Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/D1e3x_dBkR7tX8iwAyTjOTUenzw.roa
File: D1e3x_dBkR7tX8iwAyTjOTUenzw.roa (raw, json)
Hash identifier: qwmlVjSv/+8cPHBN//TE2UWdsb8/uwjG0YZ8A0yJ62s=
Subject key identifier: 0F:57:B7:C7:F7:41:91:1E:ED:5F:C8:B0:03:24:E3:39:35:1E:9F:3C
Certificate issuer: /CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Certificate serial: 0541C2AD
Authority key identifier: B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/D1e3x_dBkR7tX8iwAyTjOTUenzw.roa
Signing time: Sat 01 Jan 2022 02:53:09 +0000
ROA not before: Sat 01 Jan 2022 02:53:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198504
IP address blocks: 185.204.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88195757 (0x541c2ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Validity
Not Before: Jan 1 02:53:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f57b7c7f741911eed5fc8b00324e339351e9f3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:74:e4:f4:4e:17:9e:f8:eb:47:b0:66:89:90:
2e:a5:fa:1f:aa:d5:50:a3:cd:54:22:09:3e:af:56:
3c:9e:7c:eb:c8:92:f8:37:61:d6:7a:2b:6b:bc:ef:
20:26:94:cd:f0:30:e7:84:99:56:ae:6e:1c:e0:c7:
0d:b5:88:6d:8d:5d:a4:32:0e:1f:e3:ad:70:04:e0:
16:d0:09:4a:79:ae:30:b3:ed:fd:fc:b2:f5:67:98:
7f:d8:08:01:7f:68:84:97:99:08:33:32:57:87:c8:
24:77:77:8e:be:7b:a5:8e:23:00:02:86:8e:91:16:
e2:3c:f3:8b:68:07:0e:cd:5f:03:ce:2d:ef:f6:fe:
bf:3f:17:a0:22:ee:5c:4a:79:6f:97:09:c2:6f:c3:
76:ea:33:2a:44:4a:8e:43:bb:a9:4f:de:3c:89:73:
7d:8b:ad:05:70:a6:61:b3:4f:d3:bd:36:6e:90:bc:
f1:39:6d:46:53:69:fa:9e:fe:ff:5f:b4:3f:1f:36:
a7:ce:3b:0a:f2:8d:d9:18:8f:99:2c:c9:f7:87:86:
d8:c5:10:a2:f4:01:1f:95:2f:4c:88:77:c8:42:6f:
0e:5e:c4:33:ac:50:40:f2:46:bf:ad:37:e1:08:61:
4e:1b:f7:18:ed:9a:aa:30:18:33:bf:20:19:10:21:
ab:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:57:B7:C7:F7:41:91:1E:ED:5F:C8:B0:03:24:E3:39:35:1E:9F:3C
X509v3 Authority Key Identifier:
keyid:B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/D1e3x_dBkR7tX8iwAyTjOTUenzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.228.0/24
Signature Algorithm: sha256WithRSAEncryption
30:d6:52:e2:0a:c6:dd:37:29:90:e1:ca:e4:a5:c0:ab:a7:25:
14:a1:f6:97:fe:56:20:2b:35:0d:80:9f:c9:d6:a3:42:a7:44:
53:a2:6d:23:61:58:e8:e0:41:7b:8d:b5:93:59:84:ba:28:7e:
3f:cf:c7:2d:77:73:e3:ce:70:bb:ac:a4:70:20:78:1c:bc:bd:
ff:d2:27:1c:57:12:19:04:ff:f1:67:a0:7d:a8:32:c1:65:ad:
c6:7b:bc:e2:c9:99:30:57:8c:0e:b9:b2:09:ee:1d:04:55:fe:
0b:0a:47:e7:1c:55:de:b2:f7:33:4c:8c:93:0a:31:c3:bd:e1:
b6:a2:8d:47:2c:fc:9f:c0:a3:66:a9:86:fb:eb:97:b1:a2:57:
0e:f4:43:32:61:ef:bf:a1:1e:11:d8:31:cf:2d:74:5a:54:01:
da:a5:ae:91:e2:13:65:d9:ea:44:f0:fa:39:35:8b:e0:48:e7:
23:a9:33:2e:e2:5a:9d:11:be:d9:14:b9:fa:17:21:c2:f8:5c:
91:2b:ae:a8:a0:aa:3d:47:39:ba:ea:8c:ac:f6:a8:a9:dd:87:
26:81:72:59:45:26:f0:60:19:cc:d8:f0:54:f7:e8:7e:65:0e:
0b:9f:9a:47:d1:2d:5d:71:f1:d9:79:03:ec:ed:d0:20:6c:8b:
6a:4a:1e:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:27 2024 by rpki-client on console-fra.rpki-client.org