Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/1-d-sgiwS7EVb8Op3iIgSCHdQNwg.roa
File: 1-d-sgiwS7EVb8Op3iIgSCHdQNwg.roa (raw, json)
Hash identifier: T7pgfKL9PbENxqO8w/Pe2p9aU3ygTA2pgB4joIDbibQ=
Subject key identifier: F9:DF:AC:82:2C:12:EC:45:5B:F0:EA:77:88:88:12:08:77:50:37:08
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 35142FB1
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/1-d-sgiwS7EVb8Op3iIgSCHdQNwg.roa
Signing time: Sat 01 Jan 2022 01:59:56 +0000
ROA not before: Sat 01 Jan 2022 01:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44400
IP address blocks: 185.243.50.0/23 maxlen: 23
178.239.158.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 890515377 (0x35142fb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jan 1 01:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9dfac822c12ec455bf0ea778888120877503708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:77:2e:2c:bd:3c:bb:97:b0:ba:52:dd:93:c1:
11:1a:5a:f5:52:c2:e7:47:ad:10:a4:4c:88:53:22:
01:57:00:ee:0b:73:cd:66:38:59:87:07:29:4c:b8:
ea:72:85:4f:8a:90:44:2e:1b:69:0a:ed:e5:51:68:
b8:cf:37:57:68:5e:56:4e:c1:6e:c0:b9:e6:0e:14:
ae:66:bc:7c:d7:59:cc:f5:30:eb:bf:cc:b1:51:c3:
b1:b9:2b:c8:3f:ef:ab:1f:8f:17:34:2f:23:63:da:
b4:d3:be:3e:e4:ca:43:90:d4:de:57:9d:4e:34:42:
bb:9f:45:bc:df:ce:e0:4d:4d:c9:1e:02:24:2d:75:
39:94:1b:50:59:ac:5e:81:41:a7:99:d5:09:43:05:
3d:a6:63:fc:6e:48:ce:12:db:4b:f6:8e:a3:56:c2:
c1:ad:c9:41:46:6b:d7:cf:2d:91:71:69:7d:ee:8e:
0e:d6:af:e4:55:57:c3:24:19:36:f5:b8:b4:f6:8d:
a0:f7:cf:1e:af:fe:25:41:52:8f:8f:90:a8:05:40:
13:9c:d3:8d:10:de:13:4c:7a:f6:d9:1b:ee:e3:5f:
1d:2a:96:cb:ea:8b:e7:50:cc:dd:b8:1e:5d:6b:0c:
d2:67:65:9a:79:c3:64:21:26:e7:56:91:21:ee:22:
fe:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:DF:AC:82:2C:12:EC:45:5B:F0:EA:77:88:88:12:08:77:50:37:08
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/1-d-sgiwS7EVb8Op3iIgSCHdQNwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.158.0/23
185.243.50.0/23
Signature Algorithm: sha256WithRSAEncryption
14:47:48:b7:43:d1:ba:1b:a5:a0:e0:d5:70:b2:c0:ae:f1:0b:
35:52:b2:f5:a3:d7:13:ae:cc:b3:35:04:ab:15:e9:79:3c:6e:
ba:6a:5d:2e:a1:cb:c6:1b:9b:a2:63:2d:50:64:6d:69:26:0c:
f3:a0:c2:8b:af:de:b9:30:c9:1e:1f:8c:8d:a1:f3:78:e4:86:
32:da:44:db:f3:5a:6f:49:f6:b9:47:50:4f:94:3f:31:d9:3b:
05:16:68:a2:dd:9d:fe:68:ec:5e:6f:07:e4:dd:2e:2b:5b:f2:
f5:d1:e2:ba:23:ed:39:45:1c:cd:1f:94:da:69:43:ca:e2:5c:
b2:f5:4a:1d:a7:2e:df:d8:a5:8d:f9:fc:a7:5e:10:26:2e:39:
99:e6:63:1c:cd:d1:47:a0:31:f0:45:18:2a:8a:5e:d0:6a:6b:
c5:1b:ed:aa:3a:c1:2e:99:bc:67:d8:89:0f:89:0f:aa:6a:c3:
8a:27:82:65:37:eb:43:df:36:2c:7e:f5:53:ec:81:fe:24:1b:
21:f8:3d:a8:6b:5e:89:8a:b7:09:51:aa:20:df:df:16:68:95:
e2:82:e4:16:4b:38:a9:c9:c1:27:04:5b:a9:50:c4:60:43:8d:
91:fc:19:82:55:0b:a0:d7:bc:41:c4:c6:69:34:58:b0:4d:39:
bd:f1:0f:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:19 2023 by rpki-client on console-ams.rpki-client.org