Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/d9Xng8mvjJPJ_FynoRsJmq3iXVE.roa
File: d9Xng8mvjJPJ_FynoRsJmq3iXVE.roa (raw, json)
Hash identifier: S62Dw/jsA0uaEt+5PuUAQW4kI3sDIi0nJk/5vofgXps=
Subject key identifier: 77:D5:E7:83:C9:AF:8C:93:C9:FC:5C:A7:A1:1B:09:9A:AD:E2:5D:51
Certificate issuer: /CN=345ae646ea34ad2688aca2fdd1a6f3340356495e
Certificate serial: 144056B0
Authority key identifier: 34:5A:E6:46:EA:34:AD:26:88:AC:A2:FD:D1:A6:F3:34:03:56:49:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NFrmRuo0rSaIrKL90abzNANWSV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/d9Xng8mvjJPJ_FynoRsJmq3iXVE.roa
Signing time: Wed 16 Feb 2022 09:44:28 +0000
ROA not before: Wed 16 Feb 2022 09:44:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.120.172.0/24 maxlen: 24
185.120.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 339760816 (0x144056b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=345ae646ea34ad2688aca2fdd1a6f3340356495e
Validity
Not Before: Feb 16 09:44:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77d5e783c9af8c93c9fc5ca7a11b099aade25d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e5:0f:7b:64:2e:a7:da:fb:25:5b:18:41:e8:
5a:79:74:88:46:fc:af:41:f1:52:95:83:b4:72:f8:
45:e8:55:5c:c2:06:fb:07:d1:ee:cd:40:9a:87:e8:
35:84:da:cf:f7:4b:31:33:e8:be:f8:51:d5:d1:2f:
31:cb:17:96:00:0e:70:50:de:0f:65:48:cc:9b:0a:
0a:b1:1c:7c:8c:2e:e7:03:61:64:29:94:51:fb:b8:
4d:39:6c:9a:31:11:0a:8f:ad:b2:c6:4c:72:ad:7d:
1b:54:e1:d6:8c:23:1e:ab:40:7b:31:4f:fd:fc:cc:
41:90:44:17:f5:52:c5:b4:f9:9c:64:9c:79:a8:1e:
b5:f8:ed:5b:6b:07:ab:5d:b6:9e:7e:a7:39:28:70:
56:20:94:65:83:4e:5a:a7:81:88:47:43:e4:79:50:
dc:98:bc:c9:73:be:7d:b1:26:da:02:1a:86:e5:c1:
25:42:d0:75:c1:77:bb:08:2a:95:b2:af:10:d2:43:
c5:b8:43:b6:a4:6f:c2:9c:f6:7c:aa:31:bf:43:bf:
ec:b6:30:54:de:3a:4c:8f:35:85:4d:24:7b:e0:65:
3c:82:f7:70:85:6d:7d:f1:22:dc:ed:bf:d2:b7:55:
b8:c4:a7:4a:6f:bd:59:cc:34:b0:05:d1:a0:8e:8d:
48:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:D5:E7:83:C9:AF:8C:93:C9:FC:5C:A7:A1:1B:09:9A:AD:E2:5D:51
X509v3 Authority Key Identifier:
keyid:34:5A:E6:46:EA:34:AD:26:88:AC:A2:FD:D1:A6:F3:34:03:56:49:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NFrmRuo0rSaIrKL90abzNANWSV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/d9Xng8mvjJPJ_FynoRsJmq3iXVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/NFrmRuo0rSaIrKL90abzNANWSV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.172.0/23
Signature Algorithm: sha256WithRSAEncryption
43:4f:70:ba:30:63:c4:70:13:09:78:27:f3:e1:a4:cb:e6:4d:
b2:79:9e:c7:2a:37:74:90:85:bd:c5:25:46:a3:e7:97:c4:6a:
fe:91:f5:f4:aa:c1:18:8f:f2:cc:95:8b:a5:fb:c0:dc:cf:cf:
0d:93:0f:64:0b:98:5d:dd:bc:0b:de:58:6b:4e:07:b4:e4:29:
c3:04:4e:e5:97:1a:f1:6d:6e:ca:74:84:15:d6:bf:72:4e:67:
39:af:4d:00:10:0d:d6:d0:4d:08:fc:ef:53:4b:ee:d2:09:05:
77:4c:95:ce:02:84:33:68:1b:1b:14:79:96:11:80:cd:5a:96:
af:a8:76:4a:c0:3e:99:63:ac:e8:8a:be:f4:d7:f4:31:3e:c3:
9d:2d:2e:7e:18:0e:a0:8f:5d:9b:57:f1:78:05:9e:ab:19:3b:
78:2c:ed:b4:7d:e7:be:ea:fe:9a:9b:ef:18:f9:81:c3:fd:65:
30:b2:60:76:af:2a:4c:1d:da:db:77:df:ba:df:55:e8:eb:a0:
a4:d8:39:e6:42:c1:ec:8a:8e:79:93:f4:a9:44:ec:e0:26:e0:
67:c9:9d:2a:b9:21:45:80:62:b6:95:59:e0:1b:81:7b:85:c2:
06:1c:bb:d1:b2:15:a4:57:69:8a:da:48:cc:15:e7:d8:cc:70:
0d:51:bb:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:11 2024 by rpki-client on console-fra.rpki-client.org