Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/3r7yr_UHAwHJIkmEGSVyzE1zDyk.roa
File: 3r7yr_UHAwHJIkmEGSVyzE1zDyk.roa (raw, json)
Hash identifier: 1IV4hcK7rq5SDudsni8bZLrRwzI1yKl9ppsTIfrAayc=
Subject key identifier: DE:BE:F2:AF:F5:07:03:01:C9:22:49:84:19:25:72:CC:4D:73:0F:29
Certificate issuer: /CN=41d10b88eb24f6262d9315368a5d01e1e0860c4e
Certificate serial: 01824A328D581DB9252E07B9DEE72CFD692B
Authority key identifier: 41:D1:0B:88:EB:24:F6:26:2D:93:15:36:8A:5D:01:E1:E0:86:0C:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdELiOsk9iYtkxU2il0B4eCGDE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/3r7yr_UHAwHJIkmEGSVyzE1zDyk.roa
Signing time: Fri 29 Jul 2022 13:43:23 +0000
ROA not before: Fri 29 Jul 2022 13:43:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12302
IP address blocks: 185.190.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4a:32:8d:58:1d:b9:25:2e:07:b9:de:e7:2c:fd:69:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d10b88eb24f6262d9315368a5d01e1e0860c4e
Validity
Not Before: Jul 29 13:43:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=debef2aff5070301c9224984192572cc4d730f29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6c:59:79:62:49:73:ee:ab:ca:cd:a1:ea:40:
30:1a:80:47:37:51:ff:b1:09:1e:45:bf:9b:f1:49:
7c:d9:d7:1a:6c:3c:aa:51:70:0f:67:c7:c4:50:d7:
9b:12:49:a3:4e:8c:95:59:c3:57:9d:98:17:55:82:
9e:39:d6:97:7b:99:6c:dc:03:e4:ee:93:b8:1e:91:
3d:14:04:13:64:a0:83:9c:0a:78:be:ce:81:58:1f:
44:52:57:77:63:ac:53:f5:ae:75:cd:dd:3b:f0:6f:
5a:17:5a:7e:54:19:a7:7e:ed:f9:b5:64:96:ab:d9:
19:4e:8c:bc:23:a7:79:32:cf:6a:ba:2b:97:ad:9e:
45:21:2a:aa:d4:30:c7:ae:be:64:c0:5d:b4:12:ce:
4e:af:da:6d:cb:52:a4:c4:ba:e0:3e:f4:7a:4c:8a:
7e:4e:d7:3f:7f:fc:f6:74:43:a1:5f:4f:84:6d:68:
f3:11:9c:d2:cb:c7:28:91:5e:cd:b5:a2:0f:7e:c2:
89:5b:65:12:ec:6b:98:13:2d:d2:5e:f7:38:05:0f:
e4:24:ee:79:11:84:c4:4d:a4:a7:2a:6d:63:b4:21:
9c:bb:97:40:a4:67:70:eb:64:36:a2:71:2a:96:c2:
58:9e:23:28:8d:7d:19:f3:cb:e4:a1:61:4f:76:f9:
9f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:BE:F2:AF:F5:07:03:01:C9:22:49:84:19:25:72:CC:4D:73:0F:29
X509v3 Authority Key Identifier:
keyid:41:D1:0B:88:EB:24:F6:26:2D:93:15:36:8A:5D:01:E1:E0:86:0C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdELiOsk9iYtkxU2il0B4eCGDE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/3r7yr_UHAwHJIkmEGSVyzE1zDyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/QdELiOsk9iYtkxU2il0B4eCGDE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.212.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:f2:b1:84:bf:b3:90:f3:8f:25:f1:d0:3d:8c:fe:f0:ec:71:
19:d3:36:fe:d5:82:c1:9c:6e:50:97:db:78:41:43:59:af:26:
d0:ef:26:fc:eb:e5:5e:1c:b6:7b:97:bd:37:f7:b4:8b:82:f2:
08:7e:eb:ab:a8:35:99:c6:17:76:59:01:ba:58:6c:43:77:07:
b6:58:b2:09:61:4e:bd:ca:5c:2e:24:89:35:11:39:9c:01:0a:
b0:17:bb:8e:4d:8d:3a:d7:62:f1:ff:21:67:cd:69:d3:40:28:
fe:59:f2:00:10:13:b7:25:10:72:d5:b3:65:27:00:8b:b7:77:
4b:ae:85:b4:db:d8:7a:5c:2e:31:80:71:61:e0:00:62:bc:d0:
4e:7a:a2:e1:38:b9:0d:de:00:3c:c0:bd:88:70:08:ca:c0:30:
a9:57:f3:5b:8e:43:dc:db:b6:50:37:65:a3:45:3d:c8:00:3e:
5f:98:e9:42:25:55:df:4d:b3:9a:64:28:14:f4:97:b4:df:50:
d4:6a:44:8e:28:77:5c:31:c8:5b:4c:0e:fc:7f:b3:ee:3e:13:
40:80:94:78:04:a4:88:d6:3d:18:91:5f:d1:2f:f8:19:0c:f1:
e4:b5:63:39:2d:93:d6:4d:dc:13:6a:29:c9:04:ce:70:15:d3:
dc:64:4a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:18 2024 by rpki-client on console-fra.rpki-client.org