Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/9MyktQWEQ96APAUc2m9tLTrDH_o.roa
File: 9MyktQWEQ96APAUc2m9tLTrDH_o.roa (raw, json)
Hash identifier: 1cqTQcDNYKkDKCH5syG9iQ7RuRUSIARnWJZqYiaJefI=
Subject key identifier: F4:CC:A4:B5:05:84:43:DE:80:3C:05:1C:DA:6F:6D:2D:3A:C3:1F:FA
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0184B55BC6626E8EB88EF7ADC3DF96A5CFCA
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/9MyktQWEQ96APAUc2m9tLTrDH_o.roa
Signing time: Sat 26 Nov 2022 19:13:21 +0000
ROA not before: Sat 26 Nov 2022 19:13:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21161
IP address blocks: 185.186.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b5:5b:c6:62:6e:8e:b8:8e:f7:ad:c3:df:96:a5:cf:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Nov 26 19:13:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4cca4b5058443de803c051cda6f6d2d3ac31ffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:76:24:56:f4:9b:28:bf:c3:73:2d:5d:7d:d3:
f4:a7:b5:29:ac:8c:3d:1e:6d:3f:6a:0b:69:55:f6:
61:b2:c0:6f:a8:82:22:b8:bb:3c:51:bc:f6:71:c8:
9d:ec:4f:4b:30:53:ef:a9:dd:20:d7:85:89:43:6a:
17:04:ca:e1:cf:99:1c:89:51:ef:5e:cb:90:0d:57:
b0:b1:b2:64:59:ad:7f:98:aa:72:99:ad:de:e7:78:
27:cf:21:d0:65:11:c4:9d:79:04:43:5f:34:e1:60:
6c:95:10:b2:0a:5d:67:fe:39:f3:72:0b:5b:a5:95:
f6:ce:32:c7:a8:87:22:d9:4d:b6:aa:ad:f1:fd:60:
66:61:33:06:ff:8f:01:66:02:8c:51:a8:75:19:aa:
af:23:fd:1a:53:12:d3:54:23:fc:28:5c:9a:b9:fa:
ee:1d:26:a5:a7:8b:dc:15:07:09:d7:ba:52:3b:05:
9c:70:ac:a2:40:fa:78:d4:e6:e6:f5:2e:29:10:a0:
22:35:ce:b9:a5:0d:63:45:5c:86:0d:e9:df:0a:38:
a2:6f:b6:42:11:fb:05:b5:db:87:01:72:cc:80:52:
b4:eb:c2:7b:fa:e9:5b:58:99:1b:38:af:aa:3f:e9:
f0:9b:b6:43:df:1a:eb:8d:5b:b2:54:9c:32:19:38:
20:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:CC:A4:B5:05:84:43:DE:80:3C:05:1C:DA:6F:6D:2D:3A:C3:1F:FA
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/9MyktQWEQ96APAUc2m9tLTrDH_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.67.0/24
Signature Algorithm: sha256WithRSAEncryption
73:08:c2:60:29:bc:1e:b4:19:60:55:d9:ca:a0:14:1c:bf:33:
91:c2:2d:4a:08:bb:3b:34:69:fe:6d:29:10:9d:db:a6:48:70:
b3:b0:d7:7c:c0:5c:00:93:08:d8:13:68:7a:f7:eb:ee:bb:c9:
f4:80:39:c8:4f:69:db:be:e9:cf:2a:02:f3:7c:aa:e6:99:38:
f7:5e:e8:80:d3:c3:da:2a:83:34:36:af:62:29:a3:ed:89:07:
1f:0c:46:a8:c8:9d:bb:91:f4:ea:0d:c2:e2:a1:a8:d7:b2:85:
56:79:25:1c:ae:65:d8:4d:b4:0e:2e:e0:c6:c3:9f:16:a9:13:
2d:b7:6a:0b:6d:1f:68:57:58:5d:72:42:88:1e:19:49:66:48:
12:80:85:95:0b:f6:81:7b:63:54:26:73:9f:51:9e:24:00:4b:
e3:a6:56:00:bf:8d:fc:96:2c:69:e3:e4:16:a3:28:b4:3e:55:
11:41:a6:05:ea:45:14:fb:ef:a7:6e:e9:36:ba:9c:07:ff:00:
35:36:84:f0:df:61:c9:c3:4e:c5:98:94:2e:03:25:93:79:fb:
17:6e:61:a5:86:2f:a5:4c:ba:d5:2c:89:29:e2:91:40:33:50:
6f:e8:46:7c:16:6a:72:25:16:50:8f:0f:52:d5:46:b9:98:de:
e3:9f:f2:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:38 2023 by rpki-client on console-fra.rpki-client.org