Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/4fDwrMkwEK2FY3pKGP9LRPteEf0.roa
File: 4fDwrMkwEK2FY3pKGP9LRPteEf0.roa (raw, json)
Hash identifier: gwxnF/SYbI9JKz1Df2K4+9bLNNw6blVQ748F6kjQbo0=
Subject key identifier: E1:F0:F0:AC:C9:30:10:AD:85:63:7A:4A:18:FF:4B:44:FB:5E:11:FD
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 07026AC9
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/4fDwrMkwEK2FY3pKGP9LRPteEf0.roa
Signing time: Sat 01 Jan 2022 03:54:10 +0000
ROA not before: Sat 01 Jan 2022 03:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61959
IP address blocks: 185.43.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117598921 (0x7026ac9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 1 03:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1f0f0acc93010ad85637a4a18ff4b44fb5e11fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:30:f1:37:e7:0f:17:8b:09:2b:5f:11:10:aa:
98:96:f0:08:56:83:69:23:7b:bc:6f:89:88:59:7d:
74:66:a0:b5:77:88:eb:6d:7b:98:86:e7:f2:e1:b2:
db:54:15:39:c0:67:d3:a0:49:1b:bf:c0:6d:0d:57:
42:a8:1d:4d:e9:e6:99:8b:7f:7f:22:75:3a:c0:39:
f1:00:52:3b:27:56:82:5a:54:8b:df:18:ce:4a:86:
1f:44:3b:e2:14:57:a7:2f:c5:52:d8:dd:a8:9b:f6:
9a:ce:bf:19:71:f0:17:8d:a1:4d:af:0c:70:3c:92:
77:60:9a:6c:25:eb:fb:d3:1d:02:68:2b:54:3f:38:
20:48:e2:47:f3:c6:46:65:66:44:13:b4:d1:54:93:
c3:ba:23:27:2f:61:0a:55:b4:98:86:d1:0a:c9:ad:
a4:ae:c7:76:b9:28:ad:fe:ca:36:33:55:0d:81:0a:
68:31:02:1c:80:96:48:5b:5d:d3:1b:c5:9d:73:96:
cb:ec:fe:36:03:cf:36:1c:59:f1:76:61:f8:06:42:
ee:85:9e:8c:b0:1d:2d:ac:4e:e2:db:93:27:3d:d1:
f9:80:5f:2e:d9:a4:b1:0a:4a:9c:71:1f:fa:3d:8e:
a0:72:58:91:db:d2:fe:ce:a7:bf:56:01:35:8d:2f:
de:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F0:F0:AC:C9:30:10:AD:85:63:7A:4A:18:FF:4B:44:FB:5E:11:FD
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/4fDwrMkwEK2FY3pKGP9LRPteEf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.250.0/24
Signature Algorithm: sha256WithRSAEncryption
30:15:b0:94:c6:45:13:27:70:7c:93:6c:f6:47:fa:84:f6:fc:
d1:64:48:19:f7:8f:70:b3:62:62:e7:90:7a:fd:e0:01:25:f2:
9e:61:66:d1:6b:05:c7:20:7f:1a:1c:33:a4:c3:6e:4b:18:b6:
25:bd:ac:59:ba:1c:aa:ab:e4:5b:78:45:44:f1:68:73:a5:fb:
02:db:24:1e:8d:6f:fb:05:4a:c9:f3:26:68:c0:a2:29:9f:7e:
73:26:a3:b8:3a:5d:7e:d1:fd:74:c1:89:4f:fb:e3:5f:97:40:
63:fa:31:76:92:a3:60:36:e6:ca:0e:a0:6f:d6:e9:0d:d9:2a:
85:a8:9f:f4:4a:f9:7c:d8:b4:39:59:71:60:f1:27:ac:20:57:
58:6d:e0:6f:4e:58:fb:49:36:74:0f:08:93:67:0c:1a:c5:37:
07:7b:a3:2e:b6:2d:bb:57:48:17:25:09:90:43:ce:82:68:0d:
c7:95:bf:da:82:e4:be:24:91:2b:f5:9a:28:e0:9b:bc:1f:46:
ba:f3:dc:15:10:70:7e:1a:d9:4f:ea:bd:24:11:a8:a7:3b:e3:
22:f1:96:e0:ce:17:d9:40:76:5b:f4:9a:a6:f0:be:fd:c7:63:
5c:03:2b:da:44:9b:4f:24:4f:3f:2c:18:35:0f:33:a8:f6:9d:
44:43:6a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org