Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/9NfHJXhEnY7WnG2hiZmE7GkkDFs.roa
File: 9NfHJXhEnY7WnG2hiZmE7GkkDFs.roa (raw, json)
Hash identifier: IUKFRPDPnkvQpO9Lk7GxFdr/YYw2ai1bpfL49l9uL2s=
Subject key identifier: F4:D7:C7:25:78:44:9D:8E:D6:9C:6D:A1:89:99:84:EC:69:24:0C:5B
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 031D7510
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/9NfHJXhEnY7WnG2hiZmE7GkkDFs.roa
Signing time: Sat 01 Jan 2022 16:04:16 +0000
ROA not before: Sat 01 Jan 2022 16:04:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43590
IP address blocks: 185.128.105.0/24 maxlen: 24
185.188.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52262160 (0x31d7510)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4d7c72578449d8ed69c6da1899984ec69240c5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d8:09:e3:ce:5f:bd:f7:f5:85:30:00:5b:25:
67:2d:d1:41:00:61:84:f0:4d:e8:64:77:af:88:1c:
90:08:56:9a:16:a5:bb:38:a2:f9:9e:ca:31:3d:ab:
fe:a3:f8:5a:58:e7:45:15:09:73:d9:5f:82:4e:f6:
a0:ba:cd:bd:f7:6b:69:a4:a9:6b:5f:61:e7:1f:84:
b0:40:9a:75:44:dc:67:7c:23:3f:d2:bd:b7:ef:09:
2c:84:77:d5:43:c3:99:c4:d5:0f:b0:8a:f8:f2:e6:
9b:76:f2:4f:aa:97:fb:bd:56:d2:b2:f7:a8:2c:fd:
f3:3d:2d:41:4d:4a:6f:05:93:1c:3f:b2:e8:80:55:
03:37:77:92:42:ff:95:9e:a4:56:91:b2:e8:50:18:
ed:30:00:42:2e:e6:9f:21:98:f8:f1:15:ad:af:1e:
72:f1:36:ee:13:6f:70:20:60:1e:52:25:52:38:07:
1d:d8:44:c8:8c:d5:36:f5:d9:1b:0c:d9:9a:2e:dc:
bb:fe:2d:21:ad:2e:4d:4f:4c:7a:90:00:b9:29:b3:
d8:1c:ab:7b:a9:46:29:92:51:73:b8:f7:68:f3:a8:
59:96:08:77:ce:c9:d3:ad:1d:65:ab:f2:8d:c3:a2:
dc:08:1e:51:8d:ee:25:6f:13:ff:53:e4:8b:46:1d:
4d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D7:C7:25:78:44:9D:8E:D6:9C:6D:A1:89:99:84:EC:69:24:0C:5B
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/9NfHJXhEnY7WnG2hiZmE7GkkDFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.105.0/24
185.188.181.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:3e:4c:84:e5:fb:99:fb:9b:13:0e:d4:e4:39:21:38:03:e5:
b2:37:d1:5f:a8:8f:9b:8e:01:7d:b7:ac:26:1d:3f:10:65:62:
9a:43:54:af:3f:f1:28:c2:30:fb:1b:f4:fa:6e:73:90:2c:d9:
dd:a2:2a:d1:40:87:33:0a:10:e1:1c:d5:11:71:02:4a:9e:5a:
42:fc:28:ff:35:31:be:d8:80:43:6d:d6:64:8f:08:d8:b3:1b:
a9:be:ba:9a:8d:2c:b0:03:26:6e:33:cc:c3:2e:d8:9d:9f:f2:
30:27:ef:80:72:5f:22:a3:d3:ef:f7:a9:1e:08:94:69:68:84:
59:1e:1d:5e:62:8e:2e:62:ee:89:d5:46:8b:b5:9d:4d:6f:5c:
91:33:7b:8b:0d:fd:45:e4:e5:20:c3:77:f8:8a:3f:e4:71:57:
33:86:0f:ba:ea:39:e3:44:28:65:25:29:34:67:2d:1c:2d:54:
48:c9:12:0d:c7:37:0c:94:b2:ff:4f:26:00:d9:b0:44:be:b0:
84:8a:da:83:97:b4:0f:2c:dd:86:85:60:cb:e9:3e:d2:fd:59:
db:9a:db:92:06:fd:3a:82:38:e6:64:70:a7:98:eb:27:f4:21:
2d:bf:a2:59:be:b3:e3:bd:71:22:ee:3e:2e:2e:a1:d0:fe:42:
45:8b:be:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org