Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/dWMv9upk3Wo_Ie5YTCzKsqjVbgU.roa
File: dWMv9upk3Wo_Ie5YTCzKsqjVbgU.roa (raw, json)
Hash identifier: FGoG4Dw8Tz63V+icHjsR3NBR9Xyafu6gPMmUfFWi0II=
Subject key identifier: 75:63:2F:F6:EA:64:DD:6A:3F:21:EE:58:4C:2C:CA:B2:A8:D5:6E:05
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0DD04553
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/dWMv9upk3Wo_Ie5YTCzKsqjVbgU.roa
Signing time: Thu 07 Apr 2022 18:03:07 +0000
ROA not before: Thu 07 Apr 2022 18:03:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210977
IP address blocks: 185.217.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 231753043 (0xdd04553)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Apr 7 18:03:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75632ff6ea64dd6a3f21ee584c2ccab2a8d56e05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1a:f5:38:ca:7e:bc:0e:db:8b:ab:74:88:33:
16:a0:8f:e4:3e:32:1b:07:c8:47:90:e1:fe:d6:3a:
ad:3a:99:12:6a:37:86:e0:d7:85:33:95:c0:1e:ae:
e7:0e:6c:2f:d1:5c:8a:74:8b:38:56:be:c8:a6:b8:
ee:2c:f1:ee:a0:09:9a:41:66:f7:1e:30:2b:e8:04:
c7:ba:f0:d3:7c:12:cc:8c:ee:f5:9b:06:3e:a7:56:
95:14:61:d0:fd:be:e9:5c:8f:7a:07:74:3c:33:67:
ac:82:bc:37:64:4e:db:7a:1b:6f:b8:28:e0:b3:ff:
1a:1e:bd:f0:cf:9f:8e:65:f7:a0:9d:c1:f6:1d:8a:
ad:7b:ee:95:49:03:97:74:5f:d9:c9:22:e0:fc:6f:
c3:4c:ae:ed:38:5b:3e:00:fa:d5:3c:ea:17:67:eb:
bf:4d:f6:82:71:13:72:cb:9e:f9:c2:91:dd:a9:6b:
56:b8:08:d3:d0:d2:b1:82:8c:e2:77:4a:95:f0:79:
d9:7e:db:df:a4:ac:c8:78:46:88:41:1e:84:0b:fa:
62:93:13:48:af:9d:ce:f9:17:5c:6d:11:04:0e:27:
e9:24:01:97:19:49:42:b6:b0:0b:17:03:4f:17:88:
4d:db:33:c0:48:13:c5:8b:fd:a3:31:40:2a:9f:e6:
01:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:63:2F:F6:EA:64:DD:6A:3F:21:EE:58:4C:2C:CA:B2:A8:D5:6E:05
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/dWMv9upk3Wo_Ie5YTCzKsqjVbgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.116.0/24
Signature Algorithm: sha256WithRSAEncryption
72:c2:98:c6:ef:cd:c3:71:45:a6:0b:33:13:34:7c:e7:fc:f9:
7f:07:50:a1:a8:79:28:31:49:93:7c:4d:ee:64:a6:29:30:36:
6a:1e:bc:14:c1:34:39:a5:b6:5e:1c:6c:5d:3b:9f:77:4b:81:
bd:6c:ee:7a:c5:fb:ca:62:5e:14:19:d3:29:cc:99:b0:4d:d1:
a5:bd:f2:54:79:c8:a9:3f:a9:59:0a:f6:b6:7e:38:49:46:b2:
aa:e0:42:4f:5d:39:e1:a9:0d:43:74:66:ee:ed:16:97:0c:fc:
42:f4:1c:a5:93:b3:9e:c6:c9:fa:6f:80:0c:e1:8d:54:f8:6e:
96:f4:37:86:e0:69:06:c2:05:00:e9:3d:f0:42:fb:b7:a3:d9:
73:f7:e7:8d:34:1d:27:45:cb:da:83:67:ee:9b:2c:1b:71:bd:
e3:90:f6:8a:25:63:8c:02:23:6e:3e:ec:11:87:00:b6:f0:2b:
60:75:57:2f:6d:3a:58:1b:45:13:de:90:02:0f:4f:41:da:67:
ae:0f:a3:7b:99:51:dd:81:11:f6:9a:1f:cd:73:79:c0:bb:55:
5d:25:a8:a2:38:6e:94:1c:39:b0:ff:5d:8b:75:b5:cd:bc:50:
42:9a:47:8b:f0:8a:db:84:50:1f:6b:c0:23:72:a6:b8:35:0c:
2b:90:46:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:02 2023 by rpki-client on console-fra.rpki-client.org