Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/0v9a8Ydsn8PbHqJZy_YjIquC2e8.roa
File: 0v9a8Ydsn8PbHqJZy_YjIquC2e8.roa (raw, json)
Hash identifier: d5OMZJ0YLpbI00VKelgN4j9TU6H8fUB10/OyECfn4Ns=
Subject key identifier: D2:FF:5A:F1:87:6C:9F:C3:DB:1E:A2:59:CB:F6:23:22:AB:82:D9:EF
Certificate issuer: /CN=4acfac8645a3c6f10042dc4a74d700d9d06af17a
Certificate serial: 0371D65D
Authority key identifier: 4A:CF:AC:86:45:A3:C6:F1:00:42:DC:4A:74:D7:00:D9:D0:6A:F1:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ss-shkWjxvEAQtxKdNcA2dBq8Xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/0v9a8Ydsn8PbHqJZy_YjIquC2e8.roa
Signing time: Sat 01 Jan 2022 14:05:27 +0000
ROA not before: Sat 01 Jan 2022 14:05:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.117.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57792093 (0x371d65d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4acfac8645a3c6f10042dc4a74d700d9d06af17a
Validity
Not Before: Jan 1 14:05:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2ff5af1876c9fc3db1ea259cbf62322ab82d9ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3e:ca:33:df:f5:90:12:2e:5b:ef:f4:b0:10:
47:e8:49:8b:f3:3c:d6:13:05:44:3c:b6:22:36:5c:
b6:37:c4:80:a9:09:d5:fb:32:91:eb:d7:42:6e:40:
a5:c0:ee:e0:e5:bd:2e:57:45:c2:bd:c4:55:92:93:
84:d7:26:cc:c7:e9:97:07:eb:fd:ef:c4:18:7d:72:
d6:e4:51:ec:9d:5e:2e:02:fd:1f:3a:af:1c:4e:28:
ab:85:9c:1d:9a:94:a8:5e:2b:f2:6e:e0:3a:07:5d:
6e:d8:e8:a5:bc:b2:12:12:70:e0:88:ec:46:7b:ca:
68:9f:80:46:84:27:e9:f1:fc:14:51:67:1e:35:84:
fe:d1:ed:cd:35:29:c7:9e:ed:93:0b:4c:06:a5:29:
d2:df:b4:23:60:88:12:09:9f:ab:f7:c4:32:b2:6b:
88:3a:75:84:ce:64:5f:68:48:37:2d:c3:38:a0:a1:
c5:d7:84:72:85:be:89:8c:bb:24:a4:c6:e9:78:de:
f0:d6:12:27:f9:79:43:93:66:ee:24:23:d1:bc:e3:
f0:35:d8:8b:37:8c:79:81:d9:10:24:b6:ee:31:09:
0f:64:07:e4:39:04:50:db:98:10:68:cf:62:e6:9d:
0d:19:3f:4b:9c:c8:8b:67:3c:28:b8:fc:f6:f4:3b:
d2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:FF:5A:F1:87:6C:9F:C3:DB:1E:A2:59:CB:F6:23:22:AB:82:D9:EF
X509v3 Authority Key Identifier:
keyid:4A:CF:AC:86:45:A3:C6:F1:00:42:DC:4A:74:D7:00:D9:D0:6A:F1:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ss-shkWjxvEAQtxKdNcA2dBq8Xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/0v9a8Ydsn8PbHqJZy_YjIquC2e8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/Ss-shkWjxvEAQtxKdNcA2dBq8Xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.225.0/24
Signature Algorithm: sha256WithRSAEncryption
65:a3:b2:82:e0:66:d4:7f:27:fa:96:79:1c:98:5a:f3:df:9f:
80:f3:a1:c9:09:c4:41:b9:3d:36:99:fb:b6:3a:c5:72:80:7e:
02:6f:40:7a:7d:64:dd:44:54:51:cb:28:75:e1:8c:1a:98:a8:
6c:7a:e0:eb:50:9c:7d:32:b6:9d:cb:e5:d6:29:10:07:26:90:
dc:10:8b:8d:51:96:96:77:20:7a:30:b7:87:a7:4d:e0:02:3f:
8c:bd:a8:14:0f:b5:bb:a7:57:ab:52:2f:de:83:f0:33:f6:c2:
3d:d7:6b:e1:64:9c:e7:54:87:75:31:0c:73:00:6b:f7:c8:21:
f8:26:19:9c:d0:93:27:25:d2:44:e4:1a:16:d1:fa:c5:12:d1:
02:0d:57:e4:00:3a:6b:0f:70:a7:38:a1:80:d5:e4:06:81:3d:
00:1c:bb:91:4e:ef:01:15:65:50:e2:0c:52:c7:cc:79:5e:68:
33:bf:cf:5c:de:dc:d4:e6:4a:65:cb:73:0c:c5:dd:3c:58:88:
ba:0a:25:1f:c4:7e:bf:d4:a6:5a:12:ef:c8:c6:25:87:e8:9a:
44:a0:02:9c:fa:65:e3:dc:b0:ab:d2:47:60:7b:a6:22:5c:e7:
74:81:ba:88:7a:f2:91:19:00:2f:2b:5a:17:00:f7:61:af:13:
a6:2b:6f:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:56 2023 by rpki-client on console-ams.rpki-client.org