Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/4k9dpAZVqEaNsxgYFV2BqBVcjiU.roa
File: 4k9dpAZVqEaNsxgYFV2BqBVcjiU.roa (raw, json)
Hash identifier: HTwwUxoVffJigflonaw6jI9dZs1IAUPSUlugWS2xijU=
Subject key identifier: E2:4F:5D:A4:06:55:A8:46:8D:B3:18:18:15:5D:81:A8:15:5C:8E:25
Certificate issuer: /CN=9e0374d71bc57db96dc393e91febb9e9d59fef9a
Certificate serial: 08576A4F
Authority key identifier: 9E:03:74:D7:1B:C5:7D:B9:6D:C3:93:E9:1F:EB:B9:E9:D5:9F:EF:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ngN01xvFfbltw5PpH-u56dWf75o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/4k9dpAZVqEaNsxgYFV2BqBVcjiU.roa
Signing time: Sat 01 Jan 2022 09:00:32 +0000
ROA not before: Sat 01 Jan 2022 09:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200571
IP address blocks: 185.97.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139946575 (0x8576a4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e0374d71bc57db96dc393e91febb9e9d59fef9a
Validity
Not Before: Jan 1 09:00:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e24f5da40655a8468db31818155d81a8155c8e25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5f:10:82:b2:c4:70:9b:5f:fb:d9:98:32:bb:
f0:e8:5f:f5:c7:10:cc:3b:de:9e:82:bc:9e:92:af:
02:15:cf:41:72:9b:ec:f9:ef:b2:ad:49:23:f7:37:
43:c5:bc:90:82:bc:f3:9e:2c:3e:4f:15:17:eb:9b:
2b:2b:f9:58:ff:30:76:8c:5f:fa:4e:a6:74:6c:86:
a6:ff:68:4d:ea:23:3d:a7:06:5f:e0:15:d1:eb:e0:
1b:50:e2:1a:bf:4c:86:f4:cf:ff:74:8e:28:4a:00:
07:84:d5:d5:4d:07:f7:9a:b5:d2:f5:5a:52:51:69:
b4:01:c7:a3:c9:81:37:73:4f:93:0a:27:9c:f2:a7:
32:9b:cb:2f:92:71:bf:c6:8f:e6:00:ca:b0:3b:f4:
fb:a8:cd:fa:c2:11:ba:bc:39:b1:f9:50:aa:da:1b:
58:d5:8c:3d:f3:0c:d4:07:10:08:f0:57:b5:4f:fd:
83:b9:ee:c5:e7:5d:6d:16:b4:9d:a1:e9:ca:ab:9c:
a7:e1:8e:48:ea:31:19:03:52:f2:95:c2:02:c6:f0:
d0:5b:85:06:6a:35:b1:ad:5b:fe:94:ae:d3:76:5e:
70:2a:ce:fe:5d:c5:09:9e:02:ac:59:05:68:7d:9d:
e2:62:6f:74:ea:a2:8a:c4:b3:82:f1:4d:e9:11:f0:
47:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:4F:5D:A4:06:55:A8:46:8D:B3:18:18:15:5D:81:A8:15:5C:8E:25
X509v3 Authority Key Identifier:
keyid:9E:03:74:D7:1B:C5:7D:B9:6D:C3:93:E9:1F:EB:B9:E9:D5:9F:EF:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ngN01xvFfbltw5PpH-u56dWf75o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/4k9dpAZVqEaNsxgYFV2BqBVcjiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/ngN01xvFfbltw5PpH-u56dWf75o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.11.0/24
Signature Algorithm: sha256WithRSAEncryption
67:53:fb:76:99:27:7b:bd:f7:73:83:70:e6:00:6c:e0:86:6e:
10:e3:44:52:54:e0:7a:7a:60:db:00:6d:88:80:00:e8:6f:20:
a4:69:6f:21:c4:c6:8e:8c:83:fa:29:06:cf:92:72:3d:c9:0b:
6d:13:77:49:bf:bb:ad:09:23:22:49:a0:5a:64:31:d1:b0:de:
4c:63:36:01:3b:ce:8b:f1:27:bf:69:06:d1:48:12:de:9d:56:
05:bc:99:a1:a9:0d:c5:17:d5:21:7e:41:5f:41:60:cb:c9:9d:
87:76:a4:0e:2f:85:d7:40:d8:98:b4:99:9d:36:7b:12:bd:ad:
b7:92:3b:f0:2b:cc:62:82:1b:d6:6c:a9:3e:e6:2a:e0:e9:0a:
d9:82:58:75:ae:28:7f:18:41:da:2b:1b:67:1c:e5:2b:e9:6c:
08:e2:ca:a9:7a:ef:f2:57:19:58:e6:13:4c:9d:52:14:9c:05:
b8:17:71:bc:64:80:a9:4d:ce:cb:96:b8:2d:da:94:2b:da:33:
29:d6:4b:84:03:69:c6:f1:ee:73:de:24:34:5b:a3:b4:21:d3:
7a:ea:8a:98:31:5f:c2:49:82:bd:0b:8c:ee:7a:d0:a1:9c:d9:
81:71:a9:2f:29:cd:02:3f:71:ea:16:2f:e2:9c:15:97:b8:a7:
9b:bd:9c:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:05 2024 by rpki-client on console-ams.rpki-client.org