Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/arjyO18hCHEAhTnPMD8m8Zul4HU.roa
File: arjyO18hCHEAhTnPMD8m8Zul4HU.roa (raw, json)
Hash identifier: fp9O7oeDxJ6pI5c0vc0982kvqUF23tex5zBUudzv/6E=
Subject key identifier: 6A:B8:F2:3B:5F:21:08:71:00:85:39:CF:30:3F:26:F1:9B:A5:E0:75
Certificate issuer: /CN=a4338168cd9d5af0604013fc4274126fc581f3cb
Certificate serial: 0183186A00AD5D1CB6AC6F0AFF69E2B0B0F3
Authority key identifier: A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pDOBaM2dWvBgQBP8QnQSb8WB88s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/arjyO18hCHEAhTnPMD8m8Zul4HU.roa
Signing time: Wed 07 Sep 2022 14:45:43 +0000
ROA not before: Wed 07 Sep 2022 14:45:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203967
IP address blocks: 185.44.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:18:6a:00:ad:5d:1c:b6:ac:6f:0a:ff:69:e2:b0:b0:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4338168cd9d5af0604013fc4274126fc581f3cb
Validity
Not Before: Sep 7 14:45:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ab8f23b5f210871008539cf303f26f19ba5e075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2f:83:73:df:9e:7c:21:08:d7:4f:0a:0a:07:
bd:7e:04:76:1f:63:00:9e:92:f1:08:c8:c7:b5:9a:
cf:27:e2:de:a8:9c:6b:39:cf:68:10:90:f5:e8:7b:
ed:e3:68:de:e7:1e:ba:af:df:ce:f8:71:c8:b4:2e:
fa:6d:d9:cf:7b:de:0f:53:d4:c3:d2:21:c2:38:b9:
65:ba:af:cf:e7:be:c0:4a:a0:dc:57:17:46:97:e1:
ee:ed:5f:70:7c:d4:16:e6:78:e4:aa:00:37:85:f1:
b8:6c:0d:83:c1:73:e1:fe:4c:a7:5c:36:aa:6e:0b:
07:1a:51:8d:a1:33:53:8b:f1:31:e9:21:74:89:39:
54:d6:16:91:1d:b9:d1:75:19:32:a7:95:a9:bb:94:
69:d9:4d:62:20:af:2f:51:83:e2:ac:2c:48:7d:44:
5d:00:35:46:15:d6:f0:13:53:27:2c:91:f4:cc:6c:
60:ac:fb:6f:be:5f:db:f4:96:da:e2:56:01:e5:d9:
37:0e:e9:d5:99:d4:5a:6e:95:b5:28:4d:88:32:ee:
6e:7c:41:1d:d8:5a:1d:4b:62:c6:28:75:88:c5:14:
f3:90:a2:3b:4a:35:96:48:bd:fe:f4:09:65:19:57:
0f:ba:31:bd:23:3a:fd:db:03:c9:24:8b:c5:05:f8:
6b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B8:F2:3B:5F:21:08:71:00:85:39:CF:30:3F:26:F1:9B:A5:E0:75
X509v3 Authority Key Identifier:
keyid:A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pDOBaM2dWvBgQBP8QnQSb8WB88s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/arjyO18hCHEAhTnPMD8m8Zul4HU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/pDOBaM2dWvBgQBP8QnQSb8WB88s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.82.0/24
Signature Algorithm: sha256WithRSAEncryption
73:3d:b4:4e:ce:a9:de:9e:57:3a:8e:b9:d3:81:f0:53:4e:00:
4e:dd:35:e9:1f:96:7a:3f:32:1f:3f:9c:55:2e:79:32:a7:58:
85:37:3d:e6:b7:17:e1:e6:cb:16:a7:c0:34:12:4d:36:6f:95:
ce:8d:27:46:8b:6a:7c:27:c8:1d:1a:4a:b3:da:c7:04:96:63:
b1:8e:56:b0:78:10:74:41:f8:96:78:06:7a:03:77:66:54:93:
3e:82:d5:4a:02:2e:a7:b9:44:e5:ee:57:01:d2:ad:5d:7e:b8:
01:2f:cd:df:b4:23:a6:60:40:b2:e2:8c:da:a3:54:ed:5f:41:
f7:60:32:f4:6f:f2:e5:df:69:a6:f1:f7:7f:59:25:3c:e4:f5:
e4:35:3d:d1:de:20:11:11:15:93:58:0d:35:43:78:f7:77:82:
a7:0e:05:cd:57:ff:b3:66:18:91:eb:3a:f5:51:4c:e5:14:5a:
2e:a3:d4:5b:18:f9:8e:fb:e7:10:5b:aa:b3:9d:a0:5b:68:7c:
f2:b1:7b:01:a5:8a:75:ab:20:04:9d:15:eb:70:26:be:9d:eb:
2c:04:b0:41:02:33:9c:06:c3:96:b7:40:80:9f:cf:6a:b0:99:
00:96:3c:73:dc:a1:7a:4b:b2:b9:09:16:25:ce:e5:e5:86:27:
3d:64:91:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:54 2024 by rpki-client on console-fra.rpki-client.org