Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/1Mbqs_43DTJtYQyjQ1AlamlDSEo.roa
File: 1Mbqs_43DTJtYQyjQ1AlamlDSEo.roa (raw, json)
Hash identifier: iNKAtYDpolm1ME8ar9em4kZKhRM5VJsoNNmjmTWYdP0=
Subject key identifier: D4:C6:EA:B3:FE:37:0D:32:6D:61:0C:A3:43:50:25:6A:69:43:48:4A
Certificate issuer: /CN=09f93d62beb75bb4232dcd052d270276d36f8573
Certificate serial: 04CA178B
Authority key identifier: 09:F9:3D:62:BE:B7:5B:B4:23:2D:CD:05:2D:27:02:76:D3:6F:85:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfk9Yr63W7QjLc0FLScCdtNvhXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/1Mbqs_43DTJtYQyjQ1AlamlDSEo.roa
Signing time: Sat 01 Jan 2022 10:03:33 +0000
ROA not before: Sat 01 Jan 2022 10:03:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8544
IP address blocks: 185.141.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80353163 (0x4ca178b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09f93d62beb75bb4232dcd052d270276d36f8573
Validity
Not Before: Jan 1 10:03:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4c6eab3fe370d326d610ca34350256a6943484a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:db:50:8a:8b:b5:a4:e7:cb:c5:3c:d9:7c:8e:
b2:3a:31:59:95:b4:a8:e8:4d:40:14:d1:51:ec:9c:
41:5e:e7:59:a7:41:4a:07:65:b3:6f:4f:ad:18:ff:
17:16:75:7f:03:c8:20:e7:14:bc:08:f6:b3:ca:a0:
89:dc:1f:6a:ed:e0:e4:95:9d:ca:bd:63:a2:ad:68:
df:8b:45:19:8d:dd:45:b4:4b:84:29:cb:17:da:08:
e9:fd:a9:26:5c:7f:9c:69:02:1d:12:cd:77:2e:0f:
08:4e:73:52:ee:fa:ff:9b:99:31:67:fa:95:7b:16:
dd:be:56:78:88:d5:03:44:da:c3:6d:c2:9d:ce:32:
b9:fa:16:14:12:7e:52:3c:4c:6f:ad:bd:33:60:e1:
24:c6:21:0b:a1:89:9a:53:82:79:f1:fd:e8:76:65:
1e:c7:8f:22:b7:e7:1f:d4:5d:30:08:04:6b:4a:6e:
a4:16:ac:d5:91:07:7b:86:64:99:de:ad:9c:38:c3:
0c:4c:57:5e:46:a8:1a:03:d3:91:5e:a7:66:ca:22:
b3:67:dc:5d:1b:8e:c4:27:e6:86:d4:ab:e7:dc:47:
df:f6:a6:c1:0b:68:85:39:20:4a:13:8f:b9:c3:d9:
fd:dc:8c:04:e7:ee:49:dd:df:b7:c2:12:5d:f2:65:
4d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C6:EA:B3:FE:37:0D:32:6D:61:0C:A3:43:50:25:6A:69:43:48:4A
X509v3 Authority Key Identifier:
keyid:09:F9:3D:62:BE:B7:5B:B4:23:2D:CD:05:2D:27:02:76:D3:6F:85:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfk9Yr63W7QjLc0FLScCdtNvhXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/1Mbqs_43DTJtYQyjQ1AlamlDSEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/Cfk9Yr63W7QjLc0FLScCdtNvhXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.194.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:7f:fe:b0:5b:9d:12:6b:94:5f:47:d7:1a:75:93:f3:b8:74:
28:51:c1:42:68:4e:cf:1d:cb:67:25:29:64:6c:0e:38:3c:79:
e6:31:5d:6c:07:50:13:3c:a8:20:c1:5e:af:7a:b9:40:82:88:
17:00:9a:59:f9:3c:ff:eb:8a:79:45:50:9d:20:57:09:4c:68:
ce:f1:63:c5:23:f7:e9:4e:f4:2c:54:2b:ca:85:fb:5d:cc:a8:
dd:62:dd:78:22:ea:24:5b:b7:2b:e8:de:44:4d:68:95:a5:2c:
1f:86:57:eb:63:9c:31:04:b6:90:55:f3:f1:7d:7a:79:42:7b:
d6:58:8a:8a:0f:31:3a:e3:8d:4c:8d:67:dd:90:88:ba:85:f6:
63:2c:57:0e:89:bb:d9:d4:8d:66:94:f2:63:39:82:57:6c:88:
7a:0d:71:c0:d3:6c:b6:ac:d6:fe:49:2d:ba:10:81:fb:63:f0:
8a:3a:90:63:4d:e7:85:9e:65:58:0d:12:28:d2:7a:85:0a:12:
3a:f1:4c:2e:63:26:d1:f9:9d:03:67:19:8f:f5:94:f0:00:18:
d0:4f:09:63:1e:d8:67:e0:bb:12:fb:b5:73:ff:db:7c:5d:65:
dd:17:7b:3c:ad:41:1f:c5:04:1d:bf:ed:4d:8c:4e:d3:83:51:
5d:8d:92:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:01 2024 by rpki-client on console-fra.rpki-client.org