Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/94f98c-c1d1-4fe2-9adc-a010d8e4faf0/1/dw9agFPpWV1k0i9gDGPyk2-TKJM.roa
File: dw9agFPpWV1k0i9gDGPyk2-TKJM.roa (raw, json)
Hash identifier: txJApv58J8YysWRPL70ua1pFc0Q+WO6LFr9R5RoUtBk=
Subject key identifier: 77:0F:5A:80:53:E9:59:5D:64:D2:2F:60:0C:63:F2:93:6F:93:28:93
Certificate issuer: /CN=d9c9baf46d6c94d27ce128da3b65b5a3b06db38b
Certificate serial: 0220BEE3
Authority key identifier: D9:C9:BA:F4:6D:6C:94:D2:7C:E1:28:DA:3B:65:B5:A3:B0:6D:B3:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2cm69G1slNJ84SjaO2W1o7Bts4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/94f98c-c1d1-4fe2-9adc-a010d8e4faf0/1/dw9agFPpWV1k0i9gDGPyk2-TKJM.roa
Signing time: Sat 01 Jan 2022 11:57:59 +0000
ROA not before: Sat 01 Jan 2022 11:57:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210162
IP address blocks: 185.228.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35700451 (0x220bee3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9c9baf46d6c94d27ce128da3b65b5a3b06db38b
Validity
Not Before: Jan 1 11:57:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=770f5a8053e9595d64d22f600c63f2936f932893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e9:a1:20:bd:78:3f:d3:f9:be:b1:42:82:b7:
f0:ed:a9:ef:27:53:51:98:39:e7:d3:8e:73:f5:bf:
ea:f3:35:3a:b1:76:13:81:89:5a:bc:8c:0a:9c:f7:
16:77:f6:78:25:da:3e:5c:2e:9d:53:22:20:c5:3f:
6a:d7:f6:7b:47:f6:2e:a2:d5:26:39:78:21:4e:61:
8e:c4:91:8f:7c:3e:11:ac:10:72:a9:a9:8f:ee:e8:
17:e1:58:18:62:77:69:18:c0:d5:dd:cf:cd:e8:e5:
e0:f7:f8:14:8c:c4:e1:12:a7:b4:98:ef:c7:0b:4c:
ee:c7:3e:f4:c0:3d:f1:e3:b9:64:8c:78:79:85:c1:
ca:d2:fc:05:cf:af:04:dd:06:db:a3:08:a0:cb:c5:
dc:80:28:c9:85:18:ac:39:e4:13:6c:87:10:75:64:
3d:1a:98:03:50:b2:50:1c:76:b8:68:39:b9:98:1b:
d5:86:fa:93:26:c4:55:82:2f:49:61:fa:af:1b:f6:
21:a3:a9:0b:45:e8:38:22:22:1f:be:71:3d:e8:62:
98:b5:61:9b:27:ba:b1:97:96:cd:29:e1:93:b2:bb:
de:02:8d:0f:f2:eb:3f:ce:6d:e7:48:01:f7:80:2d:
1d:0b:5d:33:a2:41:0e:a3:03:7f:db:17:d4:40:11:
2c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:0F:5A:80:53:E9:59:5D:64:D2:2F:60:0C:63:F2:93:6F:93:28:93
X509v3 Authority Key Identifier:
keyid:D9:C9:BA:F4:6D:6C:94:D2:7C:E1:28:DA:3B:65:B5:A3:B0:6D:B3:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2cm69G1slNJ84SjaO2W1o7Bts4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/94f98c-c1d1-4fe2-9adc-a010d8e4faf0/1/dw9agFPpWV1k0i9gDGPyk2-TKJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/94f98c-c1d1-4fe2-9adc-a010d8e4faf0/1/2cm69G1slNJ84SjaO2W1o7Bts4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.249.0/24
Signature Algorithm: sha256WithRSAEncryption
40:e8:88:52:d3:ed:32:d9:70:d8:46:d9:c5:2f:ea:67:13:c3:
fa:6a:11:05:e4:00:43:87:bf:e0:c9:e7:9e:43:d7:33:87:f5:
be:e7:f9:cc:a7:52:1a:9a:3a:79:bd:76:7f:36:1e:27:24:99:
8f:cb:8c:c1:ac:04:61:d0:9b:0f:d2:a3:49:b5:66:ae:ff:ee:
41:1e:89:b7:9e:15:cc:ab:ca:3b:fb:39:d9:8b:0e:0c:8c:7a:
2c:52:41:e1:81:35:9f:24:c4:2a:1e:f4:d0:5b:56:4c:5b:c8:
ee:f8:86:6d:c7:ee:8f:c9:5b:fc:c2:ef:55:0c:a4:1e:3c:b9:
a7:8c:32:de:19:0d:04:b0:78:7b:a6:b0:26:f7:26:d8:f2:96:
22:61:4b:19:b5:0b:59:e1:73:44:42:f8:62:61:df:c9:d1:56:
fc:2d:d6:2c:ba:8b:b3:3e:ce:71:52:99:f5:08:96:25:2a:a0:
f2:23:bf:bf:64:23:c3:70:11:90:db:2d:ed:1d:aa:9a:55:49:
5e:2a:b9:ef:7e:bf:05:cb:6b:9f:d6:1e:bb:f7:d3:c8:ca:34:
c0:e8:d1:c5:f0:2e:b5:10:1c:62:3f:41:72:48:27:73:8a:97:
19:41:aa:61:3f:f5:f2:b9:48:c0:d2:16:7c:10:bf:64:5c:d1:
c3:24:2a:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:26 2023 by rpki-client on console-ams.rpki-client.org