Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/0a4c1e-1fc5-407a-bd08-0717da053585/1/dgeQheXj0QnsxWHIgZDBCQR0jGs.roa
File: dgeQheXj0QnsxWHIgZDBCQR0jGs.roa (raw, json)
Hash identifier: /YeYaCWuo8/jJD1k5voz4XdeRpfrmHufzs1QuPj92pA=
Subject key identifier: 76:07:90:85:E5:E3:D1:09:EC:C5:61:C8:81:90:C1:09:04:74:8C:6B
Certificate issuer: /CN=9b792de70f33b82882542bef23b18da97538ca04
Certificate serial: 046FEECF
Authority key identifier: 9B:79:2D:E7:0F:33:B8:28:82:54:2B:EF:23:B1:8D:A9:75:38:CA:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m3kt5w8zuCiCVCvvI7GNqXU4ygQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/0a4c1e-1fc5-407a-bd08-0717da053585/1/dgeQheXj0QnsxWHIgZDBCQR0jGs.roa
Signing time: Sat 01 Jan 2022 09:57:55 +0000
ROA not before: Sat 01 Jan 2022 09:57:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207495
IP address blocks: 185.228.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74444495 (0x46feecf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b792de70f33b82882542bef23b18da97538ca04
Validity
Not Before: Jan 1 09:57:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76079085e5e3d109ecc561c88190c10904748c6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ab:dd:c6:89:38:e8:71:49:e1:1a:ed:ad:61:
2f:ff:81:dd:ee:b8:f8:a3:17:21:ad:29:a8:5d:fe:
2c:51:8e:dd:24:9e:90:da:46:30:af:a8:9c:94:69:
c5:1d:4a:50:a3:f8:69:b9:c2:41:ae:90:c9:bb:3c:
a3:f0:84:af:a2:e7:3c:9a:66:bd:94:c5:ff:3f:b2:
7f:e8:88:70:7e:77:a8:ff:af:24:d3:47:82:81:b1:
43:f8:96:07:14:f8:ff:22:12:9c:88:d8:8d:19:e9:
73:cb:31:60:ea:19:82:02:bd:cb:32:c7:c6:f1:81:
78:fe:4e:da:ea:a5:88:bb:92:b1:ec:e9:ba:66:e4:
ef:8b:fe:26:be:f0:54:7a:df:34:dd:61:e4:bf:d9:
d3:f1:02:10:28:af:11:66:09:64:d5:09:72:60:02:
39:f9:9b:73:7f:d4:40:49:8a:de:2f:a6:eb:1a:66:
c3:30:58:f0:1e:7c:cc:ca:18:0b:f4:ce:7a:b8:2d:
78:18:8f:46:f4:cb:c9:12:bc:cc:2e:c1:79:16:04:
14:b0:b4:4f:8e:28:9d:bf:ff:6d:df:0c:4e:f5:62:
dd:b9:40:ee:fc:8f:9c:12:2b:ab:9f:69:7a:a2:fc:
2e:24:c5:40:7a:42:88:dd:5d:a6:ab:e2:d5:6c:b5:
70:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:07:90:85:E5:E3:D1:09:EC:C5:61:C8:81:90:C1:09:04:74:8C:6B
X509v3 Authority Key Identifier:
keyid:9B:79:2D:E7:0F:33:B8:28:82:54:2B:EF:23:B1:8D:A9:75:38:CA:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m3kt5w8zuCiCVCvvI7GNqXU4ygQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0a4c1e-1fc5-407a-bd08-0717da053585/1/dgeQheXj0QnsxWHIgZDBCQR0jGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0a4c1e-1fc5-407a-bd08-0717da053585/1/m3kt5w8zuCiCVCvvI7GNqXU4ygQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.52.0/22
Signature Algorithm: sha256WithRSAEncryption
06:69:18:27:f6:fa:26:27:b7:bf:92:4d:53:89:6a:bd:5b:b3:
09:10:f3:ce:f1:80:d7:9e:f3:14:b7:de:c2:15:81:a5:80:dd:
89:9e:13:1c:e4:85:fb:8d:35:6d:79:2b:30:2a:02:f8:d1:6f:
5c:9d:8f:6e:fa:3f:27:db:c0:38:c5:a1:52:97:9c:4e:45:0b:
50:f5:e6:34:1c:11:54:ea:ed:72:b1:d5:16:e1:84:6b:00:c6:
fd:5b:3e:aa:24:7a:dc:62:8c:08:f8:80:20:03:52:f9:dd:7d:
52:44:5d:94:12:dd:b4:77:27:d4:7e:a3:a2:e8:f7:84:87:cb:
0f:ba:f1:bb:63:73:d5:3a:8b:ab:b0:46:80:5a:d6:ec:bf:7d:
b5:3c:5e:89:f2:16:c9:53:19:46:79:45:08:a5:01:ee:ec:39:
c1:e7:f0:60:a0:73:11:7c:41:13:57:fe:63:79:97:54:fc:d4:
7c:93:4b:ac:45:f6:7e:d6:f5:4e:c8:00:a9:34:d7:6f:65:cb:
7b:e6:7e:49:ea:ef:8b:fa:fe:f6:e1:80:02:7f:f6:57:29:9a:
b6:8f:3f:bb:3d:35:ee:3b:75:6c:15:d6:4e:4b:80:49:a8:e7:
3c:94:dc:c0:31:cd:ef:b3:41:c1:31:79:87:1e:60:d7:6a:22:
b1:8d:b0:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:49 2024 by rpki-client on console-ams.rpki-client.org