Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/D2bBZ4XbXMGWNmpgnAEaZkXb_tI.roa
File: D2bBZ4XbXMGWNmpgnAEaZkXb_tI.roa (raw, json)
Hash identifier: ZuwsErWfhMTS3JncgsUPBvJo0k1XGwHuPZ9LCZDNm/A=
Subject key identifier: 0F:66:C1:67:85:DB:5C:C1:96:36:6A:60:9C:01:1A:66:45:DB:FE:D2
Certificate issuer: /CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Certificate serial: 01856F14D4E5B7FC3187C8A9828A4023E982
Authority key identifier: 73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/D2bBZ4XbXMGWNmpgnAEaZkXb_tI.roa
Signing time: Sun 01 Jan 2023 20:45:14 +0000
ROA not before: Sun 01 Jan 2023 20:45:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203218
IP address blocks: 185.44.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:d4:e5:b7:fc:31:87:c8:a9:82:8a:40:23:e9:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Validity
Not Before: Jan 1 20:45:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f66c16785db5cc196366a609c011a6645dbfed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:36:48:99:92:db:1a:ba:37:42:3b:62:7c:62:
3d:c4:c8:49:cb:a3:1c:61:45:98:a8:97:ea:50:24:
ad:e2:8b:84:c4:16:4f:2a:c9:7f:19:99:0a:bb:98:
12:13:63:4d:65:c7:f2:fb:f0:74:7e:33:e1:78:40:
9f:c1:ca:7e:1c:72:07:51:ea:55:45:ca:e9:e8:5a:
5a:4c:5c:20:23:79:40:5e:23:07:34:99:00:45:40:
ac:e7:ac:65:4a:3a:c9:6c:b5:89:cc:29:27:2f:13:
ba:83:bc:9c:a8:fc:2c:e0:ab:2d:d2:e5:11:3e:04:
93:fa:ce:19:b5:b4:27:c3:da:df:e0:b4:86:ca:06:
7f:1c:e1:3e:28:0c:7f:60:20:e8:96:bd:05:60:1a:
a5:8d:3d:0a:bc:d5:77:82:71:13:00:31:3c:85:7f:
3b:6b:6f:1e:fe:a7:77:36:79:09:6e:c8:ef:fe:b1:
69:8b:31:05:aa:89:0c:7d:4a:8e:fa:2d:37:7a:fd:
f6:5d:86:5b:6b:8c:98:e1:d4:37:f8:7d:1e:7e:b8:
be:b7:76:19:57:c4:b6:28:42:a5:25:f1:c6:f7:ac:
c4:16:41:7c:03:75:27:3a:d1:0a:6c:b2:f3:5b:2c:
ed:bb:26:03:a4:b6:cf:2f:21:2d:55:27:d4:50:ce:
2c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:66:C1:67:85:DB:5C:C1:96:36:6A:60:9C:01:1A:66:45:DB:FE:D2
X509v3 Authority Key Identifier:
keyid:73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/D2bBZ4XbXMGWNmpgnAEaZkXb_tI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/c5ddXanaigdLM_vLXAnVA6O0Q6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.80.0/24
Signature Algorithm: sha256WithRSAEncryption
33:9b:3f:25:09:53:49:98:43:26:d0:09:4f:20:bc:34:90:48:
cd:fa:33:1e:55:ac:55:02:78:57:1f:9c:c0:2e:65:68:39:77:
fe:90:52:85:40:a5:93:a6:f3:c3:ce:8d:e4:6a:c9:d0:97:a2:
98:87:98:86:6b:9c:e4:a0:78:ba:ad:18:ce:44:a2:2c:37:34:
4a:1d:7f:61:0f:c6:cc:d6:9d:50:08:ab:45:32:b7:84:55:dd:
23:34:2b:d3:29:c6:c9:d0:c1:d6:f4:01:be:19:c8:e6:45:55:
c7:d1:7d:89:0b:26:07:33:f4:79:ff:c3:81:83:dc:95:18:6b:
84:b0:57:43:bc:db:71:b7:79:7d:19:70:d7:3a:fa:af:05:7b:
fd:c3:e9:0c:0e:6b:5c:93:cb:fb:7f:12:6a:d1:49:d0:e5:a1:
c7:1c:b3:cc:fe:1e:d8:39:2b:6b:1c:53:29:c2:5d:53:2b:f0:
be:4b:28:e7:0e:d1:19:86:7d:19:81:61:86:ed:fc:cc:c9:db:
f2:81:7c:b9:ad:6f:cc:d3:93:bb:ab:09:58:b9:04:8e:4d:76:
1c:1e:65:a9:15:4c:6c:bb:4f:6b:98:3d:6e:b9:b8:af:0d:0c:
36:81:3d:bd:c0:47:6e:9a:ef:59:f2:23:23:37:d7:40:21:41:
a4:83:f0:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:04 2025 by rpki-client