Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/31a0ec-d9b8-49e4-b436-8b4215e58028/1/n2MF7qfuwp0Yh81pSoUMfvkMww4.roa
File: n2MF7qfuwp0Yh81pSoUMfvkMww4.roa (raw, json)
Hash identifier: lLY7PVEBJIg46sGvY4eIgaqbW5TcVMI0SJQksDU6n8M=
Subject key identifier: 9F:63:05:EE:A7:EE:C2:9D:18:87:CD:69:4A:85:0C:7E:F9:0C:C3:0E
Certificate issuer: /CN=b00e25f55ebbacb069f103acb0866703835cfccd
Certificate serial: 02F48BAC
Authority key identifier: B0:0E:25:F5:5E:BB:AC:B0:69:F1:03:AC:B0:86:67:03:83:5C:FC:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sA4l9V67rLBp8QOssIZnA4Nc_M0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/31a0ec-d9b8-49e4-b436-8b4215e58028/1/n2MF7qfuwp0Yh81pSoUMfvkMww4.roa
Signing time: Sat 01 Jan 2022 01:51:08 +0000
ROA not before: Sat 01 Jan 2022 01:51:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35369
IP address blocks: 185.197.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49580972 (0x2f48bac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b00e25f55ebbacb069f103acb0866703835cfccd
Validity
Not Before: Jan 1 01:51:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f6305eea7eec29d1887cd694a850c7ef90cc30e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9a:8e:27:e1:7e:1b:ae:b9:9b:9b:75:05:d7:
b1:ab:8c:d5:5d:fe:37:e5:71:cd:d2:e9:17:ed:47:
83:24:68:c5:b0:2c:5b:0e:76:d4:00:76:91:45:cc:
04:98:47:f6:4f:36:45:36:1c:1c:26:37:0f:7c:c2:
27:c4:2c:86:d9:0e:06:f6:ae:37:46:43:56:75:61:
3c:bc:aa:87:df:ba:d9:b3:f4:ed:31:34:ba:09:92:
2e:59:53:bd:e3:83:6d:e6:c6:e8:b7:cc:9a:cb:88:
66:cd:f4:69:d9:a0:fa:f8:0e:7f:70:d0:96:3d:74:
4b:ca:6e:00:ff:fc:0d:78:d3:5c:f6:9e:60:b4:06:
bd:b0:ea:97:ce:bc:d8:46:24:37:ae:f2:7a:9a:01:
ea:4a:69:87:4c:b0:37:03:f1:0b:4a:00:3b:d1:ac:
05:18:7b:72:f0:94:78:cd:37:d6:31:4b:a0:93:5f:
11:b4:f0:48:d7:93:57:52:1f:90:db:45:f7:80:50:
9f:72:c3:0a:ae:0f:8c:47:8d:ac:76:56:2d:0a:5b:
73:e9:15:c9:28:83:a2:d3:35:c5:bf:6b:ee:81:57:
fb:60:18:10:9f:70:82:e6:64:63:1d:68:ab:14:69:
b2:76:c1:f2:b1:dc:77:9e:43:35:0c:71:98:b5:5c:
82:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:63:05:EE:A7:EE:C2:9D:18:87:CD:69:4A:85:0C:7E:F9:0C:C3:0E
X509v3 Authority Key Identifier:
keyid:B0:0E:25:F5:5E:BB:AC:B0:69:F1:03:AC:B0:86:67:03:83:5C:FC:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sA4l9V67rLBp8QOssIZnA4Nc_M0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/31a0ec-d9b8-49e4-b436-8b4215e58028/1/n2MF7qfuwp0Yh81pSoUMfvkMww4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/31a0ec-d9b8-49e4-b436-8b4215e58028/1/sA4l9V67rLBp8QOssIZnA4Nc_M0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.181.0/24
Signature Algorithm: sha256WithRSAEncryption
41:92:12:50:78:0b:61:cc:85:59:c5:0e:7f:16:98:25:eb:38:
ab:e8:32:37:63:68:8d:15:d0:d8:3c:5f:30:ca:6c:3a:83:36:
68:54:fa:0f:7a:ed:c7:fb:a8:95:cb:5d:46:8f:60:dc:f1:f3:
12:b0:e4:77:cc:b8:5e:e2:37:ef:e9:49:32:98:35:ee:d0:3e:
98:9b:af:a2:eb:5d:96:7e:65:1c:72:a7:7d:b9:d9:81:ee:96:
60:c5:ee:e9:ed:54:ca:c5:90:d4:fe:83:ba:88:d7:34:d4:f8:
f9:91:63:b9:3b:d2:16:ea:d1:62:0e:30:4a:88:d0:82:df:cd:
97:a7:8d:54:66:56:ef:23:6b:3a:ca:7a:65:ef:e3:0c:32:fe:
43:b5:11:75:8b:b3:43:b3:6b:a6:79:a6:ea:dc:74:7f:49:0a:
5a:e3:0c:9a:3a:6a:17:56:f8:ee:77:f4:ab:72:19:e3:39:bc:
38:f1:a6:d8:19:7e:cc:e7:4c:e5:09:54:b2:9c:50:2a:25:0f:
10:39:93:ae:57:48:98:04:87:c2:a2:51:bd:ee:77:91:2f:61:
7e:a4:b4:7c:d8:39:0a:15:36:c7:23:b6:4b:08:4b:73:40:c0:
08:8c:5b:78:69:22:06:ba:f0:41:22:46:53:2d:71:13:75:e9:
4a:ee:66:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:58 2024 by rpki-client on console-fra.rpki-client.org