Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/c9e704-958d-413f-8acc-6ea3cbfd3a84/1/gEnWzhVz9XJSmRLENXDR_V64444.roa
File: gEnWzhVz9XJSmRLENXDR_V64444.roa (raw, json)
Hash identifier: /AqOFXwLMO7Sx9M7ZaHX3XVoFzgeyIkh/gxLzAhIKS0=
Subject key identifier: 80:49:D6:CE:15:73:F5:72:52:99:12:C4:35:70:D1:FD:5E:B8:E3:8E
Certificate issuer: /CN=b8e0f79841c0210d95b4ef56ff68441c2aa9fc0f
Certificate serial: 352A3343
Authority key identifier: B8:E0:F7:98:41:C0:21:0D:95:B4:EF:56:FF:68:44:1C:2A:A9:FC:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uOD3mEHAIQ2VtO9W_2hEHCqp_A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/c9e704-958d-413f-8acc-6ea3cbfd3a84/1/gEnWzhVz9XJSmRLENXDR_V64444.roa
Signing time: Sat 01 Jan 2022 04:51:39 +0000
ROA not before: Sat 01 Jan 2022 04:51:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200409
IP address blocks: 185.156.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 891958083 (0x352a3343)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8e0f79841c0210d95b4ef56ff68441c2aa9fc0f
Validity
Not Before: Jan 1 04:51:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8049d6ce1573f572529912c43570d1fd5eb8e38e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f3:38:31:f0:d4:74:4c:04:c2:fa:89:04:70:
33:3e:b3:8c:c3:33:f2:54:cb:66:7e:be:e1:2f:a2:
6c:10:de:b6:10:06:fd:1a:00:60:09:5f:5e:e4:cc:
cc:8a:89:60:26:6b:68:e4:44:78:46:1c:61:b9:3d:
38:c0:b9:7b:fa:e7:1a:9c:04:8b:18:a9:c6:8c:6e:
9d:f2:a2:13:cf:a8:5b:fd:23:4e:56:cd:97:1b:9d:
40:08:88:7b:29:30:54:53:35:c4:ce:f5:58:42:8a:
19:2b:81:be:57:37:45:02:8d:8e:d7:aa:1a:15:83:
c7:7f:ba:97:b6:9f:8d:0f:8f:f8:6a:2b:34:81:91:
c6:73:cf:4c:fc:b3:2e:54:0c:2e:df:f3:fa:b0:c5:
60:01:48:ce:37:49:ff:a8:45:76:d3:d7:75:57:75:
ab:58:66:37:9c:73:06:e4:be:c9:4f:12:b9:d5:65:
4d:0d:02:77:1d:ca:c3:90:d7:df:6a:9c:a6:8c:54:
d6:87:0b:de:3b:0b:76:0e:56:5e:94:3c:de:2e:97:
de:24:7c:c0:60:1a:5b:10:1d:b7:1f:f5:02:17:6f:
ed:22:52:24:a4:60:70:88:dd:62:96:09:bb:ec:79:
df:87:34:78:db:2c:f6:97:81:c8:4d:ef:5c:2a:9d:
af:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:49:D6:CE:15:73:F5:72:52:99:12:C4:35:70:D1:FD:5E:B8:E3:8E
X509v3 Authority Key Identifier:
keyid:B8:E0:F7:98:41:C0:21:0D:95:B4:EF:56:FF:68:44:1C:2A:A9:FC:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uOD3mEHAIQ2VtO9W_2hEHCqp_A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/c9e704-958d-413f-8acc-6ea3cbfd3a84/1/gEnWzhVz9XJSmRLENXDR_V64444.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/c9e704-958d-413f-8acc-6ea3cbfd3a84/1/uOD3mEHAIQ2VtO9W_2hEHCqp_A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.151.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:42:1f:c0:6e:65:d1:e7:08:c5:ff:a7:10:9a:22:73:5d:1b:
d7:f3:52:2d:2f:bf:97:1a:e6:7f:7a:28:66:33:06:7b:c7:f6:
95:f3:e5:4e:02:a4:70:f8:61:86:e1:4a:31:61:45:0b:d3:b5:
26:7d:5b:ce:b9:3f:89:cb:ed:9d:d3:59:46:d3:38:ec:1c:01:
ff:3e:9b:a1:e4:ff:37:c0:ec:a7:df:ac:d2:ad:8f:af:89:1e:
f3:49:08:1f:99:7a:cb:4a:0b:37:fc:c6:6c:23:94:c2:77:bb:
48:52:b5:ae:90:79:76:48:e4:62:0d:0c:ad:71:52:bc:bd:0b:
b2:25:9b:70:26:2b:c9:6c:60:65:9f:65:51:1a:5a:1c:cd:4b:
4f:44:74:26:f3:d4:da:71:53:86:40:92:2b:b4:e3:7f:e2:19:
4b:bc:34:3a:e1:29:3a:f8:e4:09:78:a2:cb:b7:4a:9b:6c:fc:
b5:61:48:81:7b:0d:d6:9e:42:e4:be:26:7a:73:03:f5:78:36:
ba:74:8c:20:3a:4d:0d:44:36:05:7b:88:ca:c3:f8:88:3b:9d:
85:99:8d:d6:f2:b8:6c:4d:78:40:22:82:d4:b5:70:43:15:b9:
77:7e:a0:c1:13:f4:27:73:0a:21:6c:6b:7e:36:40:5a:f7:0a:
0e:32:71:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:28 2024 by rpki-client on console-fra.rpki-client.org