Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/KcZQMz9orRm63VvbUQxHOzGNGOY.roa
File: KcZQMz9orRm63VvbUQxHOzGNGOY.roa (raw, json)
Hash identifier: cHX2yiGeTd+uN1dDWRfXCT5RsQC1h+xRliRv3YMgyPI=
Subject key identifier: 29:C6:50:33:3F:68:AD:19:BA:DD:5B:DB:51:0C:47:3B:31:8D:18:E6
Certificate issuer: /CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Certificate serial: 15FA2910
Authority key identifier: 73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/KcZQMz9orRm63VvbUQxHOzGNGOY.roa
Signing time: Sat 01 Jan 2022 11:58:17 +0000
ROA not before: Sat 01 Jan 2022 11:58:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39421
IP address blocks: 185.44.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 368716048 (0x15fa2910)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Validity
Not Before: Jan 1 11:58:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29c650333f68ad19badd5bdb510c473b318d18e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1d:65:b5:5a:e2:36:cf:b9:3f:cb:a4:3a:e1:
04:f9:e9:2a:d9:ea:a6:97:7b:96:e6:dd:29:9d:55:
8d:5a:bb:68:99:58:98:bd:3b:cf:e1:12:35:1e:41:
73:12:d7:3f:f3:2c:f5:15:e1:2e:e6:4c:df:01:83:
63:1a:42:7d:e7:56:b6:9c:87:1d:9d:75:92:e3:51:
61:43:19:30:82:40:e8:99:1a:35:51:ff:d2:2b:e5:
17:60:33:32:be:c2:70:6e:42:e6:dc:16:77:8e:d7:
12:0c:d2:08:a0:99:bb:a6:39:7c:40:5c:87:5a:56:
2c:b2:93:72:81:f2:68:45:76:58:cc:0e:02:3e:cf:
f4:26:fe:39:34:27:35:7a:35:f1:33:18:13:17:46:
ae:4b:ee:19:26:cc:d3:03:05:89:2f:0b:e9:79:8f:
f8:23:5d:6b:ab:75:37:8e:83:3d:15:50:3e:d6:30:
bc:15:b2:8b:10:7c:94:ae:1a:58:6b:53:8f:a9:7e:
b2:c1:bf:dc:7d:21:72:bb:7d:e6:bb:69:db:b2:8d:
ad:03:9b:36:ab:b1:39:34:8f:20:4b:92:c3:62:7a:
41:94:a4:37:ba:ed:bc:98:f8:d3:ac:61:a8:8c:9d:
14:9a:3f:fe:b9:8b:84:aa:f4:65:c2:11:b4:ba:c5:
52:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:C6:50:33:3F:68:AD:19:BA:DD:5B:DB:51:0C:47:3B:31:8D:18:E6
X509v3 Authority Key Identifier:
keyid:73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/KcZQMz9orRm63VvbUQxHOzGNGOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/c5ddXanaigdLM_vLXAnVA6O0Q6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.81.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:5a:4d:2c:b9:a1:55:fc:34:c9:44:26:d9:56:f2:32:13:b7:
f8:7a:da:c3:6a:08:ee:92:0f:7f:89:c6:ee:d4:be:79:d1:12:
c6:a2:9c:dd:8a:6f:2d:62:d6:96:5e:6b:f6:49:78:aa:af:27:
4d:68:6c:e9:e8:a0:31:5a:91:f1:2a:17:fa:e1:4b:67:6b:60:
2f:b4:11:f7:ba:af:ba:21:9d:ee:34:63:40:d2:66:78:8a:b5:
66:9d:57:36:8f:91:c6:03:90:a7:a5:2c:40:f7:9c:5f:af:e3:
9a:73:1f:5f:61:91:ab:87:46:6d:d6:e6:ed:14:d4:cd:e3:4a:
c1:57:03:9e:cb:25:42:10:93:84:86:a3:cf:be:96:8e:bf:f0:
56:47:1d:d5:4b:6c:61:e9:7a:47:eb:2e:22:5a:d6:1a:c5:0d:
13:cd:2b:9e:c1:7d:ac:84:6b:e6:f8:d6:db:81:e2:37:ee:90:
e4:35:e4:5b:97:25:2c:0b:20:41:a5:94:8c:09:50:82:29:90:
40:a1:1d:8e:48:68:a0:55:c1:a3:95:d2:38:12:8d:6d:cf:86:
6d:2b:11:d4:ce:02:d1:c9:dc:0f:7b:5e:77:3d:e7:b2:37:4c:
9f:82:45:e5:07:2f:a7:c9:12:99:a5:fa:f0:af:c3:8c:bd:ac:
86:f7:f0:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:55 2024 by rpki-client on console-ams.rpki-client.org