Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/H3cTbGntFsaxQGFb0fZmEcKHrus.roa
File: H3cTbGntFsaxQGFb0fZmEcKHrus.roa (raw, json)
Hash identifier: rSvBqsAZbrC1vWYns2MmCe17QVQpDtouRGgGyfOda9k=
Subject key identifier: 1F:77:13:6C:69:ED:16:C6:B1:40:61:5B:D1:F6:66:11:C2:87:AE:EB
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 1390B95F
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/H3cTbGntFsaxQGFb0fZmEcKHrus.roa
Signing time: Sat 01 Jan 2022 05:56:24 +0000
ROA not before: Sat 01 Jan 2022 05:56:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207159
IP address blocks: 185.195.184.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 328251743 (0x1390b95f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 05:56:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f77136c69ed16c6b140615bd1f66611c287aeeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:eb:69:ae:37:26:83:1f:a8:b3:3d:0c:0e:01:
b3:c6:2a:30:58:c4:b0:43:60:e1:7d:66:c4:ea:02:
2e:c9:77:5c:b7:51:4c:84:89:e0:8a:4f:89:6a:12:
2d:4e:f1:5a:17:b2:9f:af:0d:89:18:b2:7c:27:98:
04:32:8e:51:e7:ba:81:6e:af:89:f4:1f:49:9c:6d:
1a:41:da:b2:45:06:e9:f0:5b:6f:49:8a:86:71:c2:
6b:7d:bb:16:07:de:c5:54:a4:c3:a7:01:71:52:17:
e8:24:4c:61:ad:8c:65:78:a5:fe:ab:9e:45:f3:d2:
b9:8e:9d:dd:ed:7f:c3:6c:21:53:dc:fe:59:9a:95:
25:a9:16:91:2d:51:6a:2c:98:0c:f1:4b:7b:e3:63:
5e:08:b6:98:81:70:71:04:74:a5:6a:b6:bd:a9:7a:
d0:af:6a:bf:69:d9:d7:68:b1:20:8a:9d:81:ce:fe:
73:db:47:8f:d6:50:1f:16:9a:33:b6:12:2b:eb:6c:
7f:ee:e1:ae:46:6f:34:7d:7d:c9:9f:72:32:02:b0:
c9:a7:b5:7a:02:5b:87:cd:28:68:61:59:4a:6d:b4:
21:35:a0:9a:b1:7a:c7:1a:01:3e:1b:33:24:b3:aa:
66:37:ae:76:78:fe:74:bb:3e:c8:e5:f2:6a:33:16:
72:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:77:13:6C:69:ED:16:C6:B1:40:61:5B:D1:F6:66:11:C2:87:AE:EB
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/H3cTbGntFsaxQGFb0fZmEcKHrus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.184.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:96:b2:2d:b6:b8:9c:96:d5:59:be:e9:ae:e6:22:81:cf:e4:
42:99:f3:85:9d:6c:83:7f:e6:75:29:21:86:ae:46:2b:e7:c3:
d6:b5:b8:35:3d:bd:a8:50:52:53:06:b9:09:ce:70:58:26:15:
08:14:73:78:aa:fd:ea:1b:85:6f:32:cd:a6:fa:c9:80:40:a1:
4d:8d:f9:29:7a:1e:3b:82:0e:2d:f0:95:13:9d:46:20:de:42:
65:88:c8:8e:40:68:6c:36:71:5e:33:15:bd:22:01:65:34:45:
c9:c6:47:e5:7c:a5:fd:25:fc:65:d2:b8:c1:4f:7e:d0:07:46:
b8:84:cf:c1:34:eb:ef:22:cb:2e:9f:05:12:9f:3c:77:32:30:
42:c5:4e:7a:f6:9b:4e:bb:87:49:eb:71:79:84:65:cd:4f:84:
77:b9:bf:a2:5a:62:39:ae:49:29:60:f3:97:37:ad:5d:bb:93:
ee:cc:1b:65:96:f7:bc:b9:64:93:8c:db:17:ae:04:ee:7f:b7:
a1:f9:99:03:c6:45:10:03:ec:95:3d:4a:17:99:95:97:d7:cd:
ee:10:b1:f7:f9:34:fd:9c:fe:58:36:7a:3c:29:00:1a:95:81:
8b:ab:b0:29:96:be:63:48:63:0c:02:fb:4a:64:16:a9:7a:bd:
1a:a3:eb:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-fra.rpki-client.org