Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/0XQ0yZkUbNp8Lm1YJ7D82dkUTN4.roa
File: 0XQ0yZkUbNp8Lm1YJ7D82dkUTN4.roa (raw, json)
Hash identifier: 1Ayxa+dgI6UhWO1zvsO3UmBwvxhOIpG6ITy0EJhaxak=
Subject key identifier: D1:74:34:C9:99:14:6C:DA:7C:2E:6D:58:27:B0:FC:D9:D9:14:4C:DE
Certificate issuer: /CN=f8a966664ec96edbd12e8e82e940bfb9faec105e
Certificate serial: 13F13579
Authority key identifier: F8:A9:66:66:4E:C9:6E:DB:D1:2E:8E:82:E9:40:BF:B9:FA:EC:10:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/0XQ0yZkUbNp8Lm1YJ7D82dkUTN4.roa
Signing time: Wed 04 May 2022 08:53:21 +0000
ROA not before: Wed 04 May 2022 08:53:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212520
IP address blocks: 185.177.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 334574969 (0x13f13579)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8a966664ec96edbd12e8e82e940bfb9faec105e
Validity
Not Before: May 4 08:53:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d17434c999146cda7c2e6d5827b0fcd9d9144cde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:42:52:86:8b:b4:7d:a8:b1:b8:8f:40:dd:8b:
58:b5:5d:72:50:c0:53:d0:24:98:41:46:0d:7f:28:
fd:7e:3e:2b:8e:7e:d9:06:ff:65:0a:1c:b2:85:d1:
57:96:15:99:71:66:d2:8c:76:a1:c7:ba:25:e6:42:
65:c5:47:0a:d6:9a:dd:ee:a9:cc:3c:83:20:0c:93:
bc:a6:c6:d2:cd:f3:9e:f1:36:77:80:cf:67:f0:0f:
89:eb:5a:42:52:82:43:ea:0a:08:c6:4d:46:48:fa:
21:e2:0a:55:f8:27:99:9b:3a:fd:1f:1f:4f:d7:6f:
1a:7e:71:a7:d1:01:4a:d8:15:81:cc:5d:c2:d7:05:
4c:3f:c9:af:58:06:7e:57:8d:6e:78:28:af:5e:ee:
81:eb:26:10:78:78:a3:bd:c0:57:11:1b:62:f5:c7:
c5:c1:52:65:12:0a:76:4d:44:64:0a:2d:b8:e3:f9:
f2:53:0b:15:ca:1c:2b:0d:3b:09:8b:c1:68:ba:05:
94:48:03:f4:d0:5d:b7:2a:92:16:32:09:e7:f7:34:
15:4e:30:90:16:38:c7:15:95:09:af:bf:02:7d:f0:
49:1a:3c:20:a6:44:49:77:a4:72:e2:67:36:b7:bb:
50:a0:e6:8b:be:e0:29:26:63:c9:06:f5:7d:ef:cb:
d1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:74:34:C9:99:14:6C:DA:7C:2E:6D:58:27:B0:FC:D9:D9:14:4C:DE
X509v3 Authority Key Identifier:
keyid:F8:A9:66:66:4E:C9:6E:DB:D1:2E:8E:82:E9:40:BF:B9:FA:EC:10:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/0XQ0yZkUbNp8Lm1YJ7D82dkUTN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.206.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:d4:45:12:c1:3a:64:b9:4a:97:9f:23:7a:1a:35:38:06:34:
ab:bd:e6:1a:0a:7d:05:c6:e1:92:91:3e:35:47:43:72:d4:2f:
bb:be:a7:27:3b:49:99:73:0d:88:35:78:8d:8e:f5:4a:0d:70:
d2:43:ae:89:57:66:34:a5:a4:2e:1a:3e:34:26:39:90:62:98:
94:a5:76:95:f1:37:9e:29:37:42:87:15:71:ae:3e:5d:39:36:
ef:82:07:88:c3:8f:bc:52:2e:0e:ea:d1:cb:f8:8e:db:99:6a:
a7:a3:81:c1:4b:c2:fb:67:b7:3b:4a:b9:af:50:99:64:a4:b8:
46:92:7f:5d:e3:ed:14:66:c4:0c:73:bd:e5:2e:d7:3d:36:f5:
22:7f:07:d5:06:d9:42:53:9d:44:c4:6f:e8:07:8d:b7:ba:64:
a2:05:f1:91:52:f5:80:62:52:21:2e:f4:67:60:3f:cb:90:7e:
31:a4:8a:62:96:e3:8f:86:4e:86:ec:06:2b:02:d4:5d:d7:3b:
40:29:63:68:6e:f7:ef:af:9a:39:97:d3:0d:f7:6b:e2:6a:84:
6a:06:ce:c4:c6:79:10:87:e2:34:fc:9d:41:fe:68:59:ce:6a:
81:f4:07:29:db:62:d4:fd:5b:13:57:39:93:ab:cd:9a:6e:1e:
51:b0:d2:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:53 2024 by rpki-client on console-ams.rpki-client.org