Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/5f6530-1166-4b9d-9dfd-caae0edf69f1/1/K_09ISPPvXuh2frOZsEzCqYmQzA.roa
File: K_09ISPPvXuh2frOZsEzCqYmQzA.roa (raw, json)
Hash identifier: 13nmJ4hzBuvYcMzvRPVP/Y193dWU7R3bO8uVOqa1ykU=
Subject key identifier: 2B:FD:3D:21:23:CF:BD:7B:A1:D9:FA:CE:66:C1:33:0A:A6:26:43:30
Certificate issuer: /CN=756c9ebc7ff8759d8a106fffaf335ea346faea57
Certificate serial: 01856EAFC6CF0A107428CFC2D91A173AB3FC
Authority key identifier: 75:6C:9E:BC:7F:F8:75:9D:8A:10:6F:FF:AF:33:5E:A3:46:FA:EA:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dWyevH_4dZ2KEG__rzNeo0b66lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/5f6530-1166-4b9d-9dfd-caae0edf69f1/1/K_09ISPPvXuh2frOZsEzCqYmQzA.roa
Signing time: Sun 01 Jan 2023 18:54:51 +0000
ROA not before: Sun 01 Jan 2023 18:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34680
IP address blocks: 185.243.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:c6:cf:0a:10:74:28:cf:c2:d9:1a:17:3a:b3:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=756c9ebc7ff8759d8a106fffaf335ea346faea57
Validity
Not Before: Jan 1 18:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2bfd3d2123cfbd7ba1d9face66c1330aa6264330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:26:23:12:00:aa:7b:08:f9:5a:2a:ad:b4:55:
ca:ca:b7:64:46:da:23:2b:ba:f1:32:8f:88:fb:71:
3c:8b:5b:29:fe:60:20:83:8a:c2:ab:79:ba:61:ae:
39:e0:78:c8:05:62:bd:b2:77:b9:0f:81:a2:2d:3a:
85:d3:60:e0:8b:c0:4f:18:71:83:83:9d:86:77:e8:
f4:d8:96:41:91:db:51:b7:67:e8:49:c3:d4:5c:c0:
ac:5a:0b:bc:44:27:fe:37:d1:7c:16:a3:d6:65:a5:
14:65:4b:8b:de:db:63:f6:fd:e0:d2:34:27:2c:70:
16:93:b5:39:34:a1:e9:f2:55:8a:ad:e9:5c:ac:69:
0a:29:77:1c:4f:d1:19:8d:31:8c:0b:5a:b7:75:d5:
db:8a:a4:f8:4f:49:a5:f3:eb:4c:bd:6e:60:ed:ff:
70:0d:89:92:65:59:8a:0d:b4:89:7b:26:f8:01:20:
0f:01:ff:e8:1d:83:e0:e5:39:13:59:66:66:1e:e0:
e0:d2:ca:b3:92:12:9e:ed:0a:b2:e0:72:f1:d1:3e:
64:e5:4e:c0:3c:d2:9e:08:f8:f1:e2:a3:83:7d:c3:
f3:ff:f8:7a:8f:d1:0e:29:e2:f4:51:7a:94:dc:03:
94:2f:65:7c:8b:25:8a:46:63:c5:88:13:9e:e7:e3:
de:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:FD:3D:21:23:CF:BD:7B:A1:D9:FA:CE:66:C1:33:0A:A6:26:43:30
X509v3 Authority Key Identifier:
keyid:75:6C:9E:BC:7F:F8:75:9D:8A:10:6F:FF:AF:33:5E:A3:46:FA:EA:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dWyevH_4dZ2KEG__rzNeo0b66lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5f6530-1166-4b9d-9dfd-caae0edf69f1/1/K_09ISPPvXuh2frOZsEzCqYmQzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5f6530-1166-4b9d-9dfd-caae0edf69f1/1/dWyevH_4dZ2KEG__rzNeo0b66lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.36.0/22
Signature Algorithm: sha256WithRSAEncryption
74:46:39:37:f8:9f:49:27:bd:2b:e2:a1:7c:c2:b5:fd:6d:31:
0c:1c:e9:e5:e3:b0:6a:dc:ba:00:3e:84:83:55:e8:f6:3e:85:
ff:6e:1f:0f:0a:f1:f4:20:53:eb:da:56:f8:fa:2f:59:b0:da:
41:f4:ed:bf:d5:b9:d5:2b:aa:61:c8:4b:d9:7c:a0:48:d4:f4:
6d:55:5e:41:72:ef:aa:f2:3c:85:87:59:3e:80:ec:3e:ec:3b:
c2:76:09:d1:ee:2d:2a:4a:f1:60:8e:10:e7:a1:93:ab:30:f7:
35:90:d9:96:73:09:e4:89:05:69:cf:71:ee:a7:5c:42:fb:6f:
53:11:bf:b7:27:ee:35:fa:b8:20:2c:2b:cf:23:c8:9c:bc:b3:
bd:46:b1:cc:a9:56:64:26:1a:5a:40:47:e7:13:89:59:33:ce:
18:54:4a:ef:32:54:16:6e:9d:96:f2:72:e1:b7:73:78:b2:71:
e7:90:c4:09:5e:a7:19:87:07:5d:f3:ea:7b:52:40:a2:e5:32:
ad:3a:b9:a6:0c:d8:77:b2:1d:9a:1a:64:82:6b:4b:ab:d8:8c:
b3:38:93:0f:e7:ba:9b:55:f1:71:5e:2f:d3:45:54:bf:de:a4:
ad:42:ff:3e:49:f4:91:14:c0:03:da:8a:e9:f4:17:ef:ff:4a:
d4:49:3c:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:02 2025 by rpki-client