Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/4e0580-8b2f-49a7-abd8-5c38c7475aa9/1/m5DQeUCSpVREDtIhO_ArcKJmN74.roa
File: m5DQeUCSpVREDtIhO_ArcKJmN74.roa (raw, json)
Hash identifier: VMEvUXbXvgmApBllk1gJE2shomv7gj7ZdJG6cMlXPk0=
Subject key identifier: 9B:90:D0:79:40:92:A5:54:44:0E:D2:21:3B:F0:2B:70:A2:66:37:BE
Certificate issuer: /CN=9246785f469be8aa7151e3333e47465d478fd0e7
Certificate serial: 1BC4EA11
Authority key identifier: 92:46:78:5F:46:9B:E8:AA:71:51:E3:33:3E:47:46:5D:47:8F:D0:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkZ4X0ab6KpxUeMzPkdGXUeP0Oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/4e0580-8b2f-49a7-abd8-5c38c7475aa9/1/m5DQeUCSpVREDtIhO_ArcKJmN74.roa
Signing time: Sat 01 Jan 2022 13:54:41 +0000
ROA not before: Sat 01 Jan 2022 13:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39180
IP address blocks: 185.24.17.0/24 maxlen: 24
185.24.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 465889809 (0x1bc4ea11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9246785f469be8aa7151e3333e47465d478fd0e7
Validity
Not Before: Jan 1 13:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b90d0794092a554440ed2213bf02b70a26637be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:44:f1:8c:cb:82:be:b9:2b:55:e1:9b:de:04:
99:05:ef:02:03:00:4b:20:e8:f9:b0:0a:1f:19:73:
35:9c:b2:80:e8:ac:87:61:6f:b4:26:7e:29:ea:14:
33:e1:39:44:91:5c:aa:bc:86:a9:fb:c5:5b:0f:9e:
9f:d6:4d:69:52:52:0c:14:70:4d:1f:19:44:f1:d8:
be:cb:c5:92:5a:55:27:04:a2:22:9a:54:8f:16:80:
52:08:5e:45:6c:5c:cf:79:c4:4e:63:76:88:cc:e2:
13:c2:9c:9e:76:46:53:dc:7a:56:31:31:95:2e:75:
ca:32:93:e8:a1:60:ca:77:26:f6:b7:78:f3:77:9e:
2d:6b:d6:54:2b:be:74:16:ec:f9:c7:4a:25:59:eb:
4f:23:fc:01:cd:86:b2:01:00:b6:c7:1f:8c:64:21:
a1:03:15:91:2e:a2:05:b0:47:91:ea:92:35:28:30:
00:de:23:dc:1e:84:80:e6:5d:3b:77:20:ee:2c:a0:
0f:a3:ef:c4:57:4c:98:04:63:bf:36:de:71:21:1b:
02:33:ce:30:5e:17:42:53:1b:fe:ec:bd:df:54:cb:
de:e8:09:0f:29:32:a8:92:e4:79:2e:3d:59:b8:8a:
f1:34:05:78:e3:8d:47:d2:c9:94:78:57:94:53:e1:
8d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:90:D0:79:40:92:A5:54:44:0E:D2:21:3B:F0:2B:70:A2:66:37:BE
X509v3 Authority Key Identifier:
keyid:92:46:78:5F:46:9B:E8:AA:71:51:E3:33:3E:47:46:5D:47:8F:D0:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkZ4X0ab6KpxUeMzPkdGXUeP0Oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4e0580-8b2f-49a7-abd8-5c38c7475aa9/1/m5DQeUCSpVREDtIhO_ArcKJmN74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4e0580-8b2f-49a7-abd8-5c38c7475aa9/1/kkZ4X0ab6KpxUeMzPkdGXUeP0Oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.16.0/23
Signature Algorithm: sha256WithRSAEncryption
72:69:1b:78:5d:3c:f4:fb:a4:22:8e:b4:d3:e6:49:30:dc:e5:
cb:67:4a:b9:5c:21:e9:f7:40:8d:79:e8:60:a9:c8:46:fa:bc:
1c:e5:b8:2a:e0:4d:a5:02:83:1e:e9:df:24:26:8b:61:af:e9:
33:62:c8:bd:59:d7:1f:60:f5:bc:d7:8c:d1:f0:b3:ae:28:22:
1a:5b:21:f6:27:c3:84:e0:69:18:80:58:0a:90:03:1d:82:86:
35:7d:8a:6d:de:51:58:40:a4:29:f1:9c:aa:4d:b3:60:a5:9b:
16:ed:8b:92:fd:e4:43:e8:82:69:41:bc:72:20:0b:19:bd:32:
64:97:6a:fa:21:d2:b2:23:ce:4b:ad:68:df:c2:dd:77:9c:ec:
37:63:1a:73:3b:ad:b6:f8:f8:a8:34:63:c7:ed:63:a3:e9:cf:
31:7d:b5:f7:34:62:40:30:27:82:b9:69:7e:9f:d1:fe:a2:83:
79:bd:e5:2b:f2:aa:d7:b1:d7:f8:f8:1d:3b:9b:b9:3f:16:61:
c0:96:48:b5:25:ef:88:e2:30:69:e8:a7:c4:74:b7:b8:eb:02:
3e:9f:36:be:b0:9d:76:c1:48:02:8a:17:4b:15:82:3d:fe:ec:
6a:32:c2:aa:52:c7:94:19:3b:ca:92:82:f3:8b:d9:fa:cd:b2:
4a:fb:a8:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:20 2024 by rpki-client on console-fra.rpki-client.org