Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/9k9QO0JJvFX6zHuMPNwqj1C3CAw.roa
File: 9k9QO0JJvFX6zHuMPNwqj1C3CAw.roa (raw, json)
Hash identifier: ETIVhi71B0F0Q27dO0MwEMT/5a61Xs+m5ushdRwRVS4=
Subject key identifier: F6:4F:50:3B:42:49:BC:55:FA:CC:7B:8C:3C:DC:2A:8F:50:B7:08:0C
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018837623CE8A41F00808F78DDFE379F72F3
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/9k9QO0JJvFX6zHuMPNwqj1C3CAw.roa
Signing time: Sat 20 May 2023 04:19:24 +0000
ROA not before: Sat 20 May 2023 04:19:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29066
IP address blocks: 185.233.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:37:62:3c:e8:a4:1f:00:80:8f:78:dd:fe:37:9f:72:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: May 20 04:19:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f64f503b4249bc55facc7b8c3cdc2a8f50b7080c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a6:f4:d3:1b:ef:08:db:55:c0:e5:bd:db:08:
89:ac:7a:db:f7:b8:3f:91:0b:7c:c3:79:7b:c0:b6:
57:06:69:b6:0c:74:15:94:de:cd:62:6e:4b:0c:7d:
2e:b9:df:cd:3a:59:73:9d:c8:09:9c:08:1a:26:69:
3c:84:b4:db:2e:91:6c:93:2b:c0:4c:39:8c:d2:8a:
24:86:30:ff:aa:a7:d4:47:91:db:6d:c4:65:f0:9d:
75:29:e6:87:9c:a8:4d:e8:62:17:7f:ce:46:e2:b4:
33:83:ea:16:a1:00:b2:6f:95:ba:90:cf:82:fd:81:
e7:45:54:0f:bf:43:33:7b:d4:23:9e:f2:fb:eb:5c:
97:ec:fb:9d:1b:43:ce:df:cc:c1:a5:e7:cf:38:e4:
1f:bd:2a:fa:01:c9:39:11:51:a1:30:7b:18:28:d0:
8e:3d:86:4b:3c:5a:55:f3:07:ea:aa:b0:94:4f:09:
d8:16:b2:58:03:d8:3a:20:f8:af:fd:27:25:eb:d0:
d7:a2:e8:c0:ac:25:f5:dc:79:b8:22:06:c9:65:61:
2b:1f:cd:a2:c7:c0:e3:0d:46:3c:0e:51:84:b9:5a:
d0:88:c4:50:1c:c6:ff:6f:b9:4c:bf:3c:bc:bf:f3:
d4:6e:a9:52:49:ed:ae:8d:3b:b7:b7:c5:ff:74:e4:
5b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:4F:50:3B:42:49:BC:55:FA:CC:7B:8C:3C:DC:2A:8F:50:B7:08:0C
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/9k9QO0JJvFX6zHuMPNwqj1C3CAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.18.0/24
Signature Algorithm: sha256WithRSAEncryption
34:ca:ba:f5:22:f9:e3:97:f3:35:75:df:98:fc:b7:29:02:7a:
49:36:73:50:0b:97:3d:cb:b4:94:bd:cd:af:5c:62:20:d7:2e:
be:9d:b6:d1:ea:25:10:ec:0f:4c:33:cb:35:11:8c:aa:51:99:
ac:d9:b8:3c:49:b6:52:e8:48:e4:ad:76:3f:83:e7:32:83:5b:
02:64:f2:09:40:90:44:64:43:64:03:9f:c9:f6:00:a2:48:6c:
b3:43:4f:cc:a5:81:ab:34:80:a9:7a:f8:6c:91:f9:98:c6:ec:
08:61:26:da:fd:8b:f3:ab:67:ff:f2:19:70:67:06:26:6b:3f:
f5:88:bb:be:8d:a6:23:d2:1a:0d:73:88:88:6b:26:e7:86:1b:
01:62:af:97:5d:e0:9f:d2:b2:18:23:b7:76:98:57:37:10:c1:
a9:88:24:65:ec:de:12:13:c3:73:ee:16:03:1a:5c:9c:f2:e7:
50:bd:00:9b:bb:e3:f4:bc:54:fa:88:20:59:d2:f7:28:5b:28:
2a:2d:54:f2:37:ea:f8:9b:b2:8f:33:f1:c0:9c:28:ea:c7:84:
9d:c3:a3:d8:69:87:ec:15:a6:90:b9:2d:9b:62:ad:4a:35:32:
7a:de:6e:1a:7e:30:ac:29:7a:75:3f:15:24:20:9f:f5:e5:fe:
f3:6e:56:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:36 2025 by rpki-client