Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/f64637-c7df-4a7c-bd16-2d7b9e917e87/1/eh1xzZdWgviGQ_cIl8SU0dWqpuM.roa
File: eh1xzZdWgviGQ_cIl8SU0dWqpuM.roa (raw, json)
Hash identifier: xYhZ8RHDbRzFFsx6vTHzwjhgnpcB1sKMcCaLfX9pKkw=
Subject key identifier: 7A:1D:71:CD:97:56:82:F8:86:43:F7:08:97:C4:94:D1:D5:AA:A6:E3
Certificate issuer: /CN=3441eb5d7addba0e5afbf82a8c7d301ae41b9185
Certificate serial: 0E6C66FF
Authority key identifier: 34:41:EB:5D:7A:DD:BA:0E:5A:FB:F8:2A:8C:7D:30:1A:E4:1B:91:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NEHrXXrdug5a-_gqjH0wGuQbkYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/f64637-c7df-4a7c-bd16-2d7b9e917e87/1/eh1xzZdWgviGQ_cIl8SU0dWqpuM.roa
Signing time: Sat 01 Jan 2022 05:51:43 +0000
ROA not before: Sat 01 Jan 2022 05:51:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24904
IP address blocks: 185.212.212.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241985279 (0xe6c66ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3441eb5d7addba0e5afbf82a8c7d301ae41b9185
Validity
Not Before: Jan 1 05:51:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a1d71cd975682f88643f70897c494d1d5aaa6e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:ec:14:fc:20:4f:c0:a5:01:34:1f:2a:fe:f1:
28:99:f6:56:e8:9b:4f:db:c5:ee:32:a1:8e:57:82:
84:70:7d:28:6a:21:84:75:78:38:45:f7:7f:e8:ba:
2a:c5:22:14:0a:03:73:3a:2c:bf:28:33:8b:70:60:
36:00:17:28:7d:50:2c:71:9f:a6:91:75:c2:18:79:
09:cc:60:9d:a8:db:2f:bc:a0:9c:11:70:ce:68:07:
be:fd:9d:da:01:f1:46:e1:84:f6:c5:f6:d7:6b:84:
3c:73:d0:68:39:85:b5:66:d4:e0:a2:84:d8:8b:75:
56:f9:03:d5:8b:9e:2f:41:fd:66:36:54:67:c3:1a:
55:cd:79:29:64:2d:55:09:88:a7:a8:5d:2a:d6:52:
cb:f7:8b:db:b9:79:34:1e:bb:7b:81:bc:7c:70:84:
a6:3b:82:5e:6c:6b:9b:8a:40:39:b0:4d:52:b6:55:
36:6e:b7:91:c2:0b:d0:4a:7e:fb:ec:c3:51:b5:f2:
07:0d:f5:7b:a0:27:67:3b:62:04:2f:8a:85:8c:a3:
6f:9f:22:e1:e2:e9:51:c6:81:fa:2f:e6:26:d9:bf:
ed:bc:63:0b:d7:62:fa:e1:dd:f6:1d:8d:1b:b8:ae:
a8:20:cf:5a:0e:04:d5:e2:09:20:93:3e:61:51:e7:
cb:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:1D:71:CD:97:56:82:F8:86:43:F7:08:97:C4:94:D1:D5:AA:A6:E3
X509v3 Authority Key Identifier:
keyid:34:41:EB:5D:7A:DD:BA:0E:5A:FB:F8:2A:8C:7D:30:1A:E4:1B:91:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NEHrXXrdug5a-_gqjH0wGuQbkYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f64637-c7df-4a7c-bd16-2d7b9e917e87/1/eh1xzZdWgviGQ_cIl8SU0dWqpuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f64637-c7df-4a7c-bd16-2d7b9e917e87/1/NEHrXXrdug5a-_gqjH0wGuQbkYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.212.0/22
Signature Algorithm: sha256WithRSAEncryption
33:75:8b:a7:8d:1c:b2:e8:16:33:18:f7:2f:be:2e:73:ec:11:
7c:b9:40:e9:f4:dc:16:56:0f:ac:2a:a7:63:69:9d:88:8b:d6:
cc:42:8f:16:a1:de:61:8f:99:8e:20:00:7a:0b:08:b8:81:4c:
93:0f:92:21:24:fd:92:0c:73:8b:7f:2f:6d:60:e7:eb:d5:f0:
f3:4c:13:3d:b4:0a:6b:4c:16:ba:62:f4:13:05:76:8b:75:15:
ba:a1:cc:52:9e:22:96:1f:19:b0:31:3d:d9:43:18:25:cb:c9:
f2:ea:a9:c3:15:72:0b:68:e8:56:de:cb:29:73:e1:44:25:24:
0c:93:51:7f:bb:25:b0:62:0d:c6:b1:f1:e7:0b:b1:7b:89:5a:
23:91:47:57:3b:ab:96:41:11:b0:38:46:4a:0c:1a:e0:fc:58:
9c:28:36:bf:9f:cf:08:6b:8d:4e:43:e5:b4:9a:16:1b:df:a2:
83:d7:4d:83:54:9d:88:99:15:16:62:05:04:21:cb:97:a8:77:
e2:58:2f:2b:af:6d:b4:9e:60:87:5e:fc:5f:fd:1e:3e:2f:24:
47:87:a7:3f:c2:1b:e0:e6:5c:9e:a2:03:97:ac:1a:e3:f4:3c:
de:74:ce:ff:4a:bd:37:21:fa:01:73:26:5b:1e:91:55:f4:2f:
33:c0:e7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:01 2024 by rpki-client on console-ams.rpki-client.org