Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/hO5hft7WydtfrqkSTZD85PnrRTA.roa
File: hO5hft7WydtfrqkSTZD85PnrRTA.roa (raw, json)
Hash identifier: iIcvAHRNQ/HCapQbW1o7H18GR7UQCSJyLLI6KaqgU0E=
Subject key identifier: 84:EE:61:7E:DE:D6:C9:DB:5F:AE:A9:12:4D:90:FC:E4:F9:EB:45:30
Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Certificate serial: 3842E6B6
Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/hO5hft7WydtfrqkSTZD85PnrRTA.roa
Signing time: Wed 02 Feb 2022 13:40:02 +0000
ROA not before: Wed 02 Feb 2022 13:40:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201464
IP address blocks: 185.74.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 943908534 (0x3842e6b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Validity
Not Before: Feb 2 13:40:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84ee617eded6c9db5faea9124d90fce4f9eb4530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6d:d4:5a:5f:9b:73:0d:b2:b8:1f:24:a2:e3:
99:36:9d:a5:d3:7b:c4:83:d3:45:ac:a6:46:a5:f1:
d1:1d:38:7e:06:a3:8a:f5:51:9c:c0:eb:ec:9e:c1:
d0:d4:67:20:ab:1a:92:7c:74:93:cf:6e:23:30:3e:
82:3a:f3:2f:87:4f:05:f3:51:b3:98:80:5d:b5:e8:
66:75:86:67:54:7f:16:51:cc:f6:15:a1:62:b4:39:
6e:8f:41:c7:cf:01:d7:b5:ba:be:9a:c0:e2:f0:af:
0f:f7:6e:e8:0c:1e:4b:ff:0b:4b:16:1c:55:97:07:
4c:0b:18:20:60:72:42:53:e4:c3:b0:2b:1f:49:eb:
f2:c1:cd:90:1b:eb:e2:47:41:62:4c:17:9f:7b:0a:
bb:13:a5:a6:d7:18:29:8e:71:44:b5:e7:8c:c5:8c:
b3:be:63:1e:25:08:d6:ad:d5:0d:f1:c9:69:c8:65:
28:e5:26:b9:99:06:bb:b4:b4:14:90:73:9a:fa:3c:
3d:63:75:9e:ab:89:c1:eb:b0:f3:b9:84:c2:e2:9c:
03:ff:53:eb:b4:49:f5:8e:f4:c1:5d:c6:d2:bc:47:
47:0c:9b:35:7d:f7:7e:57:bc:bd:85:09:9e:d0:f6:
e6:c3:db:91:5b:ab:2d:6e:ea:d4:d4:4d:94:27:b3:
0c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:EE:61:7E:DE:D6:C9:DB:5F:AE:A9:12:4D:90:FC:E4:F9:EB:45:30
X509v3 Authority Key Identifier:
keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/hO5hft7WydtfrqkSTZD85PnrRTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.61.0/24
Signature Algorithm: sha256WithRSAEncryption
99:42:c9:e2:62:1e:46:c5:7c:9d:89:d4:70:70:1b:ac:04:44:
42:8b:7f:82:94:ac:68:b1:14:a8:ae:65:d0:83:1d:2e:e1:ba:
e0:9c:14:05:40:6b:55:b4:17:ec:eb:b4:bf:e5:14:11:b5:a7:
60:e6:38:31:54:c9:3c:f6:7f:b5:d2:3c:ce:01:92:dc:33:f8:
04:68:a8:ab:c3:59:9b:90:57:95:73:90:87:68:8a:83:c9:6b:
62:e6:a7:12:6d:40:12:f5:96:f2:9e:e0:80:78:71:f3:2d:55:
e7:ff:e1:7f:6b:7a:ad:f2:a5:be:46:7b:a5:60:7e:b2:f5:7d:
e1:b3:8b:d5:c0:d1:d6:aa:99:43:54:dc:4a:40:a8:89:e4:ea:
ec:58:46:5b:f9:e8:60:57:18:13:1e:5c:56:1f:4b:9b:78:f6:
3d:02:72:d9:3b:b7:95:7a:60:1f:17:c0:ef:7b:68:4d:45:03:
1d:35:6b:22:46:a9:63:69:4a:44:bf:cd:03:41:fd:95:2d:ba:
4e:55:99:5b:5b:37:27:9d:1e:2f:e3:f0:9c:d0:62:34:04:3c:
ea:b8:b1:dc:99:a0:94:e6:f1:78:1d:5c:45:60:65:70:8c:67:
23:61:76:05:6c:d0:a1:c7:f8:2b:da:b8:f8:ae:34:bf:e0:a5:
e4:07:b2:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:32 2024 by rpki-client on console-fra.rpki-client.org