Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1yzJqojiJ62nfSws5Coo1Fs-YHw.roa
File: 1yzJqojiJ62nfSws5Coo1Fs-YHw.roa (raw, json)
Hash identifier: 15GDLTry0Fw7KEh12/5Wd4uIDZA6OuBRSRbJjPHD3DM=
Subject key identifier: D7:2C:C9:AA:88:E2:27:AD:A7:7D:2C:2C:E4:2A:28:D4:5B:3E:60:7C
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01853479214730E6E632A9ADC3A68B31234D
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1yzJqojiJ62nfSws5Coo1Fs-YHw.roa
Signing time: Wed 21 Dec 2022 11:37:11 +0000
ROA not before: Wed 21 Dec 2022 11:37:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210097
IP address blocks: 185.179.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:34:79:21:47:30:e6:e6:32:a9:ad:c3:a6:8b:31:23:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 21 11:37:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d72cc9aa88e227ada77d2c2ce42a28d45b3e607c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:34:b3:62:e3:66:7e:4b:32:b5:45:c9:6d:3d:
82:68:0d:82:9a:22:39:7a:42:45:c9:e8:b6:ae:c4:
dc:e3:ad:22:f7:df:56:6b:24:6a:9f:8e:f1:88:11:
9a:4f:da:df:82:4c:a3:57:9c:14:43:b9:98:69:f7:
f6:a0:ae:5f:da:2a:4e:5d:47:b0:8b:34:ae:2c:68:
4b:40:ca:36:0e:82:e3:bd:2b:40:70:9c:8d:9d:bc:
36:84:2d:6f:15:ab:cf:2a:be:8c:8c:44:13:98:ce:
3f:04:0c:83:f2:62:ef:4f:49:a7:e0:e8:63:14:25:
c5:1d:34:db:2b:49:d4:f2:2e:b5:a1:39:11:ca:a1:
ff:18:1b:bd:ac:65:b2:ea:9e:1b:67:c4:8b:9d:bb:
7e:9a:b6:a6:3d:bc:25:71:a6:a3:53:58:90:b4:0e:
c9:15:c0:56:e2:1c:82:49:60:f4:6b:fd:bc:b5:01:
cf:3a:72:27:21:5c:b8:99:68:4a:64:4f:81:d8:35:
cd:36:7e:3e:6c:13:2a:4f:8f:c5:c3:ac:db:07:12:
d9:2b:9a:09:e0:53:95:80:ef:29:41:3f:bb:f0:28:
49:05:d1:ca:a7:34:48:da:80:88:67:17:5b:6d:aa:
33:42:2c:40:d6:4e:d7:a1:f9:1c:da:51:e2:a5:91:
91:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:2C:C9:AA:88:E2:27:AD:A7:7D:2C:2C:E4:2A:28:D4:5B:3E:60:7C
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1yzJqojiJ62nfSws5Coo1Fs-YHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.244.0/24
Signature Algorithm: sha256WithRSAEncryption
51:23:0c:37:d7:df:4b:fa:a9:91:88:13:26:e4:21:4f:d5:66:
a0:0d:9b:17:d9:2c:09:46:f5:5e:cb:bd:87:b8:25:1c:79:c1:
12:3a:5b:64:6c:e4:9f:6c:32:a6:11:e3:46:cf:73:84:be:41:
ff:5d:95:33:b1:27:d3:ec:1c:8a:c7:8d:94:15:11:12:d8:92:
b7:7e:80:45:d8:4a:5c:61:ec:b5:d2:b2:b4:b2:50:95:d8:f2:
07:54:22:92:1c:84:d9:7f:c9:90:95:2f:f8:d5:e0:1c:63:28:
90:a6:01:92:e8:46:4c:11:a7:34:81:eb:dd:f6:c1:f2:2f:23:
d0:40:ad:40:53:fb:22:f0:f9:50:2f:bb:89:0c:03:21:b8:6f:
e3:d2:54:51:aa:8d:e8:1d:82:b0:4d:03:07:79:18:d4:10:13:
94:ee:a2:7b:91:a9:c1:35:41:2e:ff:fb:55:05:9d:4a:f2:31:
b0:f5:05:d2:d5:f3:9c:9f:5b:b3:44:29:6a:82:ae:db:70:9c:
1d:44:d0:a6:ad:aa:95:9d:ab:1f:91:52:1c:36:80:75:57:f3:
b7:84:2a:39:30:23:c7:29:ae:1e:b2:de:02:47:16:2e:df:9e:
31:b1:fc:3a:4c:1f:33:b7:75:84:a0:1c:1f:67:1e:bb:24:7c:
a6:bf:0e:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org