Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/9jMhr2HZ-HME38cY9lozhNcBsg8.roa
File: 9jMhr2HZ-HME38cY9lozhNcBsg8.roa (raw, json)
Hash identifier: MD4ot/xmGe1janIqbTYabsyfxSc7P/kfgbej4qbw9Jk=
Subject key identifier: F6:33:21:AF:61:D9:F8:73:04:DF:C7:18:F6:5A:33:84:D7:01:B2:0F
Certificate issuer: /CN=af48f67f53fce9891d41593ac84cae304abfcbcf
Certificate serial: 06BB7635
Authority key identifier: AF:48:F6:7F:53:FC:E9:89:1D:41:59:3A:C8:4C:AE:30:4A:BF:CB:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r0j2f1P86YkdQVk6yEyuMEq_y88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/9jMhr2HZ-HME38cY9lozhNcBsg8.roa
Signing time: Sat 01 Jan 2022 01:00:45 +0000
ROA not before: Sat 01 Jan 2022 01:00:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208034
IP address blocks: 193.169.170.0/24 maxlen: 24
185.194.248.0/24 maxlen: 24
193.169.106.0/24 maxlen: 24
193.169.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112948789 (0x6bb7635)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af48f67f53fce9891d41593ac84cae304abfcbcf
Validity
Not Before: Jan 1 01:00:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f63321af61d9f87304dfc718f65a3384d701b20f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ed:80:f3:2f:7e:07:10:03:88:3d:75:9f:bc:
45:9e:b0:a4:b7:f2:b5:a7:e7:63:39:9e:be:9d:d6:
24:c4:88:61:f9:73:ad:61:4c:a0:03:43:74:68:e2:
0e:9c:10:6a:af:d2:55:f7:d9:5f:c8:a8:72:35:0d:
24:20:dc:e3:04:a6:dc:ab:8a:7d:68:54:80:85:a5:
16:ed:cc:a5:c7:21:e3:05:0e:5c:bd:2a:ec:84:1e:
59:a7:37:42:0e:ca:5b:a0:ce:6e:c7:52:ae:dd:24:
0c:83:2b:13:7f:aa:7e:7e:7f:c8:3f:76:77:97:1a:
7b:66:41:bf:30:c3:64:11:08:18:32:bd:83:c1:e1:
70:a0:3b:a9:c2:89:b7:00:bd:ca:bb:ab:ee:52:4d:
a9:6a:89:5d:01:9c:de:7c:b7:bd:5f:06:c4:e8:67:
9e:47:7e:ab:d6:c5:76:90:e9:1a:84:c0:fd:6c:47:
de:52:8c:84:ac:e3:1e:1d:e2:c7:8b:c2:e5:f6:8c:
5f:69:9f:78:13:d6:52:e9:31:a2:6f:62:f9:62:0b:
a1:2f:21:ac:ff:cd:b0:c8:b6:f4:cc:32:c7:12:08:
df:2e:4d:29:2a:e9:a5:9b:c0:ea:7c:67:87:f2:3e:
e7:0a:5d:ba:15:04:39:f3:3a:9b:71:79:1c:e3:31:
78:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:33:21:AF:61:D9:F8:73:04:DF:C7:18:F6:5A:33:84:D7:01:B2:0F
X509v3 Authority Key Identifier:
keyid:AF:48:F6:7F:53:FC:E9:89:1D:41:59:3A:C8:4C:AE:30:4A:BF:CB:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r0j2f1P86YkdQVk6yEyuMEq_y88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/9jMhr2HZ-HME38cY9lozhNcBsg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/r0j2f1P86YkdQVk6yEyuMEq_y88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.248.0/24
193.169.106.0/23
193.169.170.0/24
Signature Algorithm: sha256WithRSAEncryption
60:bf:fb:b1:65:ce:5a:20:45:f7:c0:0a:09:86:23:cb:ea:a6:
34:2b:7e:20:30:09:43:9f:1c:45:c4:25:b5:02:1e:b9:7a:0f:
15:fd:89:fe:f6:d8:ee:de:58:85:9f:72:1d:23:75:ce:f5:e2:
3c:c4:c4:9b:d5:24:a6:54:38:9b:9c:6c:7d:b7:8e:24:11:ac:
9a:13:90:9d:a6:11:45:5f:53:f7:d7:17:63:2c:b4:4e:43:ee:
2c:f9:0a:0d:64:36:5c:6c:ef:83:b7:5a:05:93:35:18:0f:9e:
db:8e:12:a0:5d:83:fb:d4:59:00:a2:b2:de:1a:ba:db:d0:a0:
61:90:d7:70:b6:a7:d3:e5:56:4e:c7:12:38:73:30:4b:12:ee:
f8:95:e6:58:e9:63:ea:83:9d:4b:a7:f4:cb:f3:c6:42:24:55:
5f:9f:a5:da:81:a5:15:69:bd:0b:3e:ec:7c:1c:54:b9:5c:d8:
05:03:7b:0a:6b:a2:e3:c4:71:b3:7a:f3:79:41:50:b8:23:5c:
96:47:1f:c8:88:f3:63:b9:75:6d:87:56:7d:ef:22:9e:04:8c:
8c:52:4e:1d:52:77:f6:67:02:d3:db:18:a7:75:66:53:be:0b:
1e:7c:6a:dd:26:20:93:bc:c4:37:d5:9f:ef:b9:17:d2:f8:38:
9b:2b:19:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:43 2024 by rpki-client on console-ams.rpki-client.org