Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/OL0xnTRp-PxDFjOv8f5Emqtz7Dc.roa
File: OL0xnTRp-PxDFjOv8f5Emqtz7Dc.roa (raw, json)
Hash identifier: hQxStOSgcbjCBsesiURbaC1Yoj6ZfgNAqSBy1SK+dH8=
Subject key identifier: 38:BD:31:9D:34:69:F8:FC:43:16:33:AF:F1:FE:44:9A:AB:73:EC:37
Certificate issuer: /CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba
Certificate serial: 37A262DB
Authority key identifier: A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/OL0xnTRp-PxDFjOv8f5Emqtz7Dc.roa
Signing time: Sat 01 Jan 2022 12:55:26 +0000
ROA not before: Sat 01 Jan 2022 12:55:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204573
IP address blocks: 185.112.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933389019 (0x37a262db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba
Validity
Not Before: Jan 1 12:55:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38bd319d3469f8fc431633aff1fe449aab73ec37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1a:dc:ec:76:06:53:a2:66:13:0f:e0:da:2e:
2c:9b:33:d6:47:b6:6c:5d:c6:92:4a:4f:d1:ea:68:
a4:0d:5f:56:2e:a4:3d:76:51:32:91:0d:bc:61:0b:
db:bb:42:36:b6:0a:34:dd:b2:ff:3f:44:56:14:84:
89:08:45:03:5d:6d:0b:bc:d8:6f:ed:4f:c4:e0:f6:
04:1d:11:45:4a:8c:93:71:5b:21:43:8c:f7:9e:c1:
f7:f3:61:62:20:fd:94:61:f4:50:14:b4:76:15:05:
db:0b:e0:96:ee:4d:05:d6:f3:d1:81:1d:d5:a9:91:
83:b9:62:9c:62:bd:50:6c:14:f9:41:e5:da:bb:3a:
0d:54:6e:0b:e8:28:db:1d:c5:43:26:63:b2:68:54:
77:21:eb:32:08:71:32:9a:c5:6d:8f:e1:53:38:f9:
b2:a0:cf:8b:66:d6:8a:83:e3:93:1c:b5:17:d3:34:
08:18:4a:64:24:f2:c6:37:8d:b5:ef:65:4a:47:88:
20:e7:89:83:0c:d5:67:fc:6d:75:f7:56:82:c5:f4:
18:7d:9f:82:52:77:99:c2:89:db:03:9f:46:a8:f8:
97:e1:5f:3d:79:d0:37:92:e3:db:50:7b:69:07:c5:
4f:9f:e9:eb:53:4b:2b:71:14:f3:0c:5e:0f:62:a3:
51:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:BD:31:9D:34:69:F8:FC:43:16:33:AF:F1:FE:44:9A:AB:73:EC:37
X509v3 Authority Key Identifier:
keyid:A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/OL0xnTRp-PxDFjOv8f5Emqtz7Dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.175.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:c8:6c:64:bd:d6:25:04:ad:6a:7b:ec:6e:bd:8f:5e:49:89:
b8:79:d8:25:ee:17:28:6b:46:d1:9e:06:b0:ff:3d:b8:54:43:
63:89:5b:79:21:c5:0d:f2:ac:cb:48:4a:ab:a1:db:40:8b:7e:
de:68:2a:c6:9d:14:60:47:f4:58:f2:24:1a:0f:39:8e:db:27:
a4:9d:8d:72:91:6d:13:6b:e6:5a:36:d9:cb:71:03:3c:1d:6c:
09:39:be:ea:ce:9d:cd:79:c1:43:99:d4:83:be:e6:a3:de:25:
2a:48:75:41:0d:78:7a:70:11:d3:b6:7c:08:23:9a:79:8c:d1:
e3:fa:6b:37:65:cf:83:7a:de:ca:ff:0a:71:2e:97:c9:0c:9b:
dc:7e:26:36:61:de:79:e8:b3:68:98:23:95:4e:36:0d:98:4f:
cb:dd:23:9b:31:a0:d5:ec:60:46:8c:71:5d:9f:bf:80:db:e5:
8d:0c:60:47:a6:f2:f2:95:64:35:cf:52:d6:ae:ac:b5:d8:50:
89:a9:1c:b4:42:b1:04:44:37:91:c5:63:57:9c:6c:58:f9:9c:
ea:be:94:6c:4e:49:8d:27:00:be:0d:b6:b3:26:4c:02:44:78:
3a:b0:00:08:7e:86:28:4c:39:f5:97:e6:b3:fe:df:1e:de:78:
3f:49:dc:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:21 2024 by rpki-client on console-fra.rpki-client.org