Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/CfvFQIIwf1tkaOm7RmIrZz9Gq3Y.roa
File: CfvFQIIwf1tkaOm7RmIrZz9Gq3Y.roa (raw, json)
Hash identifier: oUgAbGUEKrY7jqYo2ebFJcO+Ve/nMXi74rTBsUY29t8=
Subject key identifier: 09:FB:C5:40:82:30:7F:5B:64:68:E9:BB:46:62:2B:67:3F:46:AB:76
Certificate issuer: /CN=86ee201c65d655ee9cfe251f951ea91bba154567
Certificate serial: 0EEC8B25
Authority key identifier: 86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/CfvFQIIwf1tkaOm7RmIrZz9Gq3Y.roa
Signing time: Sat 01 Jan 2022 14:59:34 +0000
ROA not before: Sat 01 Jan 2022 14:59:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49544
IP address blocks: 185.201.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250383141 (0xeec8b25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86ee201c65d655ee9cfe251f951ea91bba154567
Validity
Not Before: Jan 1 14:59:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09fbc54082307f5b6468e9bb46622b673f46ab76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8f:fd:ca:41:d9:e7:dd:61:a4:b2:3b:10:d7:
97:43:f5:5b:e7:0a:01:06:c8:94:67:b2:77:85:36:
3b:2c:d3:b4:06:a3:4e:af:de:cf:96:cc:4a:48:65:
a4:9d:5d:e6:a1:e5:ba:28:97:5f:c2:4f:ba:d6:a9:
c6:f8:2f:71:33:3f:54:07:01:4a:a5:9f:d6:0a:c9:
01:f0:39:bd:7b:ee:db:ec:78:08:db:42:4e:08:a3:
a3:4f:52:19:ff:b7:dc:31:fd:26:92:bd:e7:9e:e0:
10:42:a6:88:3c:1e:a5:1a:90:ab:4a:0b:98:bb:33:
ab:d4:91:36:75:1d:9a:c3:ae:d0:3e:30:bd:27:8e:
3a:c2:07:64:c1:ad:ed:79:22:f2:6a:a0:38:b0:f0:
cb:a2:e1:0c:02:52:ae:d6:82:50:87:8a:e6:78:6b:
32:0b:8a:aa:81:92:89:f6:59:72:0b:af:d6:98:12:
dd:65:e7:95:f7:f1:1c:e4:b7:f8:28:f2:23:69:0b:
00:3e:5a:00:31:3e:68:7c:07:2a:c0:b7:db:a7:c5:
d4:d7:c7:6c:18:38:93:96:1e:35:c2:63:a6:b5:67:
11:6e:4b:ac:65:50:97:0a:b0:65:de:84:c3:8f:7f:
12:c1:a2:5f:09:c5:3f:b9:f3:fa:93:9d:07:2d:e1:
dd:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:FB:C5:40:82:30:7F:5B:64:68:E9:BB:46:62:2B:67:3F:46:AB:76
X509v3 Authority Key Identifier:
keyid:86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/CfvFQIIwf1tkaOm7RmIrZz9Gq3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/hu4gHGXWVe6c_iUflR6pG7oVRWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.17.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:24:e5:77:0b:9d:aa:32:03:2d:47:57:6f:39:c4:de:27:94:
5f:ff:91:a2:0e:d2:f8:40:03:1d:57:69:c0:6e:ce:27:e4:33:
02:03:9c:54:55:35:6a:3b:1e:7f:20:39:54:ee:23:b9:24:13:
3c:dd:51:47:d3:f8:1e:77:10:6c:b2:23:2f:de:c2:ee:46:69:
5e:f0:7e:2d:ed:d6:6e:25:f4:5c:58:16:21:57:d2:78:11:a1:
f0:a7:1f:0b:b8:8c:30:45:83:eb:92:76:b3:06:65:91:ab:b7:
39:8b:fe:8c:44:f6:c6:3a:d0:7a:6e:c4:39:c1:6b:d1:92:a5:
80:93:88:7c:47:eb:78:00:da:b6:58:e1:f2:cb:ac:5a:fc:7f:
eb:8a:f4:97:97:97:1e:20:32:df:fd:67:4e:e6:70:0d:7b:df:
4f:a2:82:d1:10:3e:57:f4:1f:5d:f9:7c:02:21:98:34:be:b6:
2d:63:60:a1:81:96:99:61:08:b9:cd:4a:0b:76:4b:78:37:d5:
91:92:1b:b3:31:7d:81:b1:e9:5c:7c:7c:56:d9:5b:6b:25:0b:
04:a1:45:f0:32:44:db:2c:8a:3d:56:44:b6:e1:34:97:17:5e:
74:e9:a0:5d:34:c7:fd:f3:9c:b1:93:1f:fd:50:f5:59:03:cb:
a2:30:89:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:18 2024 by rpki-client on console-fra.rpki-client.org