Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/DU5-GtKcNCOw0W9iyMntKt2oS7Y.roa
File: DU5-GtKcNCOw0W9iyMntKt2oS7Y.roa (raw, json)
Hash identifier: H7bYijFlScl96djuhhSxug2HoM/NsWtp3OOsJrAwVaI=
Subject key identifier: 0D:4E:7E:1A:D2:9C:34:23:B0:D1:6F:62:C8:C9:ED:2A:DD:A8:4B:B6
Certificate issuer: /CN=843d8aa1269d1a3f3321335860c67c7e08677dc5
Certificate serial: 01D8A419
Authority key identifier: 84:3D:8A:A1:26:9D:1A:3F:33:21:33:58:60:C6:7C:7E:08:67:7D:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD2KoSadGj8zITNYYMZ8fghnfcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/DU5-GtKcNCOw0W9iyMntKt2oS7Y.roa
Signing time: Sat 01 Jan 2022 14:06:27 +0000
ROA not before: Sat 01 Jan 2022 14:06:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202766
IP address blocks: 185.173.44.0/24 maxlen: 24
185.173.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30975001 (0x1d8a419)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843d8aa1269d1a3f3321335860c67c7e08677dc5
Validity
Not Before: Jan 1 14:06:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d4e7e1ad29c3423b0d16f62c8c9ed2adda84bb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cd:13:ea:47:5a:96:90:03:86:fd:5a:5d:90:
01:7c:03:91:f6:8b:a7:2e:ba:c8:b1:6f:3d:5c:59:
8c:17:d6:2b:f8:92:1d:1f:88:ca:b8:b9:30:11:a9:
84:39:1e:1f:6b:d8:a3:fc:90:b9:90:17:dd:38:73:
ea:82:3d:3d:29:66:4b:38:b8:ce:0b:6b:bd:f7:7d:
66:64:03:c0:ec:b6:69:b7:9c:44:3a:ed:c4:75:dd:
cb:ae:b3:d2:2b:61:7b:0c:b3:12:d0:ed:98:2b:16:
a5:95:83:c2:9a:89:07:49:e6:f7:a9:9a:18:e3:8b:
2a:65:93:a2:cd:03:3c:45:e8:c2:10:fa:08:3b:87:
cd:32:8a:88:8d:dd:b7:81:ad:5a:cd:e6:3d:89:04:
af:e7:c2:a1:4c:09:98:e2:ed:c2:05:24:3f:18:4b:
39:43:3d:4e:57:54:01:a3:a5:45:91:bd:16:18:7b:
1c:00:88:5f:9d:3d:1d:bc:26:0b:67:75:17:b4:4a:
f9:d2:bd:a4:b6:fb:6b:35:58:06:89:cd:d3:cb:75:
82:c2:8a:d8:00:a6:02:d8:7f:0b:ea:34:ed:2f:ed:
98:36:34:72:09:4f:62:e0:1d:4b:9e:53:91:85:25:
6d:9c:6d:9d:6a:8f:c8:88:d7:70:5d:25:b7:65:fb:
9a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:4E:7E:1A:D2:9C:34:23:B0:D1:6F:62:C8:C9:ED:2A:DD:A8:4B:B6
X509v3 Authority Key Identifier:
keyid:84:3D:8A:A1:26:9D:1A:3F:33:21:33:58:60:C6:7C:7E:08:67:7D:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD2KoSadGj8zITNYYMZ8fghnfcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/DU5-GtKcNCOw0W9iyMntKt2oS7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/hD2KoSadGj8zITNYYMZ8fghnfcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.44.0/24
185.173.46.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:bc:02:f3:2d:9c:60:62:5e:71:fa:d3:51:65:ce:ac:e5:00:
9d:b4:1e:f8:5e:0d:89:c7:52:b7:4b:83:17:db:a9:1c:12:1f:
56:5b:cb:1e:76:d7:06:fb:65:74:40:42:cb:12:8c:a8:78:1d:
73:94:fd:f4:e5:a8:6e:48:4d:d0:ac:9a:ce:87:be:0f:8d:68:
30:93:73:f8:30:87:55:a1:bb:ae:49:99:ec:98:16:da:a4:b6:
56:93:3b:83:34:d6:ad:9c:60:06:b4:ed:7e:eb:38:0a:fd:11:
00:1d:da:8c:21:ac:01:3f:e5:cd:16:c4:5b:3b:f9:83:b4:9e:
4e:a9:37:0e:6e:3b:c5:c5:35:e0:ca:d6:f5:d9:52:83:a4:ab:
99:01:77:db:42:1b:72:37:bf:74:f0:71:27:17:a2:d1:af:ad:
c7:b3:79:de:1d:a6:ce:6e:70:f1:a5:b0:8a:c4:4c:a4:7a:2a:
54:04:a2:4c:e3:c5:51:44:f5:f6:8c:94:67:fb:c9:d3:f5:65:
f4:61:db:ac:37:24:d8:98:2f:0d:19:37:fa:29:08:12:b9:6e:
a9:ff:cf:d5:43:a5:eb:e7:7a:8f:08:0a:12:f9:2f:3c:c6:db:
48:99:ce:e2:07:97:65:25:11:e5:d7:00:c2:64:69:bb:2a:84:
a0:49:68:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:03 2024 by rpki-client on console-fra.rpki-client.org