-04e6f5764c52/1/0JH-jFQMROI0-bxmj4o7Fkes2wY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.113.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:3f:dd:ec:b2:40:d9:81:cd:3b:64:ae:30:55:23:bc:0d:7a:
ef:bf:ee:1c:97:9c:23:1d:55:a0:29:ad:72:14:be:f6:c6:29:
5b:2c:0c:22:9e:16:bd:89:9d:4d:a0:98:3e:2e:a8:19:a9:8b:
ff:dc:8e:cb:bb:ec:7a:c4:9e:6f:c7:80:48:9f:88:a5:f7:d1:
76:62:08:d8:c3:c2:fd:64:52:15:8d:ba:90:ea:c6:bf:24:78:
02:65:af:61:64:94:31:79:e5:2e:f2:11:e9:0b:b3:eb:c6:08:
54:f7:71:e7:5b:dd:c4:b9:d2:73:15:5c:5b:de:08:84:7a:6b:
87:97:65:94:e4:2a:5d:64:50:56:e7:06:05:2b:c8:8a:f7:2a:
21:69:de:ed:4d:b2:3a:5f:4d:9e:9e:b3:b8:35:92:e7:a2:c9:
8c:be:76:49:a6:e6:ab:e6:4b:8a:ac:13:67:67:7f:cf:b8:39:
60:16:b5:12:2f:a1:d5:fa:62:0c:f8:58:7d:e4:6f:f0:83:2f:
21:6b:f2:1c:61:fc:1c:0c:ca:0a:cf:b1:c2:a2:b7:fa:74:d8:
84:a1:9e:af:76:bd:3a:e9:20:a5:e5:4e:a6:ed:9f:15:43:c7:
53:79:15:c1:23:02:16:ea:23:26:1e:a6:2a:ae:0e:30:49:20:
fc:eb:04:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:40 2025 by rpki-client