Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/9RCrh3AOP0UD7fmXD7nQKzhMpFQ.roa
File: 9RCrh3AOP0UD7fmXD7nQKzhMpFQ.roa (raw, json)
Hash identifier: 2X69ZifJlSG7wtT+hIFxMgCMG1LViw2okZUZGUcvB3c=
Subject key identifier: F5:10:AB:87:70:0E:3F:45:03:ED:F9:97:0F:B9:D0:2B:38:4C:A4:54
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 094CAC5F
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/9RCrh3AOP0UD7fmXD7nQKzhMpFQ.roa
Signing time: Sat 01 Jan 2022 06:00:38 +0000
ROA not before: Sat 01 Jan 2022 06:00:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212483
IP address blocks: 185.117.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156019807 (0x94cac5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 06:00:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f510ab87700e3f4503edf9970fb9d02b384ca454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a1:cc:64:58:bf:12:e2:15:de:f9:24:34:f7:
18:b3:95:46:90:ef:2c:e2:7c:dc:b5:6c:5e:87:ca:
55:1a:8e:f4:14:b8:b3:70:d4:d6:00:9e:19:1d:ee:
2e:f4:b6:8b:36:81:ab:98:9c:51:8e:db:05:34:65:
ab:be:f8:de:a5:d3:fd:e5:00:67:e4:42:04:40:d9:
40:bb:20:81:2c:c4:0b:c9:af:07:c8:2d:4e:58:f1:
8a:d7:7d:62:90:56:44:91:14:39:4f:b4:31:8b:76:
f5:15:b5:5f:ae:79:e1:4d:c7:d3:f9:bc:40:36:c4:
54:1f:f9:6f:d4:62:16:cf:83:c3:38:44:b5:5b:c9:
9f:2e:cd:00:0e:5c:ef:b8:41:bd:c5:3e:ab:4e:39:
7d:f3:ad:9a:c0:3e:42:a5:83:fb:db:38:d5:86:87:
3b:df:78:ea:56:8e:f4:df:03:33:e5:ce:31:f9:b1:
aa:93:b1:96:86:b3:54:fa:ff:0e:c2:06:da:51:bd:
e4:70:20:37:5f:8c:2e:27:34:64:df:25:e5:98:ff:
5d:98:48:8f:cf:42:5e:69:47:3f:b4:25:35:77:c5:
a4:cc:a2:07:b4:f8:88:71:46:45:46:8a:18:5a:90:
6b:a0:9b:a5:c1:74:31:52:53:1e:24:b0:21:3d:38:
b4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:10:AB:87:70:0E:3F:45:03:ED:F9:97:0F:B9:D0:2B:38:4C:A4:54
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/9RCrh3AOP0UD7fmXD7nQKzhMpFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.2.0/24
Signature Algorithm: sha256WithRSAEncryption
26:c0:c0:33:25:24:e2:92:87:6b:55:4f:c6:a0:3a:9d:28:95:
8e:13:91:e5:f2:25:58:16:6a:b4:18:27:1a:41:f4:a2:31:ec:
7d:94:29:59:45:c2:99:4d:eb:f4:70:66:2b:ce:8e:79:e9:5f:
77:4b:6d:05:83:c8:82:f0:85:55:f5:79:72:8e:f8:0a:53:b9:
ed:03:13:43:50:13:fb:17:14:1b:51:14:95:44:71:46:99:1a:
06:34:24:d4:ee:4a:93:91:5d:7b:f7:6d:b7:5a:8c:75:df:82:
8c:0d:57:2a:ca:fe:34:81:d0:43:7f:49:65:7c:21:1f:a3:6c:
ce:59:c8:f2:36:a8:7b:23:1a:e0:09:34:1b:72:04:51:19:ae:
cc:36:35:c4:60:22:74:c0:a0:c6:c9:00:00:22:0b:1b:39:ca:
ff:10:0d:ad:20:48:5c:e5:09:88:c8:91:cd:a2:f1:3a:39:25:
5c:69:f7:2f:bc:4a:71:8a:b8:ac:d3:0a:c4:f0:80:e8:70:46:
1f:85:8d:b1:4d:3e:e3:07:2c:64:15:04:7d:19:c9:ef:88:73:
54:78:9e:34:4f:a0:ac:d7:c1:c2:a9:19:cc:45:8a:c1:7f:e9:
e7:5e:f3:39:e3:31:f0:ac:7e:0a:90:24:d3:92:34:6f:77:9f:
82:87:69:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:27 2024 by rpki-client on console-fra.rpki-client.org