Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/F9sCYYB-62oUPHL0kAtdyVlNYyE.roa
File: F9sCYYB-62oUPHL0kAtdyVlNYyE.roa (raw, json)
Hash identifier: adp531mNNfkBh63Kp054FO925XXAVUvE6+mi9JjZXCU=
Subject key identifier: 17:DB:02:61:80:7E:EB:6A:14:3C:72:F4:90:0B:5D:C9:59:4D:63:21
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 018236A33B9CB2FB7AFCB85472BB7C35F704
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/F9sCYYB-62oUPHL0kAtdyVlNYyE.roa
Signing time: Mon 25 Jul 2022 18:34:03 +0000
ROA not before: Mon 25 Jul 2022 18:34:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35758
IP address blocks: 185.143.241.0/24 maxlen: 24
185.200.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:36:a3:3b:9c:b2:fb:7a:fc:b8:54:72:bb:7c:35:f7:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jul 25 18:34:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17db0261807eeb6a143c72f4900b5dc9594d6321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:5f:4e:4b:1b:60:14:bf:e9:8d:ec:4c:9a:43:
84:c5:ce:b5:85:85:d7:6d:49:91:2e:77:a4:fb:8e:
16:aa:70:74:be:8b:bc:78:ca:92:f3:f0:04:27:4e:
03:87:2d:38:41:10:85:b7:78:6d:67:29:a7:e7:73:
94:9d:97:5c:90:d8:40:70:83:59:ba:bd:d0:bf:87:
15:2b:92:e5:10:f7:f4:b6:50:b7:dd:95:35:e5:dc:
16:ce:db:9a:a5:5a:73:97:56:40:60:9e:d1:c1:29:
70:42:53:79:f6:e5:08:49:87:86:66:69:72:63:fe:
36:a6:6c:a7:51:43:38:dd:a5:0f:b0:01:05:41:f5:
23:3e:37:08:01:77:ce:ca:00:5a:2d:c4:c9:49:49:
9b:0e:e4:85:83:8f:a0:44:67:51:8e:cb:01:44:55:
dd:4b:99:40:49:ae:c3:ba:3e:29:dd:64:8e:20:ac:
3e:6b:91:04:12:91:3d:b3:d5:50:96:80:e1:af:79:
72:51:09:d6:c4:5c:a7:62:82:c7:7a:b6:18:90:24:
a4:f7:a1:ef:9b:55:44:51:c6:bf:d4:8e:64:b7:ac:
b4:9c:ff:56:fa:19:2d:12:e0:f9:37:03:c8:0d:07:
ce:ea:2f:ea:0a:7c:67:d6:f5:1e:12:f8:57:c3:6c:
27:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:DB:02:61:80:7E:EB:6A:14:3C:72:F4:90:0B:5D:C9:59:4D:63:21
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/F9sCYYB-62oUPHL0kAtdyVlNYyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.241.0/24
185.200.247.0/24
Signature Algorithm: sha256WithRSAEncryption
77:ec:f1:77:dc:a5:2d:e0:5a:31:13:62:50:af:5d:56:10:1a:
60:d4:f4:c7:75:60:46:21:76:32:75:62:4a:24:39:9c:2d:93:
7a:9d:4e:76:7b:b9:f2:53:4d:f4:cc:cc:e8:8e:0b:9c:3a:d9:
e9:83:18:b2:7b:f5:38:1b:e1:c6:0f:ac:ab:60:1a:53:88:2f:
df:6a:20:8e:60:f8:69:1b:c8:d6:c6:a1:48:09:e6:c0:24:e1:
7e:c1:a9:99:f5:5f:85:6c:66:52:e5:0f:47:88:eb:8c:17:1e:
a2:b0:13:fe:52:f9:fa:c7:59:eb:15:75:b2:e4:d8:c0:c8:ad:
d7:6a:9d:23:86:6c:94:72:ff:0f:af:63:31:17:cd:55:4e:e8:
5f:9e:6e:54:fb:20:c1:c6:c1:23:6a:3e:a1:73:00:04:58:80:
84:ab:d9:74:46:74:c1:ab:d4:6e:26:6a:b4:bf:6d:dd:ef:4e:
8d:c3:5b:cf:1f:f7:7d:57:91:18:87:a9:ea:49:a8:6e:af:36:
d2:97:42:b1:02:e0:ab:1a:c9:4d:04:43:a7:e8:a3:c8:3f:ca:
d9:bf:33:eb:58:39:93:b0:59:6c:36:49:1d:7c:73:01:6e:9b:
90:14:10:a7:70:6e:07:34:a3:df:e8:c7:fe:20:94:75:85:ce:
26:10:01:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:29 2024 by rpki-client on console-ams.rpki-client.org