Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/xFjTE8kKiBCugPNF1IS_Hpkr9Cs.roa
File: xFjTE8kKiBCugPNF1IS_Hpkr9Cs.roa (raw, json)
Hash identifier: irutClblKskryJEnlV8VDPUmUTkL7IqsysNzxLffsXg=
Subject key identifier: C4:58:D3:13:C9:0A:88:10:AE:80:F3:45:D4:84:BF:1E:99:2B:F4:2B
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 1064EFC0
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/xFjTE8kKiBCugPNF1IS_Hpkr9Cs.roa
Signing time: Thu 07 Apr 2022 14:19:02 +0000
ROA not before: Thu 07 Apr 2022 14:19:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 185.200.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275050432 (0x1064efc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Apr 7 14:19:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c458d313c90a8810ae80f345d484bf1e992bf42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:5c:1e:b7:0c:70:cf:ef:4f:ed:94:c4:43:af:
7c:3c:03:6c:85:55:b8:43:bd:e8:5e:90:ea:da:fc:
eb:09:09:05:2d:82:0a:11:36:03:77:26:a4:ed:d4:
d9:8b:c5:d9:8c:76:49:d3:6c:b2:45:46:cd:87:b8:
c6:ff:7d:be:36:8b:ce:a6:c1:db:02:f2:d1:03:92:
c8:2a:b1:39:5f:08:a6:a7:d2:c7:bc:4b:f3:ac:e8:
e1:e2:ce:96:6f:07:f0:c0:42:f8:c9:20:a6:04:ba:
ec:0a:d8:a0:d1:ef:ec:55:11:c1:09:b2:cc:8b:43:
63:6f:3c:57:61:2b:8f:25:65:ab:5d:26:8f:e4:39:
b3:29:ff:6f:11:46:ab:d4:37:9c:3d:43:38:00:48:
2d:2a:1d:eb:52:43:78:8a:db:0d:ce:2a:27:45:b6:
57:6a:95:39:70:59:92:e8:56:e7:43:f7:55:80:20:
07:98:8e:18:ed:a8:35:44:b7:86:ad:fc:e0:a3:14:
a9:91:9b:6f:73:7d:6f:90:a7:6a:30:4c:70:89:3a:
ff:aa:cb:8e:69:fd:54:eb:c4:c5:56:ec:20:15:e0:
b6:09:67:0a:15:0f:49:75:85:b7:5c:a4:05:63:89:
fc:6e:2d:eb:a8:e5:f9:82:9c:33:58:a8:13:7d:72:
f2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:58:D3:13:C9:0A:88:10:AE:80:F3:45:D4:84:BF:1E:99:2B:F4:2B
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/xFjTE8kKiBCugPNF1IS_Hpkr9Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.244.0/24
Signature Algorithm: sha256WithRSAEncryption
28:6d:3e:3d:64:11:84:f1:1c:41:ee:bd:31:3f:ee:fd:62:87:
39:3d:ce:42:d5:1a:f8:01:6b:6f:cf:9b:2e:ee:1b:39:46:99:
83:2c:13:5f:72:ea:56:ea:75:f1:c1:bc:c1:7e:cc:65:a9:69:
be:43:3a:14:e4:22:54:8f:19:14:ef:6d:37:37:6a:84:18:c7:
8e:fa:f1:57:29:bf:22:ac:f9:dd:0c:17:fd:19:a1:59:b6:39:
0e:ce:fe:db:28:d5:be:4f:3c:9b:2d:4b:cc:f8:8f:53:d4:36:
3c:63:d2:b6:08:0b:44:40:fd:b1:1a:cf:6b:38:74:5c:90:74:
1e:a7:87:10:f7:54:d3:0b:0d:2e:ee:29:7e:53:a4:c5:44:c9:
a5:c4:f1:c2:8f:d0:df:d6:48:a7:82:43:5f:e9:47:d3:3f:36:
d5:8f:71:bd:b7:e2:00:a5:ac:02:b6:28:08:b0:b7:ad:7b:d5:
67:a1:3f:41:97:81:30:5e:ec:e0:35:c7:2b:4b:7a:f8:95:91:
20:8b:89:cc:c2:de:ce:45:7f:cd:99:ff:2e:6a:6e:3f:95:04:
75:e6:ad:82:53:be:c7:a2:c0:5c:39:62:8b:ab:78:2b:37:89:
f4:06:29:37:e1:b2:29:eb:04:19:af:4f:c8:14:ce:11:b7:55:
3e:59:0a:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:07 2024 by rpki-client on console-fra.rpki-client.org