Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/9dac2f-301e-406d-b8d0-03857ef5b387/1/1-k9TDMKxl-n71apqki-pQiwQutM.roa
File: 1-k9TDMKxl-n71apqki-pQiwQutM.roa (raw, json)
Hash identifier: GBkHL7jItB841wTqXA6JbBM7mnhyyxDxDz51jlZLoNs=
Subject key identifier: FA:4F:53:0C:C2:B1:97:E9:FB:D5:AA:6A:92:2F:A9:42:2C:10:BA:D3
Certificate issuer: /CN=b98d1f6e336a7c81351941bc0b9dea39d7d764db
Certificate serial: 03DA5B15
Authority key identifier: B9:8D:1F:6E:33:6A:7C:81:35:19:41:BC:0B:9D:EA:39:D7:D7:64:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uY0fbjNqfIE1GUG8C53qOdfXZNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/9dac2f-301e-406d-b8d0-03857ef5b387/1/1-k9TDMKxl-n71apqki-pQiwQutM.roa
Signing time: Sat 01 Jan 2022 10:02:03 +0000
ROA not before: Sat 01 Jan 2022 10:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202835
IP address blocks: 185.149.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64641813 (0x3da5b15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b98d1f6e336a7c81351941bc0b9dea39d7d764db
Validity
Not Before: Jan 1 10:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa4f530cc2b197e9fbd5aa6a922fa9422c10bad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:17:eb:76:5e:62:3e:de:a6:fa:00:35:8e:e4:
c4:cc:63:31:cf:cf:60:35:34:1b:7b:60:63:c1:4e:
9d:67:9e:b8:f8:39:12:e9:08:f3:32:10:17:19:80:
d8:8c:b6:8a:ff:51:16:c6:11:2e:ab:14:f2:08:76:
94:21:f5:fa:9a:96:55:8a:61:f8:89:7a:8a:21:be:
4a:11:ac:62:02:b9:ac:86:fd:01:e3:a5:25:07:6e:
b5:aa:05:93:6c:e3:07:bc:a7:42:b1:07:47:d5:e3:
14:8b:28:9f:ad:fb:3e:72:8d:94:a6:01:20:31:c2:
cc:9e:04:1d:dd:3e:7d:a8:20:e7:95:76:9d:2d:cb:
e7:20:05:f2:45:d9:d4:7b:be:49:03:4e:ee:fe:b5:
ad:8d:02:1c:df:89:ef:f8:a1:aa:f8:1a:63:02:18:
1f:03:0d:22:52:a5:9f:f1:90:bc:28:cf:41:05:dc:
20:35:4a:9e:21:00:2d:92:97:92:4c:77:6a:d1:17:
e2:18:06:38:9a:32:e8:d6:e7:0b:e6:2a:e2:84:f4:
c8:46:48:85:c3:fd:2d:3d:f0:40:48:a4:e1:88:c9:
65:87:dd:8d:6e:c8:8d:21:f1:ff:15:fa:67:b2:f2:
a6:9b:7d:02:58:1f:bd:e4:f4:8b:09:7c:74:2e:ac:
ea:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:4F:53:0C:C2:B1:97:E9:FB:D5:AA:6A:92:2F:A9:42:2C:10:BA:D3
X509v3 Authority Key Identifier:
keyid:B9:8D:1F:6E:33:6A:7C:81:35:19:41:BC:0B:9D:EA:39:D7:D7:64:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uY0fbjNqfIE1GUG8C53qOdfXZNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/9dac2f-301e-406d-b8d0-03857ef5b387/1/1-k9TDMKxl-n71apqki-pQiwQutM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/9dac2f-301e-406d-b8d0-03857ef5b387/1/uY0fbjNqfIE1GUG8C53qOdfXZNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.127.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:93:4a:58:e5:bd:6a:32:21:a9:ee:f9:7d:8d:9e:0e:63:e7:
4d:7d:3f:bc:48:d7:cb:05:f6:81:a2:17:d7:6a:ba:ed:64:35:
9e:9d:63:c7:c6:00:fd:0a:ab:f8:0e:f2:71:8b:a1:19:72:81:
95:88:32:79:4b:b2:dd:57:0e:5c:5a:95:91:03:8d:d3:4d:29:
fd:6f:94:3a:e4:16:5c:45:1f:5d:13:e1:63:e3:9c:63:27:91:
70:b5:a8:7b:ae:8c:06:14:0d:02:0f:8c:f0:c2:62:6b:e9:55:
65:45:87:1d:aa:7a:8e:dc:0a:53:7b:f9:be:d8:4d:1d:e7:f7:
0a:1e:2e:f4:0b:62:2a:c5:80:57:24:bf:c3:0d:e5:3d:7b:c4:
d5:51:6b:c9:ac:25:5f:2e:cc:70:1e:74:e8:9f:24:dd:fc:10:
47:82:20:6e:1b:c9:21:ef:68:ca:f1:40:1a:ed:5e:34:3f:2b:
a1:34:3a:b5:ea:a1:ab:26:1a:0b:af:fa:d2:a6:75:7b:c8:2b:
31:a0:d5:6e:2c:fd:4a:e5:b2:db:25:24:17:93:56:db:61:0a:
f3:57:19:9d:50:ac:40:e5:b9:1f:51:90:f3:4d:c4:32:3c:63:
d0:7d:cf:69:27:15:09:81:ba:33:72:17:61:a7:cf:ff:f5:9a:
db:c4:2b:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:58 2024 by rpki-client on console-ams.rpki-client.org