Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/1-D0bk_aXrmcMiNIbs8KiZa-qUHE.roa
File: 1-D0bk_aXrmcMiNIbs8KiZa-qUHE.roa (raw, json)
Hash identifier: DJ7dNqPZfFEetPboO71XbkxeWZLvJucTlzy/og8lixo=
Subject key identifier: F8:3D:1B:93:F6:97:AE:67:0C:88:D2:1B:B3:C2:A2:65:AF:AA:50:71
Certificate issuer: /CN=77b8cf454b0962d16a4855808fd3abc15852bbd8
Certificate serial: 3DDA80E2
Authority key identifier: 77:B8:CF:45:4B:09:62:D1:6A:48:55:80:8F:D3:AB:C1:58:52:BB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7jPRUsJYtFqSFWAj9OrwVhSu9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/1-D0bk_aXrmcMiNIbs8KiZa-qUHE.roa
Signing time: Sat 01 Jan 2022 07:58:37 +0000
ROA not before: Sat 01 Jan 2022 07:58:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201980
IP address blocks: 185.56.4.0/22 maxlen: 24
2a02:4f20::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1037730018 (0x3dda80e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77b8cf454b0962d16a4855808fd3abc15852bbd8
Validity
Not Before: Jan 1 07:58:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f83d1b93f697ae670c88d21bb3c2a265afaa5071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4c:49:95:5b:d6:a7:90:29:68:28:75:d3:38:
80:46:5f:ac:cc:f4:e0:e9:ed:77:01:73:19:c6:00:
d1:00:23:8a:93:ce:a6:92:88:f9:14:f2:88:db:9f:
65:2b:0a:b7:45:70:15:37:c2:30:18:b0:66:91:0b:
ee:4e:72:1f:81:32:f0:80:4b:b2:c7:b2:c8:34:da:
89:c8:8f:2a:58:dc:4e:7a:34:54:69:25:81:19:26:
44:6c:cd:ec:39:8c:d8:db:b0:fb:2c:41:1a:fb:ef:
53:3f:6a:14:a7:c0:37:47:ca:d4:29:c3:fd:f5:8a:
9f:19:ab:a6:e9:d3:1d:8a:00:64:d0:1a:e6:ef:36:
5c:bb:4e:da:24:b3:88:0a:39:39:1e:39:e3:f5:26:
48:2c:a2:3f:2d:b8:57:fd:f1:3e:50:17:24:6f:c5:
99:fc:71:f1:d9:4a:bc:9c:3b:87:cb:72:70:85:21:
7e:b7:c8:ad:1f:3d:b7:61:93:2e:48:2e:64:52:35:
64:e6:b6:7d:94:da:af:de:d5:7f:ba:5f:18:38:ea:
2d:57:82:6b:33:b5:5c:34:35:d7:da:50:d6:c8:fb:
3f:e1:39:bf:03:3b:17:68:72:a0:e3:de:bf:e4:fb:
62:d7:22:3d:c7:65:ae:de:81:aa:c9:bf:fe:95:21:
ac:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:3D:1B:93:F6:97:AE:67:0C:88:D2:1B:B3:C2:A2:65:AF:AA:50:71
X509v3 Authority Key Identifier:
keyid:77:B8:CF:45:4B:09:62:D1:6A:48:55:80:8F:D3:AB:C1:58:52:BB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7jPRUsJYtFqSFWAj9OrwVhSu9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/1-D0bk_aXrmcMiNIbs8KiZa-qUHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/d7jPRUsJYtFqSFWAj9OrwVhSu9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.4.0/22
IPv6:
2a02:4f20::/32
Signature Algorithm: sha256WithRSAEncryption
27:a6:c1:4e:3a:f5:28:ff:71:7b:7b:71:ef:2c:02:54:15:40:
5e:b0:4f:37:2f:36:69:c3:38:c6:ca:0d:fa:0c:ef:85:85:d4:
96:0c:90:ab:e3:5c:bb:ff:ee:0f:c8:79:64:2a:d0:e3:74:04:
58:4e:9b:be:51:cb:e6:c3:dd:de:79:90:14:1a:02:27:ea:e3:
26:09:e7:26:e2:72:e5:1b:f6:74:39:e0:d9:a5:63:23:0a:dd:
42:05:87:7c:ff:b6:28:e6:88:d8:16:c7:7a:f6:fc:3b:20:ba:
9d:c2:74:ac:e9:c7:8c:4e:d6:d0:1f:b0:61:91:4e:d8:e0:fa:
04:45:08:70:cd:b0:7a:85:9f:b6:cd:e3:5e:c5:11:ca:de:4f:
75:55:b6:07:4a:74:e0:64:bf:9d:b8:f9:21:48:b2:a8:86:c1:
c0:db:64:73:cc:48:36:0a:8d:9a:b3:8d:76:83:ca:1f:12:7a:
01:c9:d6:6a:6d:ef:26:a4:73:71:1d:c2:92:e0:87:7e:4b:cd:
48:c1:87:24:cc:17:fa:4f:0c:ec:b6:c4:da:44:f7:ac:03:c1:
fb:93:c3:76:a4:0f:94:3a:60:20:02:fb:97:22:d8:cf:16:f7:
30:69:cb:0c:a1:71:ff:e2:c1:17:12:4f:02:fb:9a:36:9b:6f:
22:cf:9e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:54 2024 by rpki-client on console-fra.rpki-client.org