Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/49e426-90cc-4586-90f4-6cdbc2122749/1/AT13xHYzC8dVQhSsJDj49AM0hZ4.roa
File: AT13xHYzC8dVQhSsJDj49AM0hZ4.roa (raw, json)
Hash identifier: 9fi47JiMdEyyVLcHtakiSAyJM8FHDkalMsbNXUY0y24=
Subject key identifier: 01:3D:77:C4:76:33:0B:C7:55:42:14:AC:24:38:F8:F4:03:34:85:9E
Certificate issuer: /CN=5e9ed991ee6bc4bb48a8b75011d0481917e0f3f7
Certificate serial: 01856FF02FB03B83ACD6D58E1B4CD1C0BD2D
Authority key identifier: 5E:9E:D9:91:EE:6B:C4:BB:48:A8:B7:50:11:D0:48:19:17:E0:F3:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xp7Zke5rxLtIqLdQEdBIGRfg8_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/49e426-90cc-4586-90f4-6cdbc2122749/1/AT13xHYzC8dVQhSsJDj49AM0hZ4.roa
Signing time: Mon 02 Jan 2023 00:44:49 +0000
ROA not before: Mon 02 Jan 2023 00:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197216
IP address blocks: 185.236.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:2f:b0:3b:83:ac:d6:d5:8e:1b:4c:d1:c0:bd:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9ed991ee6bc4bb48a8b75011d0481917e0f3f7
Validity
Not Before: Jan 2 00:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=013d77c476330bc7554214ac2438f8f40334859e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b3:62:51:e9:5b:3d:20:0c:83:83:9a:51:9e:
1f:b8:e5:53:92:37:b7:9c:10:06:f8:6d:43:53:55:
85:f6:e3:0a:0f:ed:2e:14:c9:74:ad:79:62:dc:71:
a0:09:03:3b:fa:1c:86:f5:c7:67:c0:a3:a3:c5:62:
52:77:a0:0b:e0:bc:59:37:52:23:97:34:62:e1:38:
00:14:b6:86:e9:a4:e2:c4:2b:78:b4:e1:aa:ec:bc:
5a:40:d4:19:7e:2c:e3:3c:15:fa:d2:e7:25:8b:ff:
f3:24:e3:a5:32:02:df:87:5d:6f:98:1b:aa:d4:0a:
12:5c:2c:7c:1e:e3:ef:80:ef:23:e1:e9:ed:5e:fd:
73:25:1c:3a:76:f7:4d:d4:8c:30:7c:eb:b8:b7:6d:
43:f7:b5:61:72:ce:99:33:cb:1d:cf:9b:8c:91:d3:
61:d3:24:49:55:86:c6:90:6d:81:5e:82:1c:23:e6:
5a:92:4e:34:e9:83:8a:e2:54:40:ff:56:a6:3a:c2:
50:38:4e:93:da:99:18:ce:2a:a8:56:19:f8:64:6d:
86:da:55:e2:3e:05:d2:a6:ba:6c:eb:e2:cd:55:6c:
d0:4a:6a:47:2b:ff:7d:0f:de:31:d9:87:e9:ae:a3:
65:e3:3e:b0:07:22:21:ea:73:3f:a9:d5:d8:bb:18:
9f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:3D:77:C4:76:33:0B:C7:55:42:14:AC:24:38:F8:F4:03:34:85:9E
X509v3 Authority Key Identifier:
keyid:5E:9E:D9:91:EE:6B:C4:BB:48:A8:B7:50:11:D0:48:19:17:E0:F3:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xp7Zke5rxLtIqLdQEdBIGRfg8_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49e426-90cc-4586-90f4-6cdbc2122749/1/AT13xHYzC8dVQhSsJDj49AM0hZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49e426-90cc-4586-90f4-6cdbc2122749/1/Xp7Zke5rxLtIqLdQEdBIGRfg8_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.180.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:67:60:bb:e4:38:f2:a5:b1:af:81:9f:cd:7e:ae:9f:1f:9b:
12:03:74:09:5c:6d:e9:ea:95:1d:02:17:dd:e9:cf:35:c4:e8:
a7:60:cb:03:16:4d:e8:d3:41:f2:e2:56:04:41:ba:a2:61:bd:
e3:a4:a3:9d:90:78:6a:5d:77:53:fb:f4:62:3c:e9:53:6d:ae:
ef:0b:69:c5:08:a0:92:37:dd:af:8a:20:78:31:13:8f:09:49:
07:75:b5:a0:3d:af:17:16:62:5e:06:6d:5c:e5:00:1f:a9:74:
fc:c0:3a:ee:b6:e3:89:9e:97:65:c2:ed:2d:68:f3:1f:80:0e:
18:73:f5:f5:e8:77:b2:e8:d7:73:43:69:c8:11:fd:a3:53:7e:
49:29:c8:b8:6e:0a:26:dd:18:7b:a8:66:78:e5:8c:13:63:cb:
77:60:96:22:5f:83:bc:a0:c0:9b:48:ab:59:5e:ee:a9:21:ca:
71:4c:64:7e:ee:3e:96:b0:37:2f:df:52:06:d7:17:4f:31:c7:
87:71:5e:7e:4b:c0:27:15:f2:cb:e7:32:a0:ce:57:e3:5d:b8:
ee:8d:2f:73:94:83:94:ad:bc:c8:ec:bf:3e:d7:3f:44:6b:91:
8c:67:7f:e7:0d:b5:62:f5:67:05:2d:26:e8:bb:b8:b0:bc:d0:
8a:1e:01:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:04 2025 by rpki-client