Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/7rhw1HWVV0nfVMdATTSXrt4Umeo.roa
File: 7rhw1HWVV0nfVMdATTSXrt4Umeo.roa (raw, json)
Hash identifier: 89Cd9rsIlRoB5vbVafVOEqRFi3YtWycDHIVd6uUJfDE=
Subject key identifier: EE:B8:70:D4:75:95:57:49:DF:54:C7:40:4D:34:97:AE:DE:14:99:EA
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 332A85BB
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/7rhw1HWVV0nfVMdATTSXrt4Umeo.roa
Signing time: Sat 01 Jan 2022 10:59:12 +0000
ROA not before: Sat 01 Jan 2022 10:59:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203331
IP address blocks: 82.144.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 858424763 (0x332a85bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 10:59:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eeb870d475955749df54c7404d3497aede1499ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b1:f0:5c:a9:6e:9f:d3:e9:12:81:ef:f1:47:
2e:5c:9b:60:1b:61:63:ea:9f:9c:b0:f0:36:e9:81:
61:b7:da:62:44:3a:36:d1:e0:c3:d4:4b:90:6e:b8:
6b:b1:13:72:e0:c8:74:12:e9:21:eb:9d:fa:7a:31:
69:d0:9b:3d:9d:6b:e4:fc:63:94:fb:57:32:f6:3a:
37:96:7c:af:7b:bc:86:3e:db:b9:09:0c:75:d9:ee:
92:da:49:d2:4c:28:0c:1e:79:1e:0c:ad:79:1a:fa:
15:2a:6c:b4:69:a0:b9:9a:9d:6d:b8:af:77:21:56:
14:2f:d3:d0:f2:0d:86:33:b2:bf:a4:0b:b4:ae:ad:
04:69:7a:1f:02:8e:a0:b4:4e:ef:c6:ad:1b:9a:23:
c4:bd:71:a3:d6:22:18:a3:2e:a8:60:14:4a:76:54:
05:0c:87:46:7a:98:fd:95:f7:11:5b:5f:a7:e8:7b:
82:f8:0d:c3:ad:f6:13:46:81:32:02:79:8f:1f:d0:
21:04:7b:de:8e:21:6f:f5:29:63:22:51:3d:7f:84:
44:a4:10:96:75:22:20:8c:8a:ba:b0:41:0e:d5:65:
4d:b4:f2:d0:52:05:c8:8e:56:f6:7e:10:0e:e9:00:
a6:10:d0:9b:36:28:82:d5:d5:e0:09:a4:e9:55:35:
8c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B8:70:D4:75:95:57:49:DF:54:C7:40:4D:34:97:AE:DE:14:99:EA
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/7rhw1HWVV0nfVMdATTSXrt4Umeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.144.186.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:5f:b3:c0:0c:8b:e3:d0:69:a2:a2:c0:5e:c0:5e:b1:4c:83:
0c:73:22:10:4c:5d:31:64:e1:ac:9f:6c:fc:80:05:09:01:b1:
9a:85:00:c5:ea:74:5b:ec:c7:7d:dc:40:d8:fe:6e:ca:a2:ae:
9c:06:a5:e7:cb:54:03:ea:7e:a5:ef:c8:31:68:28:5c:2a:ed:
9f:e6:a8:2f:54:1f:5e:b6:95:aa:9f:cd:b9:ba:a5:1c:7f:85:
45:1f:b6:9f:3f:5f:6d:fa:63:80:67:2a:51:f3:a4:12:3e:e3:
2a:db:7b:3f:dc:2f:69:1a:85:43:c8:f1:03:70:2d:50:f0:3e:
0f:e1:74:2e:d0:eb:cd:f2:39:09:7e:4c:15:76:4a:34:a9:ec:
b4:d0:80:9b:e4:ec:a5:20:c2:0b:d1:7f:bd:bd:d5:34:1d:2b:
cc:e6:2e:c1:f3:ce:ce:5c:34:95:ba:84:19:dc:5c:a2:c7:df:
70:44:7c:c5:4f:89:09:0d:f3:b3:0d:b3:b1:ff:a4:c6:a4:f6:
40:bb:7e:cc:0b:47:61:51:0a:3c:98:0c:46:9e:71:4d:d1:98:
5a:1a:b7:29:0f:e3:1d:b8:13:5a:64:e0:ca:43:60:78:29:19:
a3:41:cc:d8:44:14:c1:bc:22:fb:4e:20:5d:00:9a:10:69:3f:
31:39:1a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:02 2024 by rpki-client on console-fra.rpki-client.org