Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/y9wJTUisRW2_p_ZQJCitzEgp4p4.roa
File: y9wJTUisRW2_p_ZQJCitzEgp4p4.roa (raw, json)
Hash identifier: fI8aM78VgtePjTqjx0qZJ9iX4qVGInMgZeTLyjpedN4=
Subject key identifier: CB:DC:09:4D:48:AC:45:6D:BF:A7:F6:50:24:28:AD:CC:48:29:E2:9E
Certificate issuer: /CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Certificate serial: 018202EAF9491A59C2F8B89F0DFB78059E56
Authority key identifier: C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/y9wJTUisRW2_p_ZQJCitzEgp4p4.roa
Signing time: Fri 15 Jul 2022 17:32:09 +0000
ROA not before: Fri 15 Jul 2022 17:32:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44547
IP address blocks: 185.250.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:02:ea:f9:49:1a:59:c2:f8:b8:9f:0d:fb:78:05:9e:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Validity
Not Before: Jul 15 17:32:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbdc094d48ac456dbfa7f6502428adcc4829e29e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:46:3e:26:62:bf:1f:b1:01:be:a8:4d:15:18:
00:32:49:29:6a:62:be:75:f8:27:fe:2a:0b:a2:98:
95:09:9a:73:e0:c0:51:53:1c:80:eb:b2:78:79:ad:
43:aa:f0:fc:da:cd:a4:6c:0a:9e:b8:d4:2b:3f:83:
91:9e:7b:f4:fa:76:69:68:dc:fc:2d:83:1a:48:0a:
c5:a9:b0:55:19:0e:b5:cb:3f:d9:73:16:47:2f:4e:
1c:22:96:42:df:5b:39:e2:68:bb:03:f4:19:b9:1b:
16:5f:ce:fb:63:08:a2:21:b6:ef:b4:9d:66:2a:fe:
38:7b:43:bb:27:5f:17:7e:d8:59:b4:81:8e:c6:03:
af:29:e3:2d:cf:5f:90:50:93:3b:84:95:35:d5:79:
73:f5:69:4d:f2:d0:95:77:94:93:47:6d:3c:d2:1d:
6f:11:15:3f:dc:4b:a1:30:02:ad:4b:4d:c4:14:29:
39:88:96:50:d6:1b:b6:5f:a7:99:5e:a1:2c:cc:b6:
04:db:8b:c2:17:e8:5c:dd:0f:f6:5c:72:03:58:88:
ae:c5:ee:bc:86:e2:9d:94:c7:5e:25:dc:d4:2f:22:
58:a3:88:6a:ab:d0:f8:e4:82:27:dd:87:94:39:41:
78:2f:55:95:98:02:6e:5d:db:f9:9f:e4:10:95:b7:
31:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:DC:09:4D:48:AC:45:6D:BF:A7:F6:50:24:28:AD:CC:48:29:E2:9E
X509v3 Authority Key Identifier:
keyid:C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/y9wJTUisRW2_p_ZQJCitzEgp4p4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/wtKsHXyezPVli4jxb2E9ez6OjHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.241.0/24
Signature Algorithm: sha256WithRSAEncryption
30:5d:33:cb:a8:67:02:f4:08:c4:9d:1d:ba:a5:db:19:19:f9:
3f:7d:f8:35:ea:6c:e4:f8:a4:b2:e8:4b:50:19:e4:8b:91:9d:
4e:32:00:92:61:05:29:24:c8:e9:61:be:b6:09:6e:7e:e9:a6:
60:42:57:12:4e:5c:75:9e:8a:ff:8c:c2:7e:b5:4a:13:3a:46:
e2:e9:cf:0c:77:e3:b8:cf:4c:e4:3f:38:83:19:42:48:96:99:
3a:43:72:94:cf:2c:b7:2c:fa:17:ae:eb:fd:6a:0c:9a:b2:ff:
67:f9:c8:df:6f:a1:5d:dd:d6:e3:4d:88:3e:83:02:0b:c6:73:
a6:af:43:cc:9e:5b:d9:56:df:fe:a8:09:df:00:d5:f2:f2:8f:
ef:aa:98:d3:b1:7f:43:17:dc:7d:a4:5e:41:9c:3d:3a:b6:7d:
eb:5b:37:d7:1c:08:ce:98:dc:ff:d0:47:09:a3:d0:7e:09:9a:
a5:89:04:7d:3e:5f:bc:fa:86:e8:97:96:9c:c6:47:2d:a9:e5:
b6:a1:0b:f8:9d:a6:0a:7c:a3:91:56:03:65:d3:94:79:98:fd:
df:cc:29:b5:57:d9:5a:32:f6:9c:38:58:35:8d:78:f2:42:44:
93:7a:fb:fe:23:71:53:f8:bb:ba:9d:a8:f4:09:f4:8c:36:24:
01:7b:f3:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:40:17 2025 by rpki-client