Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/ad08e6-7332-46a1-bf72-4b5957aa747f/1/DFHvNeA63iVcymFUP3brNTD7Y74.roa
File: DFHvNeA63iVcymFUP3brNTD7Y74.roa (raw, json)
Hash identifier: kGmRhqoT+YFKjR2vIyWcA9vrJ9EBQcQKEtz95agy5YQ=
Subject key identifier: 0C:51:EF:35:E0:3A:DE:25:5C:CA:61:54:3F:76:EB:35:30:FB:63:BE
Certificate issuer: /CN=c7bb24c4b9783ca23b6ed5e750443eed3a72f93b
Certificate serial: 13BAD2FE
Authority key identifier: C7:BB:24:C4:B9:78:3C:A2:3B:6E:D5:E7:50:44:3E:ED:3A:72:F9:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x7skxLl4PKI7btXnUEQ-7Tpy-Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/ad08e6-7332-46a1-bf72-4b5957aa747f/1/DFHvNeA63iVcymFUP3brNTD7Y74.roa
Signing time: Sat 01 Jan 2022 13:03:38 +0000
ROA not before: Sat 01 Jan 2022 13:03:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204121
IP address blocks: 185.114.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 331010814 (0x13bad2fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7bb24c4b9783ca23b6ed5e750443eed3a72f93b
Validity
Not Before: Jan 1 13:03:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c51ef35e03ade255cca61543f76eb3530fb63be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:71:7f:ae:7c:e9:8e:18:82:5d:11:1e:82:93:
94:9b:3a:1f:25:34:cd:aa:2c:9f:75:3b:bb:06:11:
6f:fa:ae:00:47:e4:ac:31:b0:eb:0a:df:43:e3:61:
b4:d6:86:b5:e3:6b:ef:fe:51:be:18:40:54:1f:36:
e3:93:fc:b0:fc:eb:a0:3e:a8:82:75:7c:f9:03:28:
81:ec:0c:d3:46:df:97:9a:0b:b1:a2:54:0c:b4:17:
31:75:fc:ef:51:fb:a9:be:6c:77:4e:51:cb:a8:42:
0a:0a:dd:ac:e8:f6:a1:28:bf:2a:46:bd:b0:79:50:
17:8b:3e:80:06:3c:a0:80:b0:01:fb:84:90:60:a2:
a6:78:88:71:75:e2:8d:ed:97:67:30:6c:c0:3d:45:
62:08:8e:d8:1b:0d:15:ef:81:a3:a9:77:66:7f:5e:
a8:2d:d6:3d:5f:e1:d8:ab:12:2d:a6:02:03:af:a1:
99:8b:e6:ad:2d:ed:0b:fe:63:a5:cd:89:8e:f1:fd:
95:71:e2:89:bc:c0:bc:04:12:b9:9b:d1:7b:c9:3a:
51:ec:a4:2a:70:28:07:d6:36:51:0a:60:05:70:3b:
34:cb:d8:99:e9:2a:e6:71:e8:aa:0f:ca:b2:76:7a:
b0:f4:b5:3d:35:99:a0:c0:8e:3a:17:e3:44:39:bd:
5a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:51:EF:35:E0:3A:DE:25:5C:CA:61:54:3F:76:EB:35:30:FB:63:BE
X509v3 Authority Key Identifier:
keyid:C7:BB:24:C4:B9:78:3C:A2:3B:6E:D5:E7:50:44:3E:ED:3A:72:F9:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x7skxLl4PKI7btXnUEQ-7Tpy-Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/ad08e6-7332-46a1-bf72-4b5957aa747f/1/DFHvNeA63iVcymFUP3brNTD7Y74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/ad08e6-7332-46a1-bf72-4b5957aa747f/1/x7skxLl4PKI7btXnUEQ-7Tpy-Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.0.0/22
Signature Algorithm: sha256WithRSAEncryption
61:28:e1:94:b8:9c:b9:eb:59:fa:27:75:2d:02:b4:15:31:64:
6b:de:37:38:47:1f:55:9f:0a:3d:de:d7:73:c5:f3:76:1a:7b:
e2:64:8b:f8:db:aa:14:af:09:b1:05:4b:18:fd:59:27:59:b6:
cd:2b:8e:f7:42:03:74:f9:84:9f:63:25:be:f3:91:a3:7a:f9:
86:f9:7c:3a:78:bd:df:f2:46:a0:0c:35:f6:2b:99:41:3d:56:
e2:42:61:bb:aa:da:d9:a2:18:f9:8f:e5:11:e4:52:09:f5:e6:
e0:b3:3e:6b:af:72:e2:2e:e9:84:67:4c:58:8f:22:82:fe:30:
36:1f:01:8a:5e:98:3b:cb:16:1f:86:e6:52:74:b5:2d:bf:4e:
a4:77:2d:09:31:65:31:7d:c3:44:a2:15:76:d4:8e:97:5e:3b:
2c:1c:5b:27:3a:99:68:a2:f6:73:01:d1:3f:8f:32:d4:65:6e:
ca:48:a6:04:57:6a:66:80:a9:e4:76:b6:3a:21:75:58:47:1c:
24:88:9d:13:d5:59:5b:19:25:3c:bf:aa:8c:2c:30:d0:c5:1d:
d9:00:c7:38:c3:2f:5a:17:37:b7:1e:ef:0f:46:3a:6e:c9:47:
f6:f5:c6:78:32:c1:c8:2b:19:8c:9e:d1:80:58:b3:96:78:0f:
1f:5d:cd:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:51 2024 by rpki-client on console-ams.rpki-client.org