Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/cjFI0gWGjsz_mMM1e2fb0WIKF1w.roa
File: cjFI0gWGjsz_mMM1e2fb0WIKF1w.roa (raw, json)
Hash identifier: 9aJt0qUhvdBnH0WSQGKkvSXk9loS1q5nmEpSvgqxHfw=
Subject key identifier: 72:31:48:D2:05:86:8E:CC:FF:98:C3:35:7B:67:DB:D1:62:0A:17:5C
Certificate issuer: /CN=dfc0b1df0e7bd00045ebe10302c320ffbdba0716
Certificate serial: 16B379FD
Authority key identifier: DF:C0:B1:DF:0E:7B:D0:00:45:EB:E1:03:02:C3:20:FF:BD:BA:07:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/38Cx3w570ABF6-EDAsMg_726BxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/cjFI0gWGjsz_mMM1e2fb0WIKF1w.roa
Signing time: Sat 01 Jan 2022 05:52:50 +0000
ROA not before: Sat 01 Jan 2022 05:52:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62290
IP address blocks: 185.24.116.0/23 maxlen: 24
2a00:72a0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 380860925 (0x16b379fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfc0b1df0e7bd00045ebe10302c320ffbdba0716
Validity
Not Before: Jan 1 05:52:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=723148d205868eccff98c3357b67dbd1620a175c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:15:0e:ba:9d:30:12:68:3a:09:c4:5c:cf:69:
08:b5:e4:95:f1:55:06:92:43:85:60:20:b1:23:a9:
43:25:50:97:ec:ea:42:15:a4:25:fa:75:69:02:a0:
5e:68:9e:87:7e:62:05:da:8e:e8:13:80:0e:cb:93:
01:43:70:dd:43:ba:b0:b5:2c:41:44:1d:01:10:0d:
33:fe:5b:20:ba:9f:5c:53:44:6b:f5:9a:a1:0a:98:
86:93:7e:26:d3:2f:c3:a9:4c:c3:09:45:9b:60:ab:
45:6e:1d:da:05:f3:5d:c8:e0:54:fa:fb:23:ab:ab:
c0:ab:16:06:d0:25:79:be:d3:76:a6:74:d9:74:91:
f1:30:9b:ed:0a:fc:8f:da:b3:01:83:02:4c:f0:b9:
eb:67:12:a1:1f:7d:88:52:c8:9a:50:b9:a6:1e:3d:
8d:49:aa:c2:40:9c:d0:8f:c4:cc:73:17:10:d0:22:
3d:9c:5c:21:c6:45:df:38:cb:49:5b:0b:3c:a5:89:
b0:c0:c4:65:49:7c:7c:29:bd:6b:3e:05:17:f2:fa:
47:3a:50:08:5f:5e:94:97:24:1f:e5:7d:f7:1c:39:
b2:cc:58:78:c1:49:bf:50:57:84:3f:25:2a:ea:e8:
c5:32:07:e0:21:e8:c2:87:49:b1:28:fd:55:f0:77:
73:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:31:48:D2:05:86:8E:CC:FF:98:C3:35:7B:67:DB:D1:62:0A:17:5C
X509v3 Authority Key Identifier:
keyid:DF:C0:B1:DF:0E:7B:D0:00:45:EB:E1:03:02:C3:20:FF:BD:BA:07:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/38Cx3w570ABF6-EDAsMg_726BxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/cjFI0gWGjsz_mMM1e2fb0WIKF1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/38Cx3w570ABF6-EDAsMg_726BxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.116.0/23
IPv6:
2a00:72a0::/32
Signature Algorithm: sha256WithRSAEncryption
a2:7d:7d:78:54:1b:83:61:1c:cb:b5:d5:72:1b:2d:b0:12:3c:
80:93:79:b9:2e:72:c3:0d:dd:56:3b:7a:86:a0:cb:af:09:7f:
8d:94:5a:25:1a:c7:b7:a4:5c:dd:ab:9a:b8:12:be:69:a8:8f:
0f:cf:d0:c0:b3:e0:cf:8e:0a:80:3d:68:42:79:dd:22:fb:5b:
1e:1b:92:c3:f2:56:66:a3:cf:c7:aa:e6:34:86:4c:82:c0:a5:
ed:96:ae:ba:5b:8c:fc:2e:e2:4e:95:59:37:d1:e0:84:8e:3f:
3e:5a:c4:f7:06:aa:8e:82:20:8c:84:d2:05:cb:e3:f8:2a:fd:
c1:1a:59:b8:c5:f1:93:f0:99:ce:e3:98:23:52:c6:41:aa:4d:
3e:45:62:44:2f:3a:70:32:c2:39:3b:bd:82:5d:22:9d:fd:50:
9f:32:06:6f:38:e1:6e:29:61:67:37:ee:d1:3d:47:c3:4f:01:
82:f8:65:64:41:5a:81:41:6a:35:ee:09:82:12:b2:ea:dc:3d:
3d:53:12:41:3a:d2:29:f3:d7:93:84:a2:c7:69:a8:c6:76:c6:
08:96:80:7e:a5:55:d2:a6:3e:ae:3a:eb:55:dd:55:c3:0a:cb:
76:33:af:77:1d:78:20:e9:26:a1:ec:3a:20:fb:4c:e1:2a:4a:
4e:0f:e0:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:36 2023 by rpki-client on console-fra.rpki-client.org