Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/257tjC9jHVAxraWSxAq3bS_osUY.roa
File: 257tjC9jHVAxraWSxAq3bS_osUY.roa (raw, json)
Hash identifier: i9VkbAKkY2/6D84VT9Tuhu1GARPeRU45CBkkVIjlZe8=
Subject key identifier: DB:9E:ED:8C:2F:63:1D:50:31:AD:A5:92:C4:0A:B7:6D:2F:E8:B1:46
Certificate issuer: /CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Certificate serial: 01CE5676
Authority key identifier: DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/257tjC9jHVAxraWSxAq3bS_osUY.roa
Signing time: Sat 01 Jan 2022 03:59:21 +0000
ROA not before: Sat 01 Jan 2022 03:59:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204229
IP address blocks: 185.241.118.0/23 maxlen: 23
185.241.116.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30299766 (0x1ce5676)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Validity
Not Before: Jan 1 03:59:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db9eed8c2f631d5031ada592c40ab76d2fe8b146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:40:2f:73:56:03:a7:f3:32:36:33:08:b9:12:
1d:d4:65:7c:7f:ab:7d:21:69:54:bf:e9:04:03:cf:
17:4f:57:c0:47:7e:4a:ee:ed:cf:ba:d3:d3:79:47:
a7:d5:dc:15:89:dc:28:ae:21:70:03:1e:82:be:55:
fa:f7:ac:f6:a6:22:86:b4:32:2b:21:81:8d:b0:f1:
88:9d:8f:91:04:21:d2:3d:5f:ee:56:b7:a9:2d:14:
83:a6:86:27:ae:17:60:5c:4a:03:c0:76:2a:df:62:
93:91:61:4b:18:b1:93:99:b1:c1:dc:b2:04:6b:a2:
42:ed:68:da:95:6a:4a:75:a8:2a:e8:ca:c0:8c:59:
72:47:2e:97:d2:0d:b0:bc:d3:58:52:90:d2:21:78:
45:09:f9:45:3c:90:e3:92:cf:5a:d0:c9:27:14:6e:
dd:da:4a:ff:c5:91:cd:e9:76:08:ce:fc:02:62:bf:
27:b4:f6:e7:8b:5f:06:de:47:c8:08:b1:ee:b1:19:
52:f8:69:d3:83:53:82:ff:d5:52:27:08:6d:86:3e:
4e:6a:a3:35:31:d3:20:1c:94:2b:2a:3d:ab:b9:a5:
40:83:eb:a2:f0:3f:18:73:3c:96:f6:b6:c8:2e:99:
85:68:a4:7d:6e:e4:3f:1f:05:6d:f6:a5:f9:78:6a:
45:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:9E:ED:8C:2F:63:1D:50:31:AD:A5:92:C4:0A:B7:6D:2F:E8:B1:46
X509v3 Authority Key Identifier:
keyid:DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/257tjC9jHVAxraWSxAq3bS_osUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/3b5uCtrou0eDk6qxdbY4ZEx0zLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.116.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:0f:ca:e2:66:66:5b:97:92:f7:95:e0:eb:e5:8d:24:53:33:
ee:9a:0d:64:72:3e:1c:8e:50:dc:ae:aa:c9:2b:22:1c:d2:c8:
8a:f4:40:f1:1c:3c:21:8e:71:7c:00:fb:a7:c4:81:99:45:ef:
72:3c:52:fa:31:bb:2b:1c:0e:c6:ef:49:dd:5f:de:67:5f:95:
b5:b9:ac:c2:5d:3c:99:54:d9:82:56:c0:04:5d:70:36:ba:fc:
76:4f:59:ea:fa:32:5a:b7:6f:34:d7:af:4a:a3:e7:57:3c:73:
62:67:90:f1:15:3c:25:70:d3:74:d2:88:4d:1c:38:70:fc:70:
72:40:02:0a:21:91:42:5f:13:fe:1d:47:49:1a:48:77:67:da:
17:c4:55:a3:d9:c7:49:0e:9c:51:87:6e:08:c3:74:c7:f2:78:
15:c4:e6:c0:82:00:0c:4b:93:17:de:b1:cf:38:21:46:aa:88:
bc:86:90:e1:71:10:a2:de:10:a5:bf:f2:b8:22:cf:a1:a2:a1:
81:45:e9:63:ba:f2:15:02:75:ef:de:0c:62:60:76:cf:ba:e0:
bf:a0:1e:0d:61:c7:ce:a2:07:fc:6e:e7:61:d4:c1:c8:cb:d3:
18:86:71:9d:fc:2a:e0:5b:6a:3d:00:f2:b1:f6:f2:1d:60:0a:
d7:44:0b:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:00 2024 by rpki-client on console-ams.rpki-client.org