Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/2ermWbVUQbMm7XflnJzQ34QAIeI.roa
File: 2ermWbVUQbMm7XflnJzQ34QAIeI.roa (raw, json)
Hash identifier: syhjWUd1KynXf01rluV7l7Tz9I65/c7FzTCQHdLqpvQ=
Subject key identifier: D9:EA:E6:59:B5:54:41:B3:26:ED:77:E5:9C:9C:D0:DF:84:00:21:E2
Certificate issuer: /CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Certificate serial: 011757
Authority key identifier: C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/2ermWbVUQbMm7XflnJzQ34QAIeI.roa
Signing time: Fri 06 May 2022 09:04:40 +0000
ROA not before: Fri 06 May 2022 09:04:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211114
IP address blocks: 185.250.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71511 (0x11757)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Validity
Not Before: May 6 09:04:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9eae659b55441b326ed77e59c9cd0df840021e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:64:73:61:aa:c9:cc:15:3a:4a:90:0e:bb:42:
93:e0:a9:93:2d:9e:5a:91:99:2d:6c:58:83:e4:03:
95:d7:e5:44:6a:c0:46:e3:51:c7:02:9d:73:a0:ec:
a9:cb:86:0e:11:88:1d:94:41:bb:66:e7:a1:a7:cc:
ac:ab:fe:93:af:9f:12:48:54:84:0e:5c:2d:f5:b3:
62:60:18:ca:b7:4a:50:b1:26:b2:1b:70:fe:be:e3:
58:b7:47:cb:a6:58:94:c6:80:2f:15:52:02:a8:2f:
2d:0c:df:75:f6:37:be:b5:d9:a6:f5:35:b2:cc:9b:
bd:17:7b:fa:47:f9:f1:44:3a:e4:db:c9:2b:fc:c0:
0f:ba:65:3f:a3:2e:c4:7e:66:ba:c2:b6:e5:3f:04:
c5:44:9b:ea:7b:00:12:41:2e:53:a1:37:5b:60:d8:
6a:f2:03:1c:f1:37:7e:b7:82:8a:09:67:b2:d8:f0:
a0:f9:28:ad:9f:c9:81:c8:97:30:2b:d4:57:da:aa:
19:91:fb:4f:7e:31:1a:50:b3:3d:15:42:6f:e2:38:
e5:93:5c:fd:cf:87:d5:7e:c2:8e:e8:c9:80:7e:03:
75:9a:49:8f:a2:45:e6:bb:43:da:d0:5a:42:78:61:
44:20:27:14:47:8d:f2:a9:71:b2:4e:57:b3:b0:5b:
ab:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:EA:E6:59:B5:54:41:B3:26:ED:77:E5:9C:9C:D0:DF:84:00:21:E2
X509v3 Authority Key Identifier:
keyid:C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/2ermWbVUQbMm7XflnJzQ34QAIeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/wtKsHXyezPVli4jxb2E9ez6OjHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.241.0/24
Signature Algorithm: sha256WithRSAEncryption
99:2f:6e:e2:aa:8c:f1:21:ba:cf:ed:c6:a6:9b:d2:1a:04:d2:
51:11:8c:07:d6:39:55:3b:b8:a4:96:ba:92:0e:9d:ac:e2:52:
dc:c4:23:e6:79:e7:bc:00:45:e3:e5:17:4f:7a:a0:50:26:bf:
e9:e1:7c:09:95:0e:89:f2:16:ec:7e:90:54:72:f1:5e:b3:00:
eb:8c:e8:1a:16:e1:ca:ff:ce:a5:b6:11:48:2a:62:d3:70:b0:
78:48:54:14:7f:28:4e:35:a2:25:4e:5b:2c:a0:bb:20:12:10:
e4:7a:9c:82:75:52:ca:36:11:f6:f7:c7:41:4e:29:51:1d:c4:
07:34:32:b3:4d:0e:03:b3:84:1c:48:66:75:a5:1c:04:9b:c3:
c3:7a:41:8a:c6:53:bf:69:a5:7c:5c:c6:fa:0f:29:b9:9c:18:
3a:a5:32:86:b5:7b:b8:d6:a7:c1:5e:7a:99:3c:5b:79:7c:6d:
2c:15:32:03:0f:cc:b0:cb:e5:64:38:86:f1:fd:5a:3c:c5:96:
cb:2d:1f:fd:77:d0:cc:89:f0:28:86:a7:7e:46:0c:af:ab:d0:
78:da:c4:4f:4e:c5:46:a2:bc:c9:d6:42:d7:20:e9:65:04:f9:
b2:4c:bb:43:48:c2:f5:93:27:f7:69:4e:a6:43:c2:9e:b3:d4:
99:de:dc:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:21 2024 by rpki-client on console-fra.rpki-client.org