Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/G9rSdRuWFc1J39TplCiNhXQsaLw.roa
File: G9rSdRuWFc1J39TplCiNhXQsaLw.roa (raw, json)
Hash identifier: mstYsa6sw10apPX3td1iljeLnFig8bCzdfGD4j+iM90=
Subject key identifier: 1B:DA:D2:75:1B:96:15:CD:49:DF:D4:E9:94:28:8D:85:74:2C:68:BC
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 054FC1C3
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/G9rSdRuWFc1J39TplCiNhXQsaLw.roa
Signing time: Tue 21 Jun 2022 11:17:49 +0000
ROA not before: Tue 21 Jun 2022 11:17:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209019
IP address blocks: 185.221.161.0/24 maxlen: 24
85.209.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89113027 (0x54fc1c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jun 21 11:17:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bdad2751b9615cd49dfd4e994288d85742c68bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6f:93:61:55:bb:47:74:d8:c6:b0:1a:a6:35:
71:95:7d:ab:3c:1d:aa:26:4b:8c:4b:71:60:01:86:
e5:fc:56:98:4b:c2:34:c4:65:bc:2c:e5:ee:9f:dc:
7f:4a:96:51:f9:cb:d5:8e:90:18:c6:34:33:4f:b9:
09:2a:3e:34:0a:21:6c:55:fe:a4:70:3b:3e:34:93:
7f:4f:ac:53:10:b4:ec:2f:e3:58:58:a9:11:28:60:
50:b0:82:76:a4:d7:96:f2:8a:07:8f:b8:c8:da:83:
3a:6f:13:f4:41:5a:8e:55:d0:e2:58:8e:4d:ee:2a:
a0:53:4b:5e:a1:b9:2e:19:02:57:2b:ed:3c:f3:61:
47:f5:41:be:2b:c0:72:7a:af:0a:9c:f0:67:f8:bb:
96:e9:5c:36:a5:ba:5a:d3:ea:37:0d:e6:f8:a1:fe:
04:e1:1a:a2:9f:98:a0:13:1d:bb:d8:a9:27:56:27:
94:6c:e9:b5:9e:b7:0a:34:10:0c:e0:5d:35:79:22:
3f:a3:30:c2:df:05:fe:95:20:d9:e6:02:7f:b3:67:
6b:9f:ce:35:e2:b4:95:db:ac:8c:08:39:2b:65:cc:
14:2c:13:b9:bf:54:96:8b:c6:58:c3:70:cc:7c:bf:
f4:68:01:fd:cf:69:3a:5d:b4:ff:a6:4a:44:02:e1:
30:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:DA:D2:75:1B:96:15:CD:49:DF:D4:E9:94:28:8D:85:74:2C:68:BC
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/G9rSdRuWFc1J39TplCiNhXQsaLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.1.0/24
185.221.161.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:00:c0:a0:ba:c1:aa:8f:a0:bd:d4:51:bf:0c:4c:5e:95:68:
b0:0f:f9:c6:2a:0e:7a:d1:25:4d:b6:8d:86:bc:32:fa:18:9e:
0e:d6:2e:64:cc:d1:61:b5:88:14:71:73:14:76:6d:ea:cf:56:
64:0b:d5:08:54:ef:8d:68:77:e7:1b:3c:53:17:b1:e2:38:d7:
2f:e4:f8:5b:d3:09:57:70:61:f2:cb:4a:78:71:85:fa:33:15:
5f:2b:d2:91:26:d6:9b:98:9c:d8:a6:5e:fb:a0:1c:1c:3d:0e:
ba:94:5c:d6:7d:be:07:02:73:f6:1e:92:b5:29:0f:63:d5:e6:
54:ea:5a:20:8d:66:e1:ff:05:11:56:4e:9a:da:7a:26:87:3b:
96:a9:72:dc:58:c7:0c:c4:bf:3a:f5:9f:95:4d:76:32:35:3c:
ea:27:2a:10:41:33:33:8f:5b:d4:fc:43:68:67:9c:30:49:88:
7a:a3:d7:ef:01:3d:d7:26:4f:23:da:07:35:3d:39:35:51:b4:
b7:30:6c:8f:8b:28:a3:ae:e4:0e:ce:74:73:6c:49:34:8f:ae:
54:ae:25:ca:aa:a5:d6:97:3b:3e:9a:08:32:9e:b3:70:34:14:
96:55:69:a3:bd:35:b0:c1:de:19:50:73:89:41:0e:50:41:d1:
1d:70:3e:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org