Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/7db3b3-2f8a-47c7-bb8c-3a3034a39ea5/1/ruK26us_OhjXbHI64QcqCE1Mt1o.roa
File: ruK26us_OhjXbHI64QcqCE1Mt1o.roa (raw, json)
Hash identifier: cgWj0C5pYZUqYVZNDPSHOJD+wbrhPu9a61IR0yeXjWA=
Subject key identifier: AE:E2:B6:EA:EB:3F:3A:18:D7:6C:72:3A:E1:07:2A:08:4D:4C:B7:5A
Certificate issuer: /CN=2d43689a7638ff737591ff3b251918862349695c
Certificate serial: 01841D7C870F697519D36D189B3638239D53
Authority key identifier: 2D:43:68:9A:76:38:FF:73:75:91:FF:3B:25:19:18:86:23:49:69:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LUNomnY4_3N1kf87JRkYhiNJaVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/7db3b3-2f8a-47c7-bb8c-3a3034a39ea5/1/ruK26us_OhjXbHI64QcqCE1Mt1o.roa
Signing time: Fri 28 Oct 2022 07:26:51 +0000
ROA not before: Fri 28 Oct 2022 07:26:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.152.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1d:7c:87:0f:69:75:19:d3:6d:18:9b:36:38:23:9d:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d43689a7638ff737591ff3b251918862349695c
Validity
Not Before: Oct 28 07:26:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aee2b6eaeb3f3a18d76c723ae1072a084d4cb75a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ea:82:90:ed:17:dd:cd:2b:97:6a:33:0f:f1:
f0:82:ba:d0:52:b9:bb:19:59:31:eb:08:ea:7d:17:
73:2e:89:b6:29:46:87:c7:18:70:c4:09:a9:7b:2e:
5f:ea:fc:88:11:dc:50:77:13:18:8c:10:8a:52:51:
e9:6d:20:a5:f9:49:98:24:27:d3:e9:63:1f:9b:63:
56:1c:87:b1:bc:15:d5:6c:4a:cc:8d:3e:39:86:0c:
b7:77:1d:a6:cb:68:a6:45:4a:13:f7:6f:ce:98:ef:
04:5e:4a:62:7e:b7:74:45:9c:fa:6c:e3:59:8b:29:
e6:8a:14:75:2a:f8:cb:bd:47:1b:0c:7d:96:0f:e8:
eb:ad:fc:90:ee:a3:ac:b6:6f:53:a8:f2:46:54:6b:
e9:8b:85:64:b5:c1:a3:47:4f:8b:d9:6d:37:f0:5b:
32:d9:9f:06:44:36:43:aa:f5:7b:09:ff:7d:14:ba:
d4:0b:b1:d3:33:5e:31:6c:91:1a:c4:0f:e5:1a:a8:
70:84:c5:0c:6c:7f:2d:60:42:57:c5:c7:9d:1b:06:
ec:93:86:81:30:90:30:b5:b1:f3:ab:3e:70:0c:c8:
fc:1b:fc:39:62:2b:81:1f:09:eb:05:ec:e1:23:71:
d3:89:8b:9a:be:ba:fa:68:cb:f5:7d:d6:d0:8c:fe:
23:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E2:B6:EA:EB:3F:3A:18:D7:6C:72:3A:E1:07:2A:08:4D:4C:B7:5A
X509v3 Authority Key Identifier:
keyid:2D:43:68:9A:76:38:FF:73:75:91:FF:3B:25:19:18:86:23:49:69:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LUNomnY4_3N1kf87JRkYhiNJaVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7db3b3-2f8a-47c7-bb8c-3a3034a39ea5/1/ruK26us_OhjXbHI64QcqCE1Mt1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7db3b3-2f8a-47c7-bb8c-3a3034a39ea5/1/LUNomnY4_3N1kf87JRkYhiNJaVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.215.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:8b:23:4f:40:52:94:00:45:5c:48:7b:a4:e3:da:cd:9d:29:
da:c2:0c:63:12:7e:c1:b6:13:3e:66:8d:80:1e:61:c0:9e:7f:
c0:09:4b:96:25:5b:ef:16:cd:8f:4d:0a:9c:67:25:50:15:94:
8f:f7:4b:f7:ac:a9:35:11:19:da:ae:43:46:b9:67:76:30:24:
4d:3c:26:8b:47:ad:81:cb:21:8e:26:c2:3e:b5:97:1b:6e:53:
36:f2:8c:a8:47:8a:29:28:2d:9b:da:f1:3b:5c:b6:35:e9:3c:
87:cb:56:87:6e:e2:a6:6e:09:b4:3c:37:97:ec:e7:7e:15:ca:
2e:44:fa:06:2b:d4:98:ab:b5:03:32:59:8b:2d:00:73:3b:52:
f7:ed:32:e7:d1:f5:1e:79:bd:c3:67:e8:39:76:49:c8:12:a1:
e8:91:85:a7:86:35:bc:ca:f3:81:6c:d2:17:df:cb:59:c9:51:
83:84:62:24:43:15:06:26:c3:b7:1d:33:90:19:f1:85:fe:58:
27:40:1a:a8:da:1f:da:ba:4f:4f:df:4d:86:87:92:6d:99:da:
d9:38:47:9c:f5:97:d2:2e:9d:5b:b8:9c:e6:ce:5a:17:04:c1:
61:09:0f:53:dd:d1:fc:ad:9e:2d:56:39:26:8e:03:7c:fa:e0:
8f:37:de:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:36 2024 by rpki-client on console-fra.rpki-client.org