Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/3Y7Rk7BSlVI6uoAalE0nvF_6Dak.roa
File: 3Y7Rk7BSlVI6uoAalE0nvF_6Dak.roa (raw, json)
Hash identifier: VG1bJCzju17V/8PLvJorFpvxGiDCqdVKtZXXXtpq7Z0=
Subject key identifier: DD:8E:D1:93:B0:52:95:52:3A:BA:80:1A:94:4D:27:BC:5F:FA:0D:A9
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 38074DA8
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/3Y7Rk7BSlVI6uoAalE0nvF_6Dak.roa
Signing time: Sat 01 Jan 2022 11:02:22 +0000
ROA not before: Sat 01 Jan 2022 11:02:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204958
IP address blocks: 185.96.168.0/24 maxlen: 24
185.96.168.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940002728 (0x38074da8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Jan 1 11:02:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd8ed193b05295523aba801a944d27bc5ffa0da9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e3:d9:63:94:d1:81:ec:65:56:df:a1:7a:64:
51:80:08:77:6e:58:15:5a:cc:a0:f1:cc:65:1f:ce:
62:6e:3f:bd:1c:e8:24:e6:fb:07:b2:3a:ef:53:d3:
4c:cb:b3:54:29:95:d2:65:8c:d6:13:06:f8:bf:e9:
49:71:aa:c7:95:70:1e:7b:96:af:6b:da:a7:c1:df:
08:34:c0:04:e7:3a:d8:e9:e6:e4:f4:e4:bd:86:11:
d3:c8:d5:db:b3:b2:83:e3:85:4b:9a:d6:0e:7e:7b:
29:a6:00:bc:31:2c:60:52:6a:ae:16:f2:f0:05:bb:
a7:e1:e4:4a:e3:7b:d6:32:35:3c:d5:bf:c9:a0:73:
c0:ab:97:ce:90:49:f5:c2:1d:93:a2:fd:bb:2b:69:
86:ad:23:04:aa:70:ea:50:37:d7:d6:cd:07:99:c0:
a2:62:0d:8e:13:ee:b5:39:0a:df:f5:19:43:2f:43:
83:73:24:4c:00:8b:01:2c:a0:d3:2e:d7:37:e5:0a:
2d:d5:bb:03:41:84:43:4f:5b:a7:68:a7:ed:e9:4d:
8d:82:a9:e9:03:f4:6f:88:63:a9:6c:a1:3f:17:69:
6b:20:79:62:9e:d4:ce:88:27:c5:65:c3:f6:4f:87:
b1:6d:17:5c:22:38:97:66:91:50:11:26:82:e5:22:
f8:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:8E:D1:93:B0:52:95:52:3A:BA:80:1A:94:4D:27:BC:5F:FA:0D:A9
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/3Y7Rk7BSlVI6uoAalE0nvF_6Dak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.168.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:da:37:b1:4e:ba:7c:71:9f:8b:23:6d:77:1c:e6:97:f8:42:
41:47:e5:e7:6d:a9:be:dd:f5:de:87:28:35:bf:de:a6:e8:b0:
54:8d:c7:10:b8:79:7f:be:62:2d:f3:d8:ac:3a:6b:c7:a4:6a:
81:a8:76:6d:99:e4:af:89:e9:9d:83:02:4c:7f:52:24:5c:3e:
5b:3e:88:a0:9b:04:0c:2b:d9:47:00:08:f6:c6:ed:24:b8:a1:
30:d9:78:bf:8b:1c:d9:88:29:1e:81:90:a4:21:68:38:ff:94:
ac:e1:9b:cd:c0:65:e0:0e:87:9e:68:35:64:20:52:0e:50:25:
5f:fe:67:a5:1d:ed:e2:80:71:11:e3:3d:e6:83:bc:7c:90:92:
0e:c9:45:19:94:70:47:ce:17:e4:4b:f5:96:c3:4c:ba:2d:3b:
ca:58:d5:41:74:18:78:c8:ce:00:f8:ad:29:39:e6:b2:3e:dd:
2e:90:2f:3f:f3:57:eb:11:47:ea:c7:31:86:f3:8f:23:80:ff:
9a:fb:b5:79:5b:3b:4c:25:76:dc:d9:60:68:c2:f0:05:2d:de:
17:41:8d:87:13:67:53:f5:d6:f8:b6:c4:73:cd:ef:f4:1c:0f:
68:bc:b5:56:88:ae:56:a5:f0:82:14:ff:e4:81:ac:04:b4:64:
11:28:73:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:59 2024 by rpki-client on console-ams.rpki-client.org