Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4c3160-de12-4929-a483-7c65a852f092/1/K9X5Q32eU3HGIs1zXYDABxzvWUM.roa
File: K9X5Q32eU3HGIs1zXYDABxzvWUM.roa (raw, json)
Hash identifier: rM2/FX8Xg9Xk+ksh3wLTBSN19FFS1AyWRw0dU7fYdnQ=
Subject key identifier: 2B:D5:F9:43:7D:9E:53:71:C6:22:CD:73:5D:80:C0:07:1C:EF:59:43
Certificate issuer: /CN=d38cd9440552e7dab9cd5631d4ab872451535b7a
Certificate serial: 0184E2B8FBFC11EC0BC8BB114E475B27430F
Authority key identifier: D3:8C:D9:44:05:52:E7:DA:B9:CD:56:31:D4:AB:87:24:51:53:5B:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04zZRAVS59q5zVYx1KuHJFFTW3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4c3160-de12-4929-a483-7c65a852f092/1/K9X5Q32eU3HGIs1zXYDABxzvWUM.roa
Signing time: Mon 05 Dec 2022 14:38:04 +0000
ROA not before: Mon 05 Dec 2022 14:38:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207279
IP address blocks: 185.180.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:b8:fb:fc:11:ec:0b:c8:bb:11:4e:47:5b:27:43:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d38cd9440552e7dab9cd5631d4ab872451535b7a
Validity
Not Before: Dec 5 14:38:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2bd5f9437d9e5371c622cd735d80c0071cef5943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c1:b4:af:5c:b7:1a:46:bb:83:78:39:03:7a:
b9:30:2a:92:22:af:13:4e:ee:cc:53:83:12:33:ca:
68:6b:52:06:2c:53:2b:40:c9:71:c7:12:6f:66:f9:
70:6e:f6:b5:25:55:76:96:ac:59:26:22:0b:05:65:
72:c4:a8:89:fa:b7:f4:8a:76:2f:f2:1c:4b:c7:47:
11:55:66:88:18:74:d9:60:c7:03:fb:30:7d:ef:f3:
86:4f:e0:38:67:f6:fd:8a:78:02:c4:37:ca:57:74:
3f:51:98:43:5f:94:3e:6c:99:f9:7d:03:00:29:80:
44:83:f0:4d:66:97:d9:35:4a:c6:28:17:06:52:14:
b3:a9:a9:c6:49:b6:c5:16:fc:68:5a:3d:dc:9b:84:
a3:4b:6b:d2:64:a9:6e:43:02:d7:ba:71:58:f3:21:
cb:5f:03:e8:53:e3:2e:cd:29:88:24:e4:61:76:77:
c6:b2:d4:3d:79:c1:96:be:2c:59:08:c4:91:ee:05:
e3:49:a4:00:f2:bd:77:ef:53:b1:a7:82:59:8c:74:
ef:1e:4d:b7:8e:8a:29:6e:29:bc:11:85:b0:29:96:
c9:2a:58:dc:f2:2a:97:24:cc:66:c1:57:85:5f:03:
1e:d6:1b:ef:8a:83:0a:83:66:2d:84:74:14:58:5f:
52:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D5:F9:43:7D:9E:53:71:C6:22:CD:73:5D:80:C0:07:1C:EF:59:43
X509v3 Authority Key Identifier:
keyid:D3:8C:D9:44:05:52:E7:DA:B9:CD:56:31:D4:AB:87:24:51:53:5B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04zZRAVS59q5zVYx1KuHJFFTW3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4c3160-de12-4929-a483-7c65a852f092/1/K9X5Q32eU3HGIs1zXYDABxzvWUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4c3160-de12-4929-a483-7c65a852f092/1/04zZRAVS59q5zVYx1KuHJFFTW3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.144.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:40:03:5f:a5:e3:9f:b9:3a:35:25:f8:ec:ce:15:f1:6e:55:
03:82:3b:45:a8:ba:df:ab:40:2c:18:c4:30:76:4b:22:d2:f0:
2d:fc:93:4c:95:81:ee:92:af:6b:d4:22:9a:73:4a:8e:ca:0c:
2f:be:49:f2:7b:41:4b:4b:33:12:2f:1e:53:dc:a3:88:c2:3d:
16:f7:b4:4a:72:37:a4:24:1e:6d:3c:bf:1e:cd:dc:ba:19:f3:
be:41:8d:de:db:11:34:e8:1a:d9:3b:10:d7:09:82:86:cd:a5:
e2:1c:90:b7:82:01:82:bc:d4:7d:71:f2:b0:93:1f:e3:52:8e:
50:2c:88:e1:b9:b7:52:a7:aa:8a:e7:81:01:ba:5f:a0:48:dc:
04:db:89:94:f9:06:8a:30:74:5a:e2:02:66:38:f5:45:48:42:
50:d6:30:06:e8:6b:97:69:e2:5d:73:c6:c6:11:2b:fd:3e:fb:
66:7b:fc:8e:61:cc:5a:6c:7c:6c:eb:55:8a:df:66:5c:12:cc:
03:75:46:a3:dd:25:9b:ea:53:d6:4a:34:d4:b0:37:22:63:83:
fd:b3:79:02:42:4c:1a:da:bb:2e:c5:9a:91:d5:5a:c6:55:d5:
18:e9:ab:3f:31:85:b5:07:65:46:17:6a:ba:7f:32:f2:4b:9b:
bb:f8:19:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:14 2023 by rpki-client on console-fra.rpki-client.org