Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/Kd0zaNk88OcgpzASo8RO1_dIWRg.roa
File: Kd0zaNk88OcgpzASo8RO1_dIWRg.roa (raw, json)
Hash identifier: 8t2ryZycb6uXNVGuwZd4nlA+si1dBvBu5Peil9ZyynQ=
Subject key identifier: 29:DD:33:68:D9:3C:F0:E7:20:A7:30:12:A3:C4:4E:D7:F7:48:59:18
Certificate issuer: /CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Certificate serial: 0184F8900C65D65F8A7BA3AD40839DAD684A
Authority key identifier: C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/Kd0zaNk88OcgpzASo8RO1_dIWRg.roa
Signing time: Fri 09 Dec 2022 20:25:00 +0000
ROA not before: Fri 09 Dec 2022 20:25:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203511
IP address blocks: 185.250.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f8:90:0c:65:d6:5f:8a:7b:a3:ad:40:83:9d:ad:68:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Validity
Not Before: Dec 9 20:25:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29dd3368d93cf0e720a73012a3c44ed7f7485918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:f4:d8:d0:7b:fb:5a:0c:47:4d:d5:5f:23:32:
5d:09:76:56:17:e4:ab:c4:8a:bd:b3:01:e2:9e:fc:
d3:05:63:5e:0e:37:77:16:4b:50:e0:c6:5b:a9:6f:
ad:5e:3b:fb:23:55:d2:82:94:11:53:a7:d2:3a:2b:
da:a3:72:1d:e5:74:43:04:43:7e:df:e1:5e:b3:c4:
bd:28:60:d2:17:f9:ef:a7:72:9e:a0:45:27:51:e4:
d2:c9:3b:8e:72:e0:1c:42:93:ba:0f:8e:ee:88:bc:
0b:10:be:86:07:7c:47:9d:0c:89:f9:66:6b:e3:6b:
6c:b1:e3:d7:49:38:2d:7f:d2:2d:aa:1c:11:23:dd:
06:56:f8:07:8f:af:7f:3d:c6:6e:39:2d:1b:cd:3e:
c7:d2:1e:3b:82:7c:bb:cc:72:e5:8d:1a:42:42:bb:
93:7d:3d:f6:3d:28:03:6d:b2:b0:c0:3b:01:8a:b4:
70:db:13:5a:8d:49:98:3e:3e:6d:ab:84:0e:61:e8:
8b:9c:3f:eb:b8:84:c9:92:d0:06:fa:12:cb:b9:d5:
c2:35:a5:9d:04:5d:54:55:ed:08:b3:5f:59:6e:63:
be:ee:9c:95:0f:9f:8a:ad:00:ac:2d:60:67:81:3d:
39:ad:26:9c:01:b0:dd:91:8e:11:0f:15:9a:99:58:
cb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DD:33:68:D9:3C:F0:E7:20:A7:30:12:A3:C4:4E:D7:F7:48:59:18
X509v3 Authority Key Identifier:
keyid:C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/Kd0zaNk88OcgpzASo8RO1_dIWRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/wtKsHXyezPVli4jxb2E9ez6OjHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.241.0/24
Signature Algorithm: sha256WithRSAEncryption
48:4b:19:5e:3e:1f:20:a8:c6:a8:3b:06:ce:46:66:c1:7e:41:
da:87:5c:88:ff:55:72:95:32:99:c4:80:23:ea:1b:42:eb:35:
e9:3b:65:f9:ad:69:76:d6:ef:d1:92:94:a3:b3:32:2e:c6:ac:
eb:a1:6b:c7:41:93:3c:1d:ce:4a:ac:d1:b3:5d:d7:e6:b3:e8:
43:62:ad:5c:3c:13:b1:3f:58:59:5b:38:54:cb:56:5e:3f:25:
14:7f:52:18:6c:0e:dc:4b:b8:65:eb:85:7b:35:02:ab:51:75:
18:f5:47:af:3d:b8:ba:8c:1b:88:13:4e:e3:2b:8b:92:df:ca:
a0:22:57:94:b8:ca:47:1e:ee:e1:60:ab:fd:d2:9e:31:b7:92:
45:fc:5a:18:e9:c2:1c:df:84:f5:65:ed:01:07:e0:a7:f2:f9:
9c:d5:e6:d0:9f:2f:f2:e1:c4:dc:45:ec:d2:d2:6d:08:c6:b6:
b6:11:39:73:43:e2:0c:6f:c6:a8:99:06:1c:20:00:98:5d:63:
34:bf:3f:2e:b6:1d:63:ac:ef:c5:96:c9:7e:35:a5:38:43:47:
d9:3c:29:09:f2:53:72:01:c2:fa:97:16:0e:52:87:9c:1f:83:
7b:44:e1:39:81:b5:b6:a1:0f:0c:cd:e6:bd:c7:5f:8a:bd:09:
64:bb:27:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:47 2024 by rpki-client on console-ams.rpki-client.org