Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/_DONydkwqUSi0zrZ6DANehsXAGM.roa
File: _DONydkwqUSi0zrZ6DANehsXAGM.roa (raw, json)
Hash identifier: G5pJQD1Frf8HcKkP1PEzmrwCNlx9x/ewraiTJOzJILs=
Subject key identifier: FC:33:8D:C9:D9:30:A9:44:A2:D3:3A:D9:E8:30:0D:7A:1B:17:00:63
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 07DC2F1E
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/_DONydkwqUSi0zrZ6DANehsXAGM.roa
Signing time: Sat 01 Jan 2022 08:01:01 +0000
ROA not before: Sat 01 Jan 2022 08:01:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49755
IP address blocks: 185.177.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131870494 (0x7dc2f1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Jan 1 08:01:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc338dc9d930a944a2d33ad9e8300d7a1b170063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:20:fa:5e:74:7e:5a:6e:f8:bb:e1:0e:5b:11:
8d:ad:cd:df:01:cf:8f:8f:19:53:67:5a:af:da:f6:
fd:73:9e:7f:4f:2f:89:f3:5b:5a:0b:ca:d4:1c:2f:
b2:6e:a8:8e:e4:e9:9f:9d:6e:b3:b1:7d:cf:fd:65:
46:73:fd:57:af:58:be:b0:63:99:cb:fe:d0:cd:00:
a5:35:9a:ec:a2:a7:72:40:0f:94:5b:f2:9a:90:dc:
57:a4:b7:a7:b5:6b:4d:d5:34:03:a9:8c:f9:50:b3:
98:cd:19:63:df:f0:83:28:4e:5c:22:fa:4e:36:ec:
92:50:c7:2a:b3:f9:a8:d1:a8:9f:fe:d5:bb:13:e6:
44:51:a4:a6:3f:06:02:0f:96:85:1b:8a:3c:3e:29:
3f:51:6d:ae:08:cd:7f:b6:66:37:1b:ef:a8:57:c8:
66:a7:9a:9a:af:4c:dd:0e:72:49:30:09:87:2e:86:
dc:e0:13:02:a5:db:64:f2:e2:6d:18:7b:10:de:66:
32:a7:a4:a0:c1:79:cb:2c:6b:66:38:96:55:27:f2:
80:e1:b1:3e:02:f5:16:b9:a5:09:b3:ae:2c:3e:d8:
b1:48:73:6f:d0:e5:87:98:eb:bb:e6:e9:99:b6:75:
91:45:10:14:68:27:be:a9:a7:3b:4c:93:18:eb:f5:
8e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:33:8D:C9:D9:30:A9:44:A2:D3:3A:D9:E8:30:0D:7A:1B:17:00:63
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/_DONydkwqUSi0zrZ6DANehsXAGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.112.0/24
Signature Algorithm: sha256WithRSAEncryption
44:84:25:1e:d3:b4:52:09:87:9e:58:5a:38:70:b2:e2:45:b1:
1c:bd:65:bb:22:34:da:e7:bf:f2:20:0b:cc:7f:ee:1b:d5:19:
c6:e8:60:6d:96:41:71:ba:9d:76:d0:61:59:4c:d6:d5:12:70:
e3:d3:60:a7:5b:e9:47:38:c5:d1:b9:5a:45:a0:64:c5:86:f9:
9d:4e:70:49:d2:5e:9e:73:2d:bb:6a:44:0a:e1:41:c1:c2:3c:
62:16:6e:fd:53:50:38:c2:3d:40:96:3d:c8:21:21:a4:19:f2:
f7:38:92:82:f1:1b:9a:09:e2:c6:cf:7f:4e:8b:d9:77:ad:c8:
f2:28:08:f9:85:65:df:d0:c4:c8:74:af:bd:f9:7b:3c:65:3c:
8b:cc:a8:99:b6:c2:56:05:19:85:2b:5f:d1:69:b1:cd:e3:11:
33:a0:12:90:04:a0:8e:14:f5:4d:e7:7e:05:92:5f:d3:ae:b9:
f8:7b:96:fd:53:ab:7e:36:db:57:4a:99:02:0a:ad:5d:68:e5:
2e:4a:30:a6:48:88:fc:11:db:37:42:b4:22:f3:31:6f:7e:a7:
74:1e:61:7b:26:47:b2:17:9c:d2:2f:11:30:30:7a:b0:f4:0e:
46:11:dc:dc:53:f1:84:6c:e7:e3:44:ec:a5:29:e9:42:17:82:
20:2f:c7:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org