Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/t1sSW9eKcy5ViTZ2SZ4uu7uIzJ4.roa
File: t1sSW9eKcy5ViTZ2SZ4uu7uIzJ4.roa (raw, json)
Hash identifier: +OPp2C0qhPHuq7qVfvSO631oR62HNc/tWmWbN2lFss8=
Subject key identifier: B7:5B:12:5B:D7:8A:73:2E:55:89:36:76:49:9E:2E:BB:BB:88:CC:9E
Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Certificate serial: 01835717A54CD0A9BB324E5A1C5C34E1F191
Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/t1sSW9eKcy5ViTZ2SZ4uu7uIzJ4.roa
Signing time: Mon 19 Sep 2022 18:51:50 +0000
ROA not before: Mon 19 Sep 2022 18:51:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210899
IP address blocks: 185.221.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:57:17:a5:4c:d0:a9:bb:32:4e:5a:1c:5c:34:e1:f1:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Validity
Not Before: Sep 19 18:51:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b75b125bd78a732e55893676499e2ebbbb88cc9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:36:d7:c0:8b:9f:a3:54:8c:bf:7f:f3:c8:f4:
f6:64:f0:ee:25:33:a6:5c:4c:b8:7d:62:a2:20:36:
60:ea:98:ab:52:5a:29:96:b9:c0:12:17:af:df:f0:
cd:a9:37:fd:6b:af:df:53:b6:8d:e1:a6:a2:a9:fa:
e3:17:d8:ef:f9:ed:09:1c:d4:24:0a:c6:72:5f:04:
a7:fc:33:5c:36:f8:e9:de:0c:05:0b:b6:23:3c:82:
9d:d0:6c:3a:09:be:66:11:0e:08:95:fe:56:d8:80:
98:d9:8f:3d:a1:2f:24:36:f2:17:aa:88:c0:9d:61:
88:49:bd:88:94:bd:44:3f:aa:4e:c6:7b:e9:ee:d3:
c4:f7:0f:fc:f2:b6:a1:1e:18:ec:96:77:42:45:8b:
e5:f0:69:eb:7e:26:43:12:30:a7:51:a3:85:b4:59:
b7:0c:06:07:18:ea:fe:bd:6d:33:94:5b:6b:6b:2a:
b8:55:9a:85:f8:cc:18:4a:83:65:20:33:5b:9d:c9:
3f:7c:74:5e:c3:1c:e4:05:a9:6c:c8:07:11:82:9f:
f8:ce:71:79:43:34:b8:ac:1f:f3:3e:b4:e3:cc:26:
91:1e:e8:49:18:26:1c:04:56:f9:01:c1:01:ca:0e:
de:f7:4d:33:e5:79:dd:3f:8e:f8:4d:d8:1c:d6:89:
a5:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5B:12:5B:D7:8A:73:2E:55:89:36:76:49:9E:2E:BB:BB:88:CC:9E
X509v3 Authority Key Identifier:
keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/t1sSW9eKcy5ViTZ2SZ4uu7uIzJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.197.0/24
Signature Algorithm: sha256WithRSAEncryption
46:51:00:4a:7f:d2:bd:8e:5e:2d:36:4a:93:8a:17:ae:21:95:
74:17:be:50:98:71:6a:46:8f:88:20:fa:5e:1d:f8:37:39:d1:
9f:60:b0:9b:d2:95:b2:11:be:f4:63:b0:70:c7:2d:b8:de:89:
e5:75:27:6d:66:3b:eb:31:3a:23:b9:ae:ed:7a:4e:f0:bd:bb:
c3:c6:09:69:c3:65:ca:b2:ce:35:02:cd:77:af:c0:f8:66:10:
e8:8f:e5:30:91:c6:61:c9:53:0d:f7:21:ad:93:bc:72:e0:39:
52:54:13:a3:d9:7c:da:9e:17:a2:8f:2d:49:a4:39:eb:8c:a9:
0b:b1:53:11:62:29:8b:e7:e7:50:08:8c:89:d9:2f:e4:bd:92:
de:fc:f8:a5:37:1c:70:b2:f4:42:da:d7:d4:de:98:d0:73:30:
4c:fe:9b:4a:fe:ca:f5:74:a8:7c:ae:96:ea:b6:77:8f:c9:c9:
9c:df:a4:09:69:da:29:cf:64:a9:ce:cd:b6:98:58:7b:e3:f4:
53:f1:d0:f7:07:7f:b8:50:cd:bc:0c:ce:63:f7:c2:4d:41:f7:
56:34:17:05:42:ff:4d:6f:03:8f:fd:ed:76:05:40:c2:ca:f2:
e8:05:0a:37:0f:4a:39:f9:f6:97:9f:c6:2d:37:a8:c8:79:6d:
bb:e1:d6:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:45 2024 by rpki-client on console-fra.rpki-client.org