Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/cDQ2ETjJgOhsTmxFc7FDtj0MXWY.roa
File: cDQ2ETjJgOhsTmxFc7FDtj0MXWY.roa (raw, json)
Hash identifier: QovkuL0UePNPHE92pzUTKpmofogFW7uwWe2spkgZ31Q=
Subject key identifier: 70:34:36:11:38:C9:80:E8:6C:4E:6C:45:73:B1:43:B6:3D:0C:5D:66
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 01836A5C78D0E7EFE185FC5BD5006B0778A2
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/cDQ2ETjJgOhsTmxFc7FDtj0MXWY.roa
Signing time: Fri 23 Sep 2022 12:39:48 +0000
ROA not before: Fri 23 Sep 2022 12:39:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213030
IP address blocks: 185.235.165.0/24 maxlen: 24
185.245.0.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:6a:5c:78:d0:e7:ef:e1:85:fc:5b:d5:00:6b:07:78:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Sep 23 12:39:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7034361138c980e86c4e6c4573b143b63d0c5d66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:49:35:10:15:51:f3:34:18:7d:9d:27:b1:6a:
6e:fe:76:84:ef:59:e3:fa:cc:3f:f8:47:37:de:b4:
d5:e0:fd:61:a3:57:00:c3:dc:6d:76:be:50:4c:32:
64:6a:00:24:53:16:bf:e6:d9:d0:7c:97:fc:54:a0:
90:17:d1:6e:2c:9c:6e:9a:08:bf:77:32:ef:f8:c6:
21:a6:c6:76:3f:13:66:25:2c:34:1c:72:d5:b7:43:
c7:b3:94:c1:21:f5:aa:e4:fd:4d:f3:ed:3f:6a:8f:
aa:f2:2e:99:50:6c:92:a3:f2:b6:1c:51:29:9b:a9:
76:41:5a:52:d3:f0:e0:cc:df:f4:45:55:1a:32:50:
5a:bc:78:a2:c8:d0:85:e9:57:94:53:9a:eb:57:56:
ed:01:23:25:bc:7b:16:86:1d:28:ec:9c:1e:0f:78:
93:76:cd:24:c4:e6:3a:95:fd:f7:f5:3d:5f:c7:e3:
82:3f:6a:25:5b:0d:a8:ea:09:c5:3f:eb:a7:32:6e:
1f:fe:95:f0:71:85:14:6b:2e:0a:0f:da:a5:d2:2c:
8e:cc:f7:70:e9:aa:b2:95:83:68:37:b5:09:17:b0:
81:07:7f:fd:b2:21:3c:28:00:05:3a:5e:54:bd:bd:
22:94:86:56:fc:98:91:79:05:97:c9:a8:97:63:02:
5d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:34:36:11:38:C9:80:E8:6C:4E:6C:45:73:B1:43:B6:3D:0C:5D:66
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/cDQ2ETjJgOhsTmxFc7FDtj0MXWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.165.0/24
185.245.0.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:2f:d4:d6:f9:3f:92:28:87:39:9a:1c:00:54:65:d4:16:0c:
1c:88:6d:04:70:bf:a4:80:37:6a:8d:5c:98:cc:35:ee:cc:26:
58:9c:53:d3:96:35:4d:0c:2a:a1:1e:da:df:ec:a3:fc:09:cd:
01:cf:c2:74:1a:e6:36:5b:83:5c:ee:df:df:60:c3:c7:b0:98:
ea:bd:ee:f6:7c:17:ca:0b:17:e8:0b:a4:62:a3:91:a7:2d:84:
98:ea:54:25:9d:7a:7b:35:e6:92:73:cf:7f:bc:37:5e:78:6d:
95:b8:af:4d:74:d0:fa:88:df:ab:c0:ff:70:29:3c:44:15:d7:
08:7d:2d:d0:1e:f2:0a:ce:da:b6:e3:b6:72:96:8d:7b:5b:65:
f0:f8:ca:70:58:40:14:be:98:8a:0e:5e:84:4a:d4:6c:71:58:
f0:8a:1d:8f:ae:d7:f4:d2:78:29:bf:84:a2:f0:c8:87:38:b1:
26:f9:1d:f8:87:cc:09:54:f4:8a:0e:79:37:0d:8d:86:f0:10:
b3:7a:e2:16:73:4f:2d:12:0c:5c:6d:6a:dd:58:04:b5:5b:6c:
5b:b4:11:a5:fb:7d:f5:e0:1b:37:9e:8f:53:a1:de:11:e9:80:
b5:5a:8c:60:6c:f9:db:2f:77:5d:e8:12:2a:8d:aa:52:b9:b6:
4c:cf:3d:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org