Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/CtAp434e5RNkp9nFHlVOC9AN0EY.roa
File: CtAp434e5RNkp9nFHlVOC9AN0EY.roa (raw, json)
Hash identifier: Z6FCoXoEUoOzD4otLN4ioDWchHfVFeIJEZcSHkCzZU4=
Subject key identifier: 0A:D0:29:E3:7E:1E:E5:13:64:A7:D9:C5:1E:55:4E:0B:D0:0D:D0:46
Certificate issuer: /CN=682c842dfa2a1e714727bccb95f165347103f277
Certificate serial: 01820192BD29B69140B7B00E4FC2726E97EE
Authority key identifier: 68:2C:84:2D:FA:2A:1E:71:47:27:BC:CB:95:F1:65:34:71:03:F2:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCyELfoqHnFHJ7zLlfFlNHED8nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/CtAp434e5RNkp9nFHlVOC9AN0EY.roa
Signing time: Fri 15 Jul 2022 11:16:09 +0000
ROA not before: Fri 15 Jul 2022 11:16:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 11185
IP address blocks: 185.69.169.0/24 maxlen: 24
2a05:2241::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:92:bd:29:b6:91:40:b7:b0:0e:4f:c2:72:6e:97:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=682c842dfa2a1e714727bccb95f165347103f277
Validity
Not Before: Jul 15 11:16:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ad029e37e1ee51364a7d9c51e554e0bd00dd046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a6:18:e8:68:94:b6:05:94:26:3e:d7:05:03:
8a:7e:91:75:dd:e8:94:a7:b7:0c:74:41:4d:b7:67:
9e:98:52:4a:e0:ac:d6:cd:64:8e:30:76:e2:6c:ad:
4a:a8:7b:8c:34:0a:c1:79:94:b1:90:b9:dd:3f:5e:
8f:eb:3c:6b:79:9a:07:0a:e8:4e:ba:7c:53:85:05:
b7:08:85:00:f3:2e:f6:e4:0a:4d:55:b3:0d:0a:9a:
31:9b:55:d3:8d:9f:25:a0:a9:5b:df:dc:93:9b:d6:
5c:7d:1f:41:72:f4:d9:83:fe:0d:2d:d6:a0:f2:89:
dd:c2:27:2d:3f:fa:aa:e1:37:03:4d:4f:51:38:10:
5c:25:fc:20:76:95:ab:e0:85:68:6f:d6:1a:14:86:
0d:cc:2d:c8:79:79:a5:ac:47:56:79:18:54:e7:5a:
40:58:eb:62:40:e5:b1:eb:ad:ef:63:18:4b:2c:d5:
da:3f:be:d2:ae:e8:1f:7d:c8:e8:ea:6f:96:f0:a8:
bc:1f:8f:30:6e:63:eb:6b:17:e8:a8:4c:33:d2:b6:
63:00:98:64:b5:c1:69:af:72:d1:1a:90:55:09:8d:
0c:e3:5f:e0:24:cc:ec:ed:05:d7:bc:5f:59:65:9f:
6f:dd:de:2c:03:d6:18:91:01:8b:f6:0d:c2:9c:af:
bc:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D0:29:E3:7E:1E:E5:13:64:A7:D9:C5:1E:55:4E:0B:D0:0D:D0:46
X509v3 Authority Key Identifier:
keyid:68:2C:84:2D:FA:2A:1E:71:47:27:BC:CB:95:F1:65:34:71:03:F2:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCyELfoqHnFHJ7zLlfFlNHED8nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/CtAp434e5RNkp9nFHlVOC9AN0EY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/aCyELfoqHnFHJ7zLlfFlNHED8nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.169.0/24
IPv6:
2a05:2241::/32
Signature Algorithm: sha256WithRSAEncryption
04:d1:6f:66:5e:10:48:38:44:b5:28:7b:42:da:26:6a:d9:8d:
c5:ad:5c:96:2f:74:c4:50:34:cd:56:28:17:25:c0:22:f9:f2:
72:01:98:4b:b3:df:a2:b7:96:2e:47:78:2c:b7:5d:94:96:01:
ac:b9:b9:b3:5d:15:d3:04:20:45:70:f3:90:ab:c0:51:88:b9:
f3:1c:17:29:54:20:9e:1b:18:f2:52:fd:1f:1d:89:e5:ba:27:
f6:01:48:39:06:5d:bd:d0:50:79:a3:5d:47:9f:1b:8a:8d:9d:
ba:23:7a:f4:cf:1d:1f:06:06:d9:5f:40:00:84:db:b1:dc:54:
85:15:1a:20:58:c6:77:07:d3:c2:58:b2:3f:0f:5d:08:d4:92:
46:3a:ee:9c:80:fa:b5:40:94:28:d2:8b:42:04:1f:95:fe:c9:
ae:e1:2e:93:ed:8b:95:4f:12:27:af:cc:6b:f4:b5:f0:8e:bf:
00:dc:7c:50:ed:f1:69:e0:33:c1:ea:25:a1:e4:b7:a3:8d:8e:
ef:c1:e9:3c:75:b5:be:c3:17:36:c4:6d:a0:e1:e4:02:3c:c4:
b1:99:1b:c2:a5:03:b5:ad:15:8a:10:2e:6d:e9:b1:69:b2:ff:
be:3b:4a:f4:8f:56:c7:fd:e7:42:3d:30:37:7a:d4:86:aa:91:
6d:c8:04:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:59 2024 by rpki-client on console-fra.rpki-client.org