Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/SkAOvYweMN9N6Zci7hYdhjzapG0.roa
File: SkAOvYweMN9N6Zci7hYdhjzapG0.roa (raw, json)
Hash identifier: TuaiIxMUlNgBxUU7nUjW2RJqtb0y86aQRLyEK1pxNlw=
Subject key identifier: 4A:40:0E:BD:8C:1E:30:DF:4D:E9:97:22:EE:16:1D:86:3C:DA:A4:6D
Certificate issuer: /CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Certificate serial: 48E71C
Authority key identifier: 77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/SkAOvYweMN9N6Zci7hYdhjzapG0.roa
Signing time: Thu 10 Mar 2022 16:19:26 +0000
ROA not before: Thu 10 Mar 2022 16:19:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7473
IP address blocks: 185.84.218.0/24 maxlen: 24
193.103.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4777756 (0x48e71c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Validity
Not Before: Mar 10 16:19:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a400ebd8c1e30df4de99722ee161d863cdaa46d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:19:e8:17:a6:ba:0d:14:34:9e:7e:20:20:60:
a5:2e:ab:ea:55:ec:1a:6b:7a:01:82:d5:4e:c8:74:
ac:13:46:dd:a7:22:0b:3f:92:59:4d:cb:f9:0b:f9:
1f:2b:61:10:50:f0:a3:06:36:fb:0b:c9:3b:18:d2:
f9:90:32:77:0b:f5:24:29:ad:0f:ae:2c:82:2a:68:
25:e6:a5:b9:57:2f:99:01:b0:2f:bd:b7:a5:f3:f9:
ce:b4:9b:2f:42:1d:79:55:e7:07:09:e3:71:9c:c7:
01:a6:3d:7a:01:a6:d0:2c:f2:ee:d8:9d:95:05:6e:
b1:a2:47:64:4d:76:31:82:62:4a:35:b6:38:58:7e:
40:0c:76:44:88:89:cf:ef:5c:26:d2:a8:b6:8f:8f:
ff:91:8a:0a:9c:5a:0c:e6:c3:3c:3f:66:5d:c2:37:
49:fb:91:dc:c2:82:38:e3:3d:26:ea:fe:09:65:7a:
2f:e7:ea:6e:82:09:98:1b:81:a2:56:8c:f0:70:ee:
1d:24:d0:ed:dd:9b:e2:c9:33:a7:1b:40:77:da:30:
e3:46:27:78:78:7a:cd:90:2c:3f:c0:e9:79:a2:52:
33:78:da:4c:3a:8c:a1:50:09:8c:fc:7c:e6:4e:28:
1d:27:1f:1b:ab:7f:54:87:5a:72:79:e9:34:ef:23:
7c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:40:0E:BD:8C:1E:30:DF:4D:E9:97:22:EE:16:1D:86:3C:DA:A4:6D
X509v3 Authority Key Identifier:
keyid:77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/SkAOvYweMN9N6Zci7hYdhjzapG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/d-2o9yamm1BN6ZSUOwpfIwjCqWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.218.0/24
193.103.148.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:16:c2:fb:9e:4f:0b:42:9e:d5:ff:78:c5:ce:41:74:ff:c0:
77:ad:d8:4c:6e:ea:de:91:d8:bd:e1:8d:3d:be:9e:64:17:4d:
83:15:9e:90:ad:95:b6:0f:ea:28:4a:ed:7b:a8:b1:6f:95:44:
0d:d4:ce:66:94:42:92:7f:a8:a7:f0:7c:69:6e:4f:18:64:1c:
7a:c1:cc:cb:87:cc:12:df:d1:18:1d:d2:40:76:94:6b:ed:19:
ba:38:c5:cd:a9:84:27:b8:bb:dd:7b:d1:0a:6e:48:2a:0e:c6:
e2:6c:fe:5a:cf:be:bc:5f:f7:81:9e:31:9e:5e:0a:1e:d7:27:
e1:2b:d0:1d:70:58:15:6f:a9:42:10:fe:9a:f7:69:c3:d8:62:
cd:46:17:31:a7:fa:d7:b2:b3:6b:8b:4e:7b:e1:7b:5c:3d:9d:
8f:a7:04:dd:7a:54:23:72:be:17:ec:60:d5:26:a0:52:3c:56:
b5:9b:1c:b1:bc:44:e1:38:3a:31:1e:1c:d0:95:fe:55:89:a8:
21:41:3a:e2:8c:39:55:13:5e:54:7d:5c:89:09:06:3d:8a:a6:
fe:85:a4:fc:31:b0:fa:30:56:c6:a0:94:ba:92:1e:be:03:40:
6d:0b:8b:5e:49:a6:7c:ec:36:09:3f:d0:4d:a2:7a:cf:37:7a:
0e:48:49:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:56 2024 by rpki-client on console-ams.rpki-client.org