Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/j29CLz4uly5Ksh8aAO_IJt242WI.roa
File: j29CLz4uly5Ksh8aAO_IJt242WI.roa (raw, json)
Hash identifier: Qo7H4Qob1xIjcVqNawPiEW+pyuu8KDVtSVHZk3g0P4s=
Subject key identifier: 8F:6F:42:2F:3E:2E:97:2E:4A:B2:1F:1A:00:EF:C8:26:DD:B8:D9:62
Certificate issuer: /CN=25e4aed3ef72bee3141660d1149e16d079205f3c
Certificate serial: 108D9CA8
Authority key identifier: 25:E4:AE:D3:EF:72:BE:E3:14:16:60:D1:14:9E:16:D0:79:20:5F:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/j29CLz4uly5Ksh8aAO_IJt242WI.roa
Signing time: Sat 01 Jan 2022 10:02:10 +0000
ROA not before: Sat 01 Jan 2022 10:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48761
IP address blocks: 185.172.48.0/24 maxlen: 24
185.172.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277716136 (0x108d9ca8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25e4aed3ef72bee3141660d1149e16d079205f3c
Validity
Not Before: Jan 1 10:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f6f422f3e2e972e4ab21f1a00efc826ddb8d962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8a:a7:0a:bd:e1:0f:f5:c8:5f:bb:d6:b9:72:
4a:12:d8:98:a6:a1:58:fc:f5:e3:78:53:03:d3:d7:
d7:83:7a:13:03:f5:bf:b9:38:2a:b7:b5:47:5f:25:
0d:41:20:d0:dc:21:0c:ce:7c:f9:a3:50:ef:7d:1e:
f2:af:50:27:c2:94:47:1c:5b:7a:9f:de:74:79:28:
08:00:9c:b0:f7:2f:9e:f6:63:9a:a9:f8:17:d9:b0:
5a:79:f4:2d:3e:70:e9:bf:37:fd:25:61:49:c3:da:
77:80:66:16:71:aa:cd:90:5f:9c:0c:f0:3c:05:3b:
53:91:8f:da:53:27:4c:03:3f:3b:84:83:50:f4:5b:
3b:ef:fc:11:54:8b:e5:76:63:e5:fd:e6:07:a9:aa:
de:de:b4:75:88:8e:89:ab:00:a0:e2:b4:23:a8:0a:
a4:7f:9d:c4:1a:fa:db:81:60:dd:e9:59:97:37:6a:
17:d3:0a:83:69:fb:16:6b:ad:45:e9:64:51:18:92:
35:13:aa:c2:0e:63:13:75:b6:de:f8:1b:e6:ff:01:
84:95:7a:b8:ba:7a:99:f5:37:f0:1f:9f:08:0d:1c:
ed:95:79:2d:5b:d5:40:9e:3a:a3:dc:6c:6f:b1:8e:
f1:12:73:7f:b0:e0:b4:c4:81:76:40:c9:c8:3e:ee:
dd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:6F:42:2F:3E:2E:97:2E:4A:B2:1F:1A:00:EF:C8:26:DD:B8:D9:62
X509v3 Authority Key Identifier:
keyid:25:E4:AE:D3:EF:72:BE:E3:14:16:60:D1:14:9E:16:D0:79:20:5F:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/j29CLz4uly5Ksh8aAO_IJt242WI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.48.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:73:c4:c2:9c:4e:83:f5:ea:1a:fb:40:87:71:0a:55:98:ec:
5f:82:88:69:61:3e:1e:01:92:06:9d:8a:62:31:13:e0:67:51:
b7:6d:67:6d:54:38:c7:57:86:ae:98:f2:b6:d4:5a:cb:9d:51:
f3:24:40:ae:3b:79:77:3e:19:13:10:0f:bd:f9:8f:01:f5:e0:
c7:d2:76:e8:57:ed:7f:0f:6c:50:7f:f4:34:6f:f2:34:de:5e:
95:0f:f0:ae:07:bf:f4:25:c7:3f:8c:eb:58:05:3f:24:dd:60:
00:f4:e5:d4:9b:23:e0:45:e6:16:e6:2e:ed:41:a4:f0:82:ab:
eb:a8:f5:3b:2d:78:64:e1:3c:8a:b9:53:19:c4:f2:e1:30:ee:
25:a9:08:75:67:e6:ad:eb:25:fd:36:5c:23:98:c5:da:ff:4c:
90:e9:ce:25:14:ba:72:70:fc:fa:0f:53:bd:dc:27:2a:a1:30:
62:3f:61:1b:76:61:c4:2b:dd:07:6c:75:25:26:c9:78:93:8f:
2c:d7:28:54:b1:36:3f:6a:ca:ba:7a:16:8c:e5:c8:0e:39:58:
12:89:02:15:65:92:c5:83:87:b5:73:27:dc:69:a4:3d:2e:e5:
b3:12:fc:67:a5:67:13:72:1b:c4:bc:ae:6e:4b:35:f6:15:f5:
9c:98:5d:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:52 2024 by rpki-client on console-fra.rpki-client.org