Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Dd8bitQpSj_TqasPQSOoebPjNJY.roa
File: Dd8bitQpSj_TqasPQSOoebPjNJY.roa (raw, json)
Hash identifier: 4QmDa+9tFA239q0O98wA9HWchHxkgvkjUE5xw7BhyTY=
Subject key identifier: 0D:DF:1B:8A:D4:29:4A:3F:D3:A9:AB:0F:41:23:A8:79:B3:E3:34:96
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 485D2E46
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Dd8bitQpSj_TqasPQSOoebPjNJY.roa
Signing time: Sat 01 Jan 2022 03:00:22 +0000
ROA not before: Sat 01 Jan 2022 03:00:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39150
IP address blocks: 146.185.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1214066246 (0x485d2e46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ddf1b8ad4294a3fd3a9ab0f4123a879b3e33496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:75:d4:b5:b4:26:c5:a9:11:79:0a:6f:ac:40:
26:f4:06:58:0f:20:ab:ec:91:9e:aa:01:7e:55:96:
25:2f:3c:50:f3:f5:26:2d:57:cc:7f:d9:3d:66:08:
46:d6:53:8a:da:c2:73:e9:c4:b9:b2:f8:e3:cf:c8:
7b:5c:35:8b:7a:a8:2f:8e:4d:94:33:05:0b:8e:9b:
6a:1a:37:c2:69:2d:19:d3:19:b9:63:71:17:b6:4b:
39:6e:d5:92:ef:6a:ac:b3:4e:83:9b:b2:18:31:bf:
fa:2d:1f:4d:c6:3c:50:a8:2e:8d:7d:48:17:d0:33:
18:ac:9e:cf:0a:c5:70:1d:47:90:df:20:b2:f4:fb:
75:e0:20:d6:30:54:a2:87:32:87:bc:b6:fe:80:3d:
43:38:26:49:30:a3:26:df:1b:7e:3f:41:ed:f6:ff:
ba:11:ab:fb:0c:96:ab:97:a1:4e:42:0a:71:9a:e9:
5c:0b:d0:24:65:fb:b8:3d:ad:8e:52:d6:05:ed:04:
ac:ca:ee:46:1f:5e:62:0a:53:a0:cf:0a:a4:61:7c:
f9:54:69:c9:dc:22:d8:84:28:4c:34:bf:ab:54:af:
c8:0c:5b:15:36:81:5c:e8:57:0c:7c:c4:8a:6a:ba:
ce:ed:3a:05:e9:16:e7:d3:4b:47:c5:21:02:fa:ad:
ca:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:DF:1B:8A:D4:29:4A:3F:D3:A9:AB:0F:41:23:A8:79:B3:E3:34:96
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Dd8bitQpSj_TqasPQSOoebPjNJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.185.238.0/24
Signature Algorithm: sha256WithRSAEncryption
62:1f:09:98:15:24:cb:63:51:94:9b:3b:7a:05:4f:d6:53:ec:
91:c9:52:52:f4:b3:c9:1c:7d:7b:96:bb:c7:d6:47:d9:14:d3:
de:3f:11:7d:7c:39:f4:d0:7e:36:e2:83:ef:fb:6d:45:b1:20:
6e:f5:b1:0c:12:d8:b6:f0:c6:e7:bc:33:75:f6:40:08:fe:08:
ba:39:70:2e:56:e7:b1:fd:cf:77:b1:7b:bf:e2:96:61:3e:e7:
a2:d9:5e:7b:bf:9c:be:6e:be:36:9f:28:40:6c:24:09:06:9d:
20:c7:44:28:da:ce:2f:96:f1:29:98:f4:d3:e2:58:c4:dd:08:
52:4c:02:b0:4d:9e:e3:af:2d:a7:0d:c5:c3:4a:16:12:ad:22:
87:e0:c9:fe:e4:8b:af:8c:fd:69:55:83:15:62:de:36:be:77:
80:ca:a3:b8:af:02:a8:1d:42:9b:f9:b2:e3:5b:88:e6:3f:b8:
e6:b6:7f:0e:61:17:a0:a6:50:08:9b:f0:49:1b:2f:92:3e:02:
be:ff:a0:97:c1:58:8d:a1:32:30:31:60:e0:83:94:ac:0e:a7:
c1:02:f4:82:ec:c2:14:fa:43:42:8b:13:83:71:77:ea:6d:ed:
97:cf:85:db:ce:b7:dc:ea:c8:61:7b:f4:51:27:80:d5:ce:f4:
fd:f8:c7:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:56 2023 by rpki-client on console-fra.rpki-client.org