Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/M9TyKnxYa04QT25_fj-nz1F_hSM.roa
File: M9TyKnxYa04QT25_fj-nz1F_hSM.roa (raw, json)
Hash identifier: 2XSSz04XiL7gmQVoqzYI59+3m3I+T7NpRpMGDxseiCw=
Subject key identifier: 33:D4:F2:2A:7C:58:6B:4E:10:4F:6E:7F:7E:3F:A7:CF:51:7F:85:23
Certificate issuer: /CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29
Certificate serial: 15F0CAC4
Authority key identifier: C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/M9TyKnxYa04QT25_fj-nz1F_hSM.roa
Signing time: Sat 01 Jan 2022 06:59:23 +0000
ROA not before: Sat 01 Jan 2022 06:59:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36385
IP address blocks: 185.25.30.0/24 maxlen: 24
2a00:79e0:101::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 368102084 (0x15f0cac4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29
Validity
Not Before: Jan 1 06:59:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33d4f22a7c586b4e104f6e7f7e3fa7cf517f8523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1c:e0:4e:35:89:c5:d4:4b:4a:3b:31:a8:ad:
5d:50:6d:f2:5e:9e:34:11:cd:0a:84:63:ce:c1:d3:
1f:87:78:4b:3a:d7:e4:55:8f:e0:0e:f7:d8:0d:a5:
b0:a9:f6:5b:fd:d1:10:3a:43:45:e0:37:b6:93:90:
18:6f:65:f6:ac:76:03:e7:1a:96:04:08:10:07:55:
6a:95:a0:9f:c1:63:ee:95:d5:11:40:7a:40:79:a1:
b5:12:46:ae:09:dd:5e:cd:60:c0:5d:ed:06:b8:c8:
fb:a2:ef:2f:b1:5b:cd:41:5f:8d:aa:65:7c:ba:9e:
8d:28:5a:92:0a:d7:69:21:57:dc:c3:f4:0a:c4:d2:
5a:04:4a:52:20:8a:df:4e:fa:bd:cc:28:5d:12:85:
a0:f6:61:38:69:1d:5c:c2:c5:e9:ee:46:3c:43:99:
28:51:3a:f0:da:67:25:03:ae:ca:29:0e:ff:20:2a:
7f:22:f0:31:d2:76:f7:ce:29:ee:a6:4a:f6:26:5f:
a6:89:bc:ae:c6:52:f3:fb:c4:f2:d7:43:4b:a7:5f:
ef:75:f5:96:f1:67:8b:15:97:38:e6:29:a1:90:75:
46:aa:86:02:01:5b:1d:89:71:92:f3:ac:45:93:38:
92:ce:3e:fc:4f:6e:72:9b:e9:f4:6b:c4:0e:6f:fa:
58:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:D4:F2:2A:7C:58:6B:4E:10:4F:6E:7F:7E:3F:A7:CF:51:7F:85:23
X509v3 Authority Key Identifier:
keyid:C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/M9TyKnxYa04QT25_fj-nz1F_hSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/wHR_vibJzddiit_ttXt4vo3nXik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.25.30.0/24
IPv6:
2a00:79e0:101::/48
Signature Algorithm: sha256WithRSAEncryption
0f:e3:53:47:6c:57:a1:29:7b:41:04:cc:b4:e5:8f:fb:05:ee:
cb:72:64:ad:78:ca:dc:bb:a7:29:55:91:59:5b:d4:42:a3:fa:
61:fd:2d:9f:ff:4c:0b:f4:62:c9:41:a3:89:62:d8:51:a4:fb:
93:04:b8:58:56:7a:9b:4a:09:de:db:de:a0:ee:51:b1:85:95:
00:dc:b7:e1:64:7e:de:4b:17:dc:80:4f:bc:22:51:18:bf:f9:
3d:f4:c0:73:76:ec:5e:ff:c7:b5:21:e2:36:23:1a:73:9e:1b:
d7:29:7b:2b:85:b0:e7:4f:74:b2:32:fe:4e:cf:75:52:48:18:
57:57:e0:5a:05:b5:e5:1b:ed:62:7a:13:c3:44:f4:e3:ed:5a:
b3:76:d1:f2:e9:7f:4c:d1:54:a1:2a:6f:a9:e8:5d:c3:1b:ca:
c0:0e:49:a7:38:ec:30:32:e1:32:32:23:97:63:a1:cb:bf:b6:
e9:b0:d7:a8:02:1c:68:5b:8f:98:a6:24:c4:45:d1:fc:26:86:
77:27:a7:65:a6:ce:d3:2c:7c:e3:0a:ba:35:d3:0b:0e:20:03:
c3:e9:b0:56:c8:58:35:41:e9:32:55:7f:5d:33:ed:8d:9b:c5:
78:8b:eb:d4:e0:2f:ff:96:e3:5a:18:a0:8b:7a:da:85:96:7f:
86:3a:17:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:12 2024 by rpki-client on console-ams.rpki-client.org