Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/29oOuUEcchkeVfAZM-5ESZRx08c.roa
File: 29oOuUEcchkeVfAZM-5ESZRx08c.roa (raw, json)
Hash identifier: gfFf0B57dIOAsXAboJ49HjsXHGcb/BBtdIx3aU2hRsc=
Subject key identifier: DB:DA:0E:B9:41:1C:72:19:1E:55:F0:19:33:EE:44:49:94:71:D3:C7
Certificate issuer: /CN=0a7327805df20fb5c1d6f4e89074743caeb24af7
Certificate serial: 0A193508
Authority key identifier: 0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/29oOuUEcchkeVfAZM-5ESZRx08c.roa
Signing time: Fri 24 Jun 2022 04:56:57 +0000
ROA not before: Fri 24 Jun 2022 04:56:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.162.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169424136 (0xa193508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a7327805df20fb5c1d6f4e89074743caeb24af7
Validity
Not Before: Jun 24 04:56:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbda0eb9411c72191e55f01933ee44499471d3c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:cb:2d:22:1f:a3:87:b9:c8:a9:54:a0:0e:4d:
0d:db:26:1b:f4:b3:0d:ec:51:2a:8f:b8:55:19:64:
53:6b:c6:42:0d:88:fc:4e:fa:1d:52:0c:73:05:2e:
c4:c7:9b:6c:25:4c:da:0a:96:22:be:85:8f:96:c8:
e6:be:8c:34:8c:5e:f1:31:c0:d9:cc:7f:d8:fd:ff:
e8:18:38:a4:51:8f:57:b2:a9:77:e0:9c:a3:58:11:
49:48:a2:47:c1:b4:97:8f:06:68:b7:e6:af:e4:76:
2c:0a:08:aa:08:83:f9:44:04:e8:1d:8c:6d:0b:40:
f9:8e:11:bb:4f:b3:7e:a0:fc:cd:5e:5d:b2:75:b3:
13:92:4e:0b:a1:72:1f:52:f6:77:b9:89:57:b3:1a:
91:06:e1:96:05:61:a6:d0:94:bf:6e:c6:8c:f3:ed:
c2:bf:b8:32:b6:e0:96:e2:a5:4b:3b:86:35:2c:e3:
78:23:df:55:6c:60:85:5a:b1:0d:f9:ed:73:f5:49:
32:64:d7:94:70:cd:23:d8:8f:03:3a:53:47:38:21:
d3:d3:3a:2f:92:06:5d:be:d7:92:22:2e:7b:61:37:
26:93:81:53:21:25:1e:66:a7:22:50:85:a5:43:ff:
b6:90:4e:8d:7f:da:83:e7:c3:1a:de:04:8c:98:1a:
cb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:DA:0E:B9:41:1C:72:19:1E:55:F0:19:33:EE:44:49:94:71:D3:C7
X509v3 Authority Key Identifier:
keyid:0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/29oOuUEcchkeVfAZM-5ESZRx08c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/CnMngF3yD7XB1vTokHR0PK6ySvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.234.0/24
Signature Algorithm: sha256WithRSAEncryption
39:3f:da:22:d2:71:02:f2:fa:6c:8f:b7:d3:1e:4b:55:fe:3e:
58:c8:c4:23:3f:d4:b6:73:bd:d5:d4:13:e8:07:62:49:4a:3f:
76:ac:b3:81:73:d4:17:2a:95:94:1c:77:d5:9e:a5:e4:2d:fc:
bc:f2:18:1b:af:63:61:c4:c3:60:9b:97:bc:6a:ff:a4:bf:bc:
ad:f9:7f:c4:01:03:6f:51:e1:d5:a8:07:16:27:74:69:86:f9:
86:cb:59:bb:5e:e6:e7:14:5e:d2:31:a9:c7:bb:72:d7:e7:a9:
eb:73:72:1e:08:d7:d0:cd:30:69:01:aa:6d:73:25:6b:49:19:
c6:82:12:27:16:ad:dc:bd:35:2e:9c:4c:be:a1:a3:6c:b3:30:
9f:86:db:6a:0a:c2:a6:d7:c0:f2:b5:a8:e2:34:f0:be:f4:25:
86:2a:4d:cb:c2:54:76:6a:08:37:07:e3:8d:b0:2f:60:44:f3:
5e:78:eb:15:da:90:3a:52:9c:f5:65:3d:15:ac:be:44:b7:0b:
5a:a5:34:c9:af:37:b4:8a:1e:a2:72:f4:65:ec:87:b6:42:30:
48:70:52:79:41:7f:1c:1c:34:f2:b4:4d:16:31:47:05:dd:f3:
5d:66:e3:2d:79:4a:27:9b:96:75:12:19:75:8c:22:e7:c0:82:
39:5a:81:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:15 2024 by rpki-client on console-fra.rpki-client.org