Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/bbMfOhUMAjGRiE3o3Twic-P8aXk.roa
File: bbMfOhUMAjGRiE3o3Twic-P8aXk.roa (raw, json)
Hash identifier: ug4JrhCjc5NOp5JX7gVzHOWTkuwkhG9CqqWYM1JQ3pQ=
Subject key identifier: 6D:B3:1F:3A:15:0C:02:31:91:88:4D:E8:DD:3C:22:73:E3:FC:69:79
Certificate issuer: /CN=dc4e453affe895b6452b84027437c5c00fd37067
Certificate serial: 0184CCE44380197ABDFDBDD3BC61A4513C11
Authority key identifier: DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/bbMfOhUMAjGRiE3o3Twic-P8aXk.roa
Signing time: Thu 01 Dec 2022 08:53:42 +0000
ROA not before: Thu 01 Dec 2022 08:53:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206309
IP address blocks: 185.179.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cc:e4:43:80:19:7a:bd:fd:bd:d3:bc:61:a4:51:3c:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc4e453affe895b6452b84027437c5c00fd37067
Validity
Not Before: Dec 1 08:53:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6db31f3a150c023191884de8dd3c2273e3fc6979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b7:aa:45:f9:59:ee:d8:1e:4e:21:1d:b3:fb:
d0:3c:3d:4e:45:45:da:3b:db:e1:07:ea:e9:66:8a:
88:52:13:19:7e:d8:50:d8:b6:3d:6e:1f:d8:a9:66:
a0:1f:98:dd:9f:58:c2:35:60:92:b0:62:16:f3:b6:
71:13:2b:4b:fe:94:1a:24:d7:f0:00:a4:82:bb:05:
44:d7:da:09:65:e1:1c:2f:9e:a1:b1:a1:c2:1c:b0:
9a:91:42:44:dc:14:6c:b2:e6:ae:38:8c:db:24:91:
7a:96:35:21:80:a3:9b:67:7c:e5:ae:c7:ba:ca:4b:
4c:b5:e4:36:4f:b1:df:4a:00:03:a4:4b:99:4e:5b:
49:78:b0:d2:75:24:6e:ec:8e:11:ab:93:3b:ee:f2:
f3:43:3d:96:9b:a4:6b:0e:c4:03:2f:3f:17:62:54:
10:7c:8c:75:7c:38:0b:8e:ee:31:dc:1e:48:d3:90:
04:1d:46:ce:eb:86:bc:b6:f1:1c:be:73:ea:fb:7c:
ee:10:d2:8d:16:16:85:c4:b1:43:59:bc:a7:46:d4:
69:d8:08:ec:2b:cf:ae:f4:a5:a3:bc:24:1e:6f:8e:
9f:0a:ef:59:83:f3:11:45:ee:93:32:a9:2b:02:23:
5f:29:bc:75:b3:b4:5d:93:28:42:2e:c0:51:8a:3b:
73:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B3:1F:3A:15:0C:02:31:91:88:4D:E8:DD:3C:22:73:E3:FC:69:79
X509v3 Authority Key Identifier:
keyid:DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/bbMfOhUMAjGRiE3o3Twic-P8aXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/3E5FOv_olbZFK4QCdDfFwA_TcGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.43.0/24
Signature Algorithm: sha256WithRSAEncryption
11:76:69:5c:cb:43:a4:85:56:99:49:b5:9b:54:8a:35:29:ee:
13:d4:05:71:a6:4f:b1:ad:58:ad:e0:6a:5e:9d:af:02:88:a0:
99:11:25:05:2a:51:0a:c8:03:94:66:04:e3:af:c8:53:8f:72:
b1:29:c0:51:c7:56:d6:84:8e:85:0a:9e:3a:ce:fa:89:f1:2e:
a5:ab:fb:b2:c7:1f:72:d5:f0:37:83:11:97:55:ab:e7:b7:e1:
29:d7:bd:89:9d:97:4b:39:a7:a6:b5:e8:e4:e8:7a:5f:b3:e4:
a9:9b:5b:22:20:73:e3:1f:06:34:da:c7:0b:a8:54:a6:18:b9:
62:e1:97:4a:9c:3f:4f:f7:a6:61:14:37:90:ba:18:ed:1f:fb:
a9:fb:d5:31:02:1d:ea:19:08:2c:96:10:ef:fe:73:52:d0:0e:
ac:36:86:19:cf:f2:1a:10:87:5d:5e:97:a2:a5:fb:85:46:77:
dd:7f:62:16:81:fc:9e:4b:55:ad:f5:36:d2:d2:ae:e4:a6:01:
03:79:e7:28:82:4d:a7:c9:0a:74:6e:31:ce:39:28:aa:87:32:
72:14:e2:1e:14:fd:a4:3a:d4:05:8d:fb:29:37:52:f3:a2:c8:
84:3f:c7:d0:c9:e6:aa:04:22:80:0f:ed:85:01:88:65:92:5b:
6f:74:15:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:56 2023 by rpki-client on console-fra.rpki-client.org