Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/N49MKYmUkbh39UG5lLiWZHTIA1c.roa
File: N49MKYmUkbh39UG5lLiWZHTIA1c.roa (raw, json)
Hash identifier: ZWDduxDtfTDonFPeB+jXeJ/04xSxW7j+5EgjmFbUDLA=
Subject key identifier: 37:8F:4C:29:89:94:91:B8:77:F5:41:B9:94:B8:96:64:74:C8:03:57
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 02A00BAC
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/N49MKYmUkbh39UG5lLiWZHTIA1c.roa
Signing time: Thu 21 Apr 2022 09:26:35 +0000
ROA not before: Thu 21 Apr 2022 09:26:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39124
IP address blocks: 185.206.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44043180 (0x2a00bac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: Apr 21 09:26:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=378f4c29899491b877f541b994b8966474c80357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:be:fb:db:b3:5e:12:fa:22:9a:5c:4e:65:0d:
76:f7:9d:be:18:6e:57:72:a5:cd:aa:a7:39:29:be:
d5:47:0b:fd:fb:f0:5f:96:53:28:6a:5a:e1:29:4a:
cf:6e:64:ce:04:38:33:e4:67:4b:d6:89:ac:6d:22:
80:16:21:8a:cc:a7:86:1c:55:97:e0:94:dc:db:2a:
08:09:b4:07:30:c5:67:21:dd:4c:e7:18:95:21:34:
f2:2f:9c:03:ad:34:91:22:2c:c2:86:8b:88:45:ad:
1e:0b:fa:aa:4b:74:b2:68:fd:4d:40:49:88:dc:45:
d5:e6:8d:93:34:fd:25:91:54:08:1b:44:3a:03:9a:
b8:60:3a:1c:c4:48:d2:34:2b:97:2e:73:9c:a8:3c:
b0:4d:af:cb:69:3b:45:98:87:d4:c9:16:82:a8:81:
7c:a9:b4:00:c5:28:af:0d:05:24:ec:25:ee:c8:36:
4f:76:a7:a4:5e:a2:f1:b7:70:a1:52:33:db:73:61:
34:95:74:61:13:08:c7:8b:d8:c9:43:80:44:90:7f:
fb:68:3b:31:27:7e:83:ac:18:a6:bd:1d:65:a0:7c:
17:81:31:32:ff:94:cf:37:54:f5:43:04:d4:7f:9e:
92:6d:6c:60:8d:6a:3a:b0:02:f4:4c:8a:b4:29:c0:
bc:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:8F:4C:29:89:94:91:B8:77:F5:41:B9:94:B8:96:64:74:C8:03:57
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/N49MKYmUkbh39UG5lLiWZHTIA1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.54.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:fc:97:df:75:a4:7f:8e:6e:66:dd:92:89:42:0c:09:80:33:
39:3c:c8:aa:a2:05:fb:1b:88:2a:53:8b:67:aa:78:8a:b9:a1:
36:4e:d1:63:75:00:ea:cb:11:e0:83:39:6f:9a:3f:6b:37:c3:
02:02:e7:08:e0:6a:5d:a1:c0:48:ee:cf:ee:e0:c5:e2:66:6d:
4c:8c:bc:92:63:bd:98:b5:dd:ec:d4:7d:f9:ef:e9:cb:f7:87:
bf:bf:99:3f:83:81:b7:50:fb:c3:ae:49:5e:c3:b2:b3:6b:89:
ed:77:1c:4e:31:8c:bc:44:43:37:10:c5:9e:da:40:59:e4:6b:
d8:2b:af:d9:9a:b1:47:e6:c0:dc:9e:97:52:30:45:19:90:77:
76:16:3c:b6:e3:d0:c4:ff:02:6d:1e:f8:5b:de:73:d8:3d:22:
29:46:4a:6d:71:d5:e9:ba:0e:57:7a:a0:4a:6c:23:76:34:fd:
16:7d:64:1a:96:08:90:ec:9c:64:e5:c1:29:e6:6c:d7:67:9f:
67:df:f9:f0:35:10:60:d7:5b:70:e0:ba:ce:a7:de:35:1f:58:
7b:0e:76:10:1c:46:14:2c:fc:86:e8:ff:a4:f5:36:23:e3:3b:
78:e8:d2:87:1d:be:7c:41:1d:b4:c1:c1:f3:35:60:03:10:72:
3b:be:f4:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:59 2024 by rpki-client on console-ams.rpki-client.org