Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/1-VhMiJ5vnRl7lS9ermtBeMwcDWk.roa
File: 1-VhMiJ5vnRl7lS9ermtBeMwcDWk.roa (raw, json)
Hash identifier: s77J6/PdS6KN7e7e49+OPBDwovyzVDLc9IHI5n59oUo=
Subject key identifier: F9:58:4C:88:9E:6F:9D:19:7B:95:2F:5E:AE:6B:41:78:CC:1C:0D:69
Certificate issuer: /CN=644cdbae84b26a8484b10c00ebfdfbcb4990c157
Certificate serial: 0243B531
Authority key identifier: 64:4C:DB:AE:84:B2:6A:84:84:B1:0C:00:EB:FD:FB:CB:49:90:C1:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZEzbroSyaoSEsQwA6_37y0mQwVc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/1-VhMiJ5vnRl7lS9ermtBeMwcDWk.roa
Signing time: Sat 01 Jan 2022 12:54:04 +0000
ROA not before: Sat 01 Jan 2022 12:54:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209920
IP address blocks: 185.244.17.0/24 maxlen: 24
185.244.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37991729 (0x243b531)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=644cdbae84b26a8484b10c00ebfdfbcb4990c157
Validity
Not Before: Jan 1 12:54:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9584c889e6f9d197b952f5eae6b4178cc1c0d69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e9:cd:a6:22:22:f8:2d:34:1e:90:8b:f8:d5:
0c:b6:de:94:7d:29:df:c6:c0:58:23:42:0c:63:11:
4d:6d:87:8d:8a:b1:e3:f5:6a:7d:a9:82:41:01:4b:
6f:3c:54:9d:57:5e:e8:02:b4:e6:aa:21:6d:59:05:
42:0a:84:75:00:cf:7f:70:79:0b:85:1b:8d:66:2a:
f6:9f:7e:6a:48:ba:d3:2f:dd:a7:20:83:bf:40:71:
14:04:6d:1f:90:68:30:83:5e:18:63:fe:eb:4e:38:
fb:64:a1:ac:61:43:9d:6c:88:f4:a6:f0:17:79:af:
09:db:08:e1:9e:07:49:3d:b8:9d:04:45:ee:aa:e2:
54:0d:bc:58:8f:30:f5:b3:a3:da:f0:7f:9a:0e:94:
67:4a:00:11:d8:2c:f8:7b:9f:97:29:e4:62:cf:14:
3b:13:ad:b7:63:4d:6c:18:70:cd:82:8a:cf:8c:cd:
5a:0a:0b:b4:8f:c9:a3:1c:9d:58:7c:bc:fc:4b:01:
a8:b5:50:35:d0:ae:91:7c:3d:21:6c:a9:68:16:1e:
61:24:03:c6:bb:5d:90:39:be:a7:78:e9:d5:ee:14:
21:91:56:87:42:48:cc:30:34:4f:f2:40:cc:c8:b2:
e1:ad:07:7a:65:63:4f:5f:0b:ee:92:5b:82:ec:bb:
07:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:58:4C:88:9E:6F:9D:19:7B:95:2F:5E:AE:6B:41:78:CC:1C:0D:69
X509v3 Authority Key Identifier:
keyid:64:4C:DB:AE:84:B2:6A:84:84:B1:0C:00:EB:FD:FB:CB:49:90:C1:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZEzbroSyaoSEsQwA6_37y0mQwVc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/1-VhMiJ5vnRl7lS9ermtBeMwcDWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/ZEzbroSyaoSEsQwA6_37y0mQwVc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.16.0/23
Signature Algorithm: sha256WithRSAEncryption
37:be:a8:6f:f1:ef:63:c8:6c:e7:ff:ce:e6:14:97:d5:f1:ad:
83:92:fb:de:cd:b0:63:4f:17:4e:2f:59:2d:08:3d:6b:d5:90:
ea:2b:15:e7:95:2d:e9:73:37:e3:8d:9a:72:05:49:b9:3f:e1:
97:ef:5a:99:16:b7:36:13:0f:93:94:d5:64:e3:06:de:15:e6:
57:e2:6a:c8:52:3c:27:d5:6a:ea:ea:81:b8:22:92:5b:01:3c:
dd:4a:8b:af:b2:12:ac:f7:d4:f4:5d:1f:b5:4a:77:09:a9:fb:
86:8a:d3:4c:32:05:27:77:4c:12:10:97:d9:d0:e0:b5:f2:dd:
78:4f:5c:5a:83:f1:2a:24:4f:a1:48:60:95:37:fd:96:34:d9:
e3:43:52:36:39:6b:e4:58:0a:35:d7:a8:32:82:ef:c2:3e:ee:
d2:56:53:8d:37:74:f1:0e:3f:2f:f4:c6:ac:39:58:45:fd:b3:
ac:e2:49:6c:0d:9b:ef:8f:82:d1:20:2e:b6:36:60:61:04:23:
ff:55:c6:23:5d:96:97:3d:b9:09:09:15:5b:ff:85:37:d6:62:
48:ff:f6:0b:d0:d0:65:a5:e9:59:a3:0e:6a:97:4c:bb:11:a2:
bb:f8:32:39:d2:6c:b3:5f:a9:76:88:fa:da:85:86:94:30:f9:
d0:b1:8c:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org