Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/2alXzX7dBJjcpD1bvWYR9h6YQ3w.roa
File: 2alXzX7dBJjcpD1bvWYR9h6YQ3w.roa (raw, json)
Hash identifier: YMEYnHki5p5XfU8WC3cY2/QsohYleDlLYfUgIz8YcfI=
Subject key identifier: D9:A9:57:CD:7E:DD:04:98:DC:A4:3D:5B:BD:66:11:F6:1E:98:43:7C
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018435B9F5813B97EC168932E2AE4D1B1036
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/2alXzX7dBJjcpD1bvWYR9h6YQ3w.roa
Signing time: Wed 02 Nov 2022 00:24:50 +0000
ROA not before: Wed 02 Nov 2022 00:24:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 185.185.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:35:b9:f5:81:3b:97:ec:16:89:32:e2:ae:4d:1b:10:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Nov 2 00:24:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9a957cd7edd0498dca43d5bbd6611f61e98437c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ce:de:13:e3:ff:6b:66:ab:08:61:e5:7f:f2:
57:62:9c:79:9b:8f:d5:02:b1:48:62:85:4c:e8:29:
9f:ae:b5:ea:93:19:e9:25:4d:99:be:9a:85:8a:89:
ee:06:2c:c4:c1:15:17:19:45:a4:d0:e0:4c:a9:8d:
a3:44:1a:e0:90:ab:0e:e3:5d:02:27:56:20:03:33:
00:cd:1c:3f:96:4f:cb:4b:f1:11:72:65:df:c3:e3:
6e:1c:7e:88:07:09:09:97:c3:33:99:96:8a:2b:d2:
63:0f:31:38:85:d4:29:32:f3:64:f9:ad:aa:45:b8:
a1:ea:c5:52:b2:22:f6:a1:ed:66:27:66:62:c1:c9:
44:e5:c5:c9:89:0d:15:a1:c7:be:00:f2:25:e2:42:
4b:da:cf:95:e7:0b:da:b7:6f:25:09:58:d8:f2:da:
de:56:d5:34:cb:06:8f:47:49:1c:74:84:d6:07:4c:
f6:ed:ff:f6:5f:f9:fd:fe:4e:ca:f5:fb:70:37:ea:
58:21:74:8e:a3:be:43:f7:46:82:33:05:4f:a1:85:
a4:46:eb:b9:98:4a:1c:51:d1:a4:50:79:39:25:c4:
23:8a:e6:8a:19:8e:7f:06:63:64:be:7d:9e:05:84:
91:78:e3:4b:06:4f:ce:b6:86:2a:96:97:1d:97:4f:
56:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:A9:57:CD:7E:DD:04:98:DC:A4:3D:5B:BD:66:11:F6:1E:98:43:7C
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/2alXzX7dBJjcpD1bvWYR9h6YQ3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.43.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:95:ce:05:a0:9f:77:e5:6c:19:7e:cd:8a:eb:8c:6c:52:b2:
8a:8d:8b:49:28:b4:c0:23:a0:d5:db:a7:09:b6:f3:94:62:ac:
b2:a2:1d:ba:95:b5:5e:69:ee:fd:40:11:65:63:89:e2:d9:b9:
c0:14:54:ca:e4:8a:e0:69:c0:a7:e7:d7:50:83:1a:b7:14:9b:
57:ce:55:54:d5:df:66:15:98:e0:3b:a3:e4:82:e9:58:d0:9a:
9c:94:ce:16:13:c9:af:8c:73:27:3c:5c:67:ee:fb:36:90:ce:
28:1b:e1:67:93:db:cb:75:a8:41:01:88:50:7c:9b:93:6a:04:
98:59:24:62:85:90:30:58:ac:d0:4b:01:85:03:6b:5a:d1:fb:
a8:26:1d:dc:37:17:52:ed:5b:da:37:b3:af:e5:98:ba:e3:33:
79:e3:ef:f5:27:49:40:16:26:5e:2b:0a:cf:6b:ea:00:bf:cd:
92:5b:98:de:e1:68:c2:5c:b8:f3:8c:96:7b:2d:31:5a:31:61:
af:9b:21:6e:02:41:08:c2:e2:cc:dd:14:91:6e:38:41:77:f6:
00:3e:b2:8d:61:76:81:0b:d3:67:7e:c9:16:5a:1e:af:8b:fb:
ac:d5:5e:4d:fb:5e:c6:c8:67:bf:a4:44:a4:a4:a8:4d:f3:68:
05:70:67:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:48 2024 by rpki-client on console-fra.rpki-client.org