Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/Dim5hEEUhllAX_X1Ne9kSOjJIoU.roa
File: Dim5hEEUhllAX_X1Ne9kSOjJIoU.roa (raw, json)
Hash identifier: 3DWafnHNG4rQr7NGQo5WmTo8IbXnQDcMv/CkgxKRmGs=
Subject key identifier: 0E:29:B9:84:41:14:86:59:40:5F:F5:F5:35:EF:64:48:E8:C9:22:85
Certificate issuer: /CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Certificate serial: 0E5DDEBA
Authority key identifier: 9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/Dim5hEEUhllAX_X1Ne9kSOjJIoU.roa
Signing time: Sat 01 Jan 2022 03:56:30 +0000
ROA not before: Sat 01 Jan 2022 03:56:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205676
IP address blocks: 185.207.32.0/24 maxlen: 24
2a0b:1d40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241032890 (0xe5ddeba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Validity
Not Before: Jan 1 03:56:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e29b98441148659405ff5f535ef6448e8c92285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:27:de:8e:70:43:4c:68:d8:66:d4:54:a0:28:
d2:91:22:07:e0:ad:fc:0d:3c:05:bc:0e:05:0d:4e:
bb:11:82:f6:3a:c2:c4:03:3c:aa:e3:b0:c6:0e:6d:
13:4f:28:54:12:77:e6:0c:9a:c5:c7:76:8b:0d:59:
b1:04:8b:07:84:6a:8f:2b:5c:03:25:2c:8b:a3:a8:
5c:9d:0f:12:f6:c5:d0:c7:72:88:55:53:c8:4f:a1:
d8:03:9f:26:c1:29:f8:51:af:bd:c7:fe:cc:a8:ce:
ca:16:64:f4:44:bd:68:01:24:ff:e2:5a:3f:a1:4d:
f1:fb:d4:07:cd:8b:59:90:35:ce:10:9f:ee:32:26:
69:4b:d7:de:ab:f5:b6:06:ac:4e:b3:84:21:30:b7:
98:b2:93:9e:df:54:c0:28:db:42:92:4a:a6:e8:cf:
1d:09:d8:8a:fa:73:bd:68:ee:b7:95:ee:4a:f6:9e:
4f:ed:72:01:c9:33:b9:c3:45:01:de:f9:57:49:92:
15:63:5e:4a:28:60:54:3d:0c:b2:f8:0f:18:c9:0a:
9e:8a:55:2e:5b:51:d5:dd:ee:26:3d:47:e0:7f:ee:
6e:42:67:b3:95:c3:21:17:9d:9f:aa:24:ab:a1:46:
2b:6e:48:8c:de:2e:af:35:a5:22:ac:c2:be:c7:00:
d5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:29:B9:84:41:14:86:59:40:5F:F5:F5:35:EF:64:48:E8:C9:22:85
X509v3 Authority Key Identifier:
keyid:9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/Dim5hEEUhllAX_X1Ne9kSOjJIoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.32.0/24
IPv6:
2a0b:1d40::/32
Signature Algorithm: sha256WithRSAEncryption
91:78:96:12:f2:86:e4:ed:43:41:20:66:85:b2:ee:a7:b7:74:
78:31:78:2a:c7:b4:c7:d4:b6:bd:bc:42:78:d9:c5:9e:3c:68:
5e:e4:f4:bc:b8:6e:d3:35:15:21:2c:27:1b:b6:4f:50:60:49:
51:fa:9a:2e:bc:70:75:c8:40:f5:c9:f6:10:4e:c7:18:40:ca:
45:e3:03:95:07:57:60:44:5e:9d:47:f2:2d:88:56:18:82:98:
45:6b:89:18:37:96:9b:56:5b:14:ec:c1:dc:7f:35:5f:76:45:
b2:3e:84:24:3b:ea:e1:f2:fb:b5:1b:ac:9c:0d:68:1a:b0:09:
0e:0d:d3:62:fa:bc:73:1a:28:e4:b4:2a:84:d8:ab:78:d6:52:
b2:a3:30:e7:1e:26:da:11:e8:a2:dd:4f:e3:4d:35:11:f1:7c:
94:3d:63:04:4d:5e:d5:f6:b3:88:ca:42:2b:3a:15:4b:52:a7:
ba:cc:ee:cc:76:70:5d:98:ed:96:78:6c:87:69:90:1f:73:c7:
7b:aa:57:d2:6b:48:6f:3d:d1:f0:f4:3b:5c:aa:4e:61:ab:cf:
83:a0:a0:45:5c:c7:14:06:86:91:2b:36:7a:d1:f8:fd:57:dd:
c5:5f:f0:2b:5b:fd:f0:81:32:a2:6a:35:8d:af:01:3e:5e:64:
65:de:cb:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:30 2023 by rpki-client on console-ams.rpki-client.org