Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/c4cdb0-d9f6-45d5-a524-f5d34f5e85d6/1/dfcRb2tfL-6LHJAY-ii_0swYbmI.roa
File: dfcRb2tfL-6LHJAY-ii_0swYbmI.roa (raw, json)
Hash identifier: v+rnncmxy9Lvki57EYVCTH2un8YrybP/A0k0aa72ZYE=
Subject key identifier: 75:F7:11:6F:6B:5F:2F:EE:8B:1C:90:18:FA:28:BF:D2:CC:18:6E:62
Certificate issuer: /CN=2bf3746db04080c780a8bc6d95d70245818c0738
Certificate serial: 0183385448F164D58E0BBE3A28040170F9C6
Authority key identifier: 2B:F3:74:6D:B0:40:80:C7:80:A8:BC:6D:95:D7:02:45:81:8C:07:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K_N0bbBAgMeAqLxtldcCRYGMBzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/c4cdb0-d9f6-45d5-a524-f5d34f5e85d6/1/dfcRb2tfL-6LHJAY-ii_0swYbmI.roa
Signing time: Tue 13 Sep 2022 19:29:51 +0000
ROA not before: Tue 13 Sep 2022 19:29:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9123
IP address blocks: 185.251.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:38:54:48:f1:64:d5:8e:0b:be:3a:28:04:01:70:f9:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bf3746db04080c780a8bc6d95d70245818c0738
Validity
Not Before: Sep 13 19:29:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75f7116f6b5f2fee8b1c9018fa28bfd2cc186e62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ea:86:0d:42:35:64:12:51:f0:b3:17:ad:ce:
92:3c:65:e3:cb:01:1a:ef:c8:d3:09:cf:4a:88:79:
c5:17:a3:5f:db:8a:bc:8f:2e:f3:74:84:55:5c:cd:
12:82:6e:22:7f:8b:6e:fd:39:7c:b7:05:bb:0d:47:
14:09:06:3c:88:46:21:4f:b6:ac:60:2e:b0:dd:51:
d9:be:50:f2:2d:e3:fa:01:c9:8d:e0:05:08:1c:ec:
64:34:9e:2d:ad:58:a7:52:e8:45:4d:0a:f4:e5:04:
4b:bc:1e:8c:ef:62:81:40:71:34:72:30:e4:6b:c6:
b2:e6:3f:f0:38:66:bf:a4:3a:ff:ed:36:86:cb:c2:
1e:5a:12:92:f2:cf:bc:d0:10:05:bb:db:af:36:35:
a8:1e:45:0d:17:c2:83:6b:c7:ca:c4:1f:e4:d3:42:
3f:87:15:5a:39:66:9a:0f:6f:c7:65:0d:a4:56:6d:
b7:28:6f:55:96:e7:f7:0f:a1:65:97:25:9f:11:d6:
78:51:c8:9c:72:e1:05:40:28:a5:54:6c:4c:98:68:
a9:28:90:fd:5b:3c:72:54:2e:e5:3b:d2:c6:6b:07:
df:83:fd:2b:22:20:da:64:f8:5f:91:41:f8:67:5c:
7d:6d:3d:c0:37:84:fa:d1:b3:f8:20:e0:27:04:ff:
3d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F7:11:6F:6B:5F:2F:EE:8B:1C:90:18:FA:28:BF:D2:CC:18:6E:62
X509v3 Authority Key Identifier:
keyid:2B:F3:74:6D:B0:40:80:C7:80:A8:BC:6D:95:D7:02:45:81:8C:07:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K_N0bbBAgMeAqLxtldcCRYGMBzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/c4cdb0-d9f6-45d5-a524-f5d34f5e85d6/1/dfcRb2tfL-6LHJAY-ii_0swYbmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/c4cdb0-d9f6-45d5-a524-f5d34f5e85d6/1/K_N0bbBAgMeAqLxtldcCRYGMBzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.20.0/24
Signature Algorithm: sha256WithRSAEncryption
79:31:04:fc:b7:f8:53:67:a2:f8:a1:be:aa:33:fc:26:5d:9f:
b6:50:be:76:64:b3:9c:91:17:6f:91:0a:67:c3:e9:fd:af:6c:
a8:1d:dd:d1:cc:89:9a:a9:4f:7b:b2:11:42:2f:5c:83:0d:7d:
ca:5b:ea:45:03:5f:f7:fd:b2:5e:1b:e4:8a:26:db:d2:78:6e:
09:99:82:57:3f:1f:4e:4d:66:f9:eb:50:dc:8e:b5:2c:44:4a:
5f:7e:23:c4:2c:8c:5b:42:e0:c1:eb:68:eb:e4:fb:75:b9:9c:
21:af:37:09:4f:4e:fa:bb:28:bc:eb:c0:19:e1:17:ea:9f:81:
48:fb:59:6b:49:f6:4b:eb:2c:4e:ea:cc:5d:24:0a:d9:80:f4:
64:ce:58:c7:e2:a2:cb:df:dd:80:bb:8b:b2:29:05:76:53:c8:
13:4e:2e:23:1c:d6:cd:a8:62:6f:a0:97:04:40:d4:38:e2:44:
4c:22:6c:91:51:ab:48:c3:0f:1a:f7:6b:6f:11:ef:2e:8a:89:
4e:5f:ed:77:36:97:15:ea:62:12:10:14:33:09:82:15:54:78:
01:f7:e2:e2:74:89:dd:cc:11:a2:eb:4f:0f:c4:71:86:bd:bb:
8e:ba:24:fe:c8:c0:91:2d:aa:b3:c3:ee:fc:21:67:41:ca:07:
ff:e4:49:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-ams.rpki-client.org