Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/9hLbaavRH8c4jOCLv-aHxDL6-yI.roa
File: 9hLbaavRH8c4jOCLv-aHxDL6-yI.roa (raw, json)
Hash identifier: gkleilhmRSwbF2sGe0IHeMnsRiZMcVjrC/SpecJQOlM=
Subject key identifier: F6:12:DB:69:AB:D1:1F:C7:38:8C:E0:8B:BF:E6:87:C4:32:FA:FB:22
Certificate issuer: /CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Certificate serial: 02356D
Authority key identifier: D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/9hLbaavRH8c4jOCLv-aHxDL6-yI.roa
Signing time: Fri 22 Apr 2022 13:54:09 +0000
ROA not before: Fri 22 Apr 2022 13:54:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60752
IP address blocks: 185.26.1.0/24 maxlen: 24
185.26.0.0/24 maxlen: 24
185.26.2.0/24 maxlen: 24
193.35.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144749 (0x2356d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Validity
Not Before: Apr 22 13:54:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f612db69abd11fc7388ce08bbfe687c432fafb22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6e:18:e0:c4:6d:2e:c2:5b:82:01:93:6b:20:
7c:5b:6c:18:ab:f9:c3:7f:9d:65:5f:77:34:a3:4f:
84:46:9c:ac:db:ff:44:33:dc:d1:e8:67:4f:50:fc:
8f:50:b4:7d:4d:42:59:d8:9c:0a:95:0a:25:08:19:
2c:b2:1e:18:a3:d1:ac:92:20:91:c4:40:f6:cf:55:
06:a3:e5:4b:bc:3f:42:d1:a1:3c:7c:96:24:4b:d8:
3a:e2:92:c9:89:4e:d9:ae:89:f2:af:f7:2f:64:0c:
69:82:19:2a:4f:87:75:49:29:39:4a:78:1d:fc:0c:
e1:8c:6c:b0:85:09:10:4e:b4:44:8b:52:14:14:45:
ea:a7:5f:bd:6e:ee:16:9c:d7:39:98:66:7e:1c:ba:
d8:05:42:46:fa:17:7e:9e:c5:ff:5b:69:76:2d:44:
7f:86:ff:f0:37:fd:09:16:0e:9e:3c:9d:80:22:19:
d1:a9:a8:bb:50:84:94:b4:34:ff:34:4b:0f:cd:61:
6c:0b:bf:08:97:71:08:b5:f8:79:56:e0:ec:85:f0:
a4:ff:a2:f1:bd:93:f5:ab:ec:36:f5:24:0f:d7:9c:
99:9e:57:fe:bc:0b:62:60:42:21:60:b7:03:df:0d:
27:3c:f2:12:66:7d:03:c7:e5:da:19:8f:a2:2a:e7:
89:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:12:DB:69:AB:D1:1F:C7:38:8C:E0:8B:BF:E6:87:C4:32:FA:FB:22
X509v3 Authority Key Identifier:
keyid:D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/9hLbaavRH8c4jOCLv-aHxDL6-yI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.0.0-185.26.2.255
193.35.225.0/24
Signature Algorithm: sha256WithRSAEncryption
47:15:6e:98:d3:e7:45:dc:93:4f:4a:9f:f3:7e:90:0f:20:fb:
5b:a8:4b:74:34:5f:29:ad:53:11:5b:dd:d2:c0:88:55:69:fc:
96:46:1e:eb:94:2a:e2:24:97:59:2f:55:ed:de:ea:ea:c7:a4:
e7:35:42:a8:13:76:15:bc:29:5f:4d:33:99:68:00:52:3b:a5:
29:d3:23:2e:ef:2f:1a:e5:b7:7f:45:5c:a2:5b:3c:91:96:e4:
99:6f:17:8b:91:06:04:3c:f2:95:d8:74:75:5d:10:18:14:4b:
22:09:ae:be:24:fc:ca:45:80:67:e9:45:49:18:4a:79:70:31:
66:ee:bf:f6:59:2e:91:24:d9:c8:2e:78:39:bc:62:af:53:38:
52:0f:56:8e:9b:6c:53:36:49:ba:02:66:99:a4:99:7b:a7:3a:
64:1c:05:0d:19:7e:ee:eb:94:8a:5a:6f:ab:06:fe:8e:c8:1c:
54:f7:11:a4:fc:ff:2d:73:30:a2:a8:c9:09:d2:49:4e:7b:bc:
b6:c1:0f:95:04:e5:e2:90:19:1e:a8:ef:bf:7f:06:97:0b:1a:
cc:23:db:dd:4e:78:b0:70:cb:89:33:d6:49:72:78:5b:11:c7:
23:6e:b5:1d:cd:27:96:e4:30:e8:83:2d:f0:d2:f1:18:08:c3:
e7:be:9e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:57 2023 by rpki-client on console-ams.rpki-client.org