Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/_9T4CQChRJ_GNz634xIUhNfuMoo.roa
File: _9T4CQChRJ_GNz634xIUhNfuMoo.roa (raw, json)
Hash identifier: z9RUuCPOIvKLUyjXCbYQZsJgJjVXsFqZjskgPrqmutE=
Subject key identifier: FF:D4:F8:09:00:A1:44:9F:C6:37:3E:B7:E3:12:14:84:D7:EE:32:8A
Certificate issuer: /CN=6cdec7b2e9f866eac36bc31ca4c4ff62d53dd166
Certificate serial: 075A64B5
Authority key identifier: 6C:DE:C7:B2:E9:F8:66:EA:C3:6B:C3:1C:A4:C4:FF:62:D5:3D:D1:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bN7Hsun4ZurDa8McpMT_YtU90WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/_9T4CQChRJ_GNz634xIUhNfuMoo.roa
Signing time: Thu 20 Jan 2022 10:04:25 +0000
ROA not before: Thu 20 Jan 2022 10:04:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205813
IP address blocks: 185.204.192.0/22 maxlen: 22
185.204.192.0/24 maxlen: 24
185.204.193.0/24 maxlen: 24
185.204.195.0/24 maxlen: 24
185.204.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123364533 (0x75a64b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cdec7b2e9f866eac36bc31ca4c4ff62d53dd166
Validity
Not Before: Jan 20 10:04:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffd4f80900a1449fc6373eb7e3121484d7ee328a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6e:b8:42:72:17:87:3a:2d:1e:55:4a:d0:49:
93:ba:bf:2b:96:57:42:66:14:3d:a0:bf:77:ae:2c:
91:d2:ab:1f:c5:3c:db:29:79:74:a0:42:d5:1c:23:
de:c5:5e:9a:46:c2:83:28:6b:1b:b9:16:09:83:ec:
e9:9e:f3:57:44:22:e1:1f:03:6e:a0:e7:89:b6:9d:
f9:49:45:8b:a0:e2:79:4e:da:08:2c:bc:fb:f7:03:
be:a0:09:17:76:01:74:d7:0b:c4:e2:4e:ef:33:da:
63:1e:f2:59:f0:62:79:ad:a5:84:a3:ac:8e:ed:4b:
59:e8:07:6a:c9:c3:79:99:48:95:3b:37:7d:96:42:
28:c9:51:46:71:3e:71:cd:7f:82:f7:56:7d:7d:0b:
db:2e:61:61:bf:4a:67:88:76:77:cd:4f:82:8b:89:
55:67:76:33:83:6d:95:4b:2c:62:3b:67:27:b7:92:
0a:c8:d4:6b:02:f5:94:7c:4f:4e:d1:fd:05:54:c1:
97:f5:e7:9e:d8:05:7d:6f:3c:ca:ae:bb:00:65:ab:
ae:03:e9:4c:26:52:53:5c:d3:32:4b:c9:c3:10:b2:
ba:d3:23:94:c2:d2:f6:87:6c:b5:75:16:25:6d:84:
55:87:dd:7f:23:24:50:3a:e4:e8:a3:7a:d1:f4:9c:
89:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:D4:F8:09:00:A1:44:9F:C6:37:3E:B7:E3:12:14:84:D7:EE:32:8A
X509v3 Authority Key Identifier:
keyid:6C:DE:C7:B2:E9:F8:66:EA:C3:6B:C3:1C:A4:C4:FF:62:D5:3D:D1:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bN7Hsun4ZurDa8McpMT_YtU90WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/_9T4CQChRJ_GNz634xIUhNfuMoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.192.0/22
Signature Algorithm: sha256WithRSAEncryption
37:33:fe:56:f0:de:11:e0:2e:3d:a7:07:bb:13:68:9e:25:9e:
a8:04:c5:70:d8:9d:f4:13:68:c6:32:b9:39:c7:db:46:2b:af:
3c:77:0e:94:97:66:c4:58:49:c6:15:7d:9c:cc:68:97:c3:5a:
01:9f:a8:c8:2a:a0:97:81:d0:26:02:cf:20:60:95:38:a2:e7:
45:51:80:2d:ef:df:8e:a3:22:91:e6:ea:91:9b:1e:22:eb:93:
b0:0c:40:47:a9:5d:bf:80:f0:09:c9:6f:91:67:59:ac:eb:8f:
a7:3b:0e:18:50:b2:1f:d6:c2:09:33:3d:b4:ef:a3:0d:72:64:
26:ca:d5:92:a8:50:cd:48:f6:41:80:91:26:7d:9a:03:fb:22:
a2:b8:36:e5:85:b8:fa:20:ab:e3:28:af:45:f4:40:b7:ac:7e:
0b:97:7f:6b:56:88:fd:ed:9c:de:ad:6d:33:de:bb:5d:60:c4:
77:54:5a:ff:1d:02:86:d6:e9:d2:13:1e:e7:70:be:dd:4c:49:
99:b3:12:a5:f6:ef:f7:f8:db:9a:38:de:64:fc:62:5b:c0:4a:
88:bf:9d:b4:c7:85:da:6e:f2:ad:5a:52:07:c4:6f:22:df:e9:
08:ee:ea:ec:72:90:98:b9:0c:be:81:4c:cd:d9:41:91:9e:56:
37:3d:c5:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:54 2023 by rpki-client on console.sobornost.net