Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/pDRB5KnEFurYIF9enAxZtduCX4Q.roa
File: pDRB5KnEFurYIF9enAxZtduCX4Q.roa (raw, json)
Hash identifier: Z4wJKmI5sZiAD5kDF3EEffldDZo5tcpvqw9glvM6gCU=
Subject key identifier: A4:34:41:E4:A9:C4:16:EA:D8:20:5F:5E:9C:0C:59:B5:DB:82:5F:84
Certificate issuer: /CN=9917f777e71ac34122edb35edd60cf14d75b9ef6
Certificate serial: 0183B7CB0E600C75687B35D3FF3A93D5E0E9
Authority key identifier: 99:17:F7:77:E7:1A:C3:41:22:ED:B3:5E:DD:60:CF:14:D7:5B:9E:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRf3d-caw0Ei7bNe3WDPFNdbnvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/pDRB5KnEFurYIF9enAxZtduCX4Q.roa
Signing time: Sat 08 Oct 2022 13:31:21 +0000
ROA not before: Sat 08 Oct 2022 13:31:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209638
IP address blocks: 185.178.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b7:cb:0e:60:0c:75:68:7b:35:d3:ff:3a:93:d5:e0:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9917f777e71ac34122edb35edd60cf14d75b9ef6
Validity
Not Before: Oct 8 13:31:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a43441e4a9c416ead8205f5e9c0c59b5db825f84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:60:93:38:00:ad:b5:97:1a:b7:05:81:eb:7c:
09:89:2a:c9:02:a8:3d:06:86:95:aa:11:b7:65:e6:
9b:59:4e:cf:9c:62:64:49:3f:68:69:b0:64:63:c2:
52:cd:ce:e2:69:c6:c3:82:2d:53:33:85:6b:88:be:
32:05:d1:14:46:e6:a3:4d:90:cb:66:04:29:1e:97:
5f:cd:3c:4b:ba:3f:2b:61:0e:1d:22:a6:fc:83:21:
fc:4d:17:dc:f6:16:39:ec:7a:66:e0:4a:d6:66:fe:
49:75:67:1f:fc:23:c1:b9:cf:55:9d:3b:74:48:75:
a9:f8:8d:02:1d:20:ef:4e:96:9f:f3:cd:c7:12:07:
54:8f:58:1f:1e:89:7e:2b:51:69:38:5b:81:c6:f1:
8a:f7:17:84:3b:73:91:34:9b:e9:93:7a:5b:66:f6:
4e:3b:86:a9:7a:c6:a6:e8:a5:b7:95:66:37:ab:56:
28:a0:77:91:91:b3:a4:14:6f:69:db:03:81:87:bf:
e4:89:87:b0:14:09:7b:91:b1:ad:27:f5:ae:af:21:
cb:f5:12:dc:11:05:37:f7:2b:82:14:5a:fe:55:30:
88:8a:c2:dd:5b:4c:c2:c3:a3:8d:f9:41:b4:6c:50:
d6:e8:ae:5d:f1:7e:58:72:f1:95:7e:62:71:5f:65:
cd:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:34:41:E4:A9:C4:16:EA:D8:20:5F:5E:9C:0C:59:B5:DB:82:5F:84
X509v3 Authority Key Identifier:
keyid:99:17:F7:77:E7:1A:C3:41:22:ED:B3:5E:DD:60:CF:14:D7:5B:9E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRf3d-caw0Ei7bNe3WDPFNdbnvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/pDRB5KnEFurYIF9enAxZtduCX4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/mRf3d-caw0Ei7bNe3WDPFNdbnvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.107.0/24
Signature Algorithm: sha256WithRSAEncryption
16:fe:c4:27:e5:09:e5:74:80:4a:35:e9:0f:cb:e3:07:70:14:
61:7f:5d:6f:f5:92:ae:51:9c:de:53:7e:14:a0:f9:9c:32:f6:
b9:d7:4f:5c:e0:32:2d:0a:5c:ca:06:b7:40:8a:96:16:b5:e3:
81:76:52:e6:5d:0e:67:f3:77:e6:b0:00:2b:ab:0a:07:5e:01:
aa:87:11:8f:cd:f1:73:76:7b:8b:5d:45:ca:d5:05:7a:83:c7:
22:5e:9c:84:6f:0e:33:44:0a:31:81:0e:1a:b2:e0:ef:62:6a:
e2:68:eb:b7:93:bb:d0:52:70:fd:38:c6:7b:c9:20:de:68:9b:
38:8e:b4:2b:6d:73:35:d7:7e:68:8a:10:45:ad:44:99:5e:d0:
cb:b3:3d:cc:d5:a7:75:86:6d:30:c5:d0:ff:1a:1b:10:91:4a:
69:c6:eb:e5:4d:5f:12:1b:16:28:4d:ed:a2:04:67:e9:b8:c6:
d6:26:03:bd:03:a4:c7:ca:ea:2a:1a:d7:ab:e2:77:fe:be:6d:
3f:bf:30:77:50:d3:e4:e0:43:16:04:be:60:6f:83:b0:39:1f:
b5:66:c7:bb:cd:bc:10:71:d1:55:19:14:0f:87:b9:84:20:e9:
44:97:d4:a1:cc:86:94:28:9d:d2:49:c4:a5:26:c3:0c:18:9e:
b3:27:18:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-ams.rpki-client.org