Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/6djhrPdoZfngdXTwgbiF1O92eic.roa
File: 6djhrPdoZfngdXTwgbiF1O92eic.roa (raw, json)
Hash identifier: LJ30AZE/4KX9ohW1VuMtm0OBGZiGzyBmTcMYgTcYZrA=
Subject key identifier: E9:D8:E1:AC:F7:68:65:F9:E0:75:74:F0:81:B8:85:D4:EF:76:7A:27
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 172B6B0D
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/6djhrPdoZfngdXTwgbiF1O92eic.roa
Signing time: Thu 10 Mar 2022 20:37:10 +0000
ROA not before: Thu 10 Mar 2022 20:37:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 185.104.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 388721421 (0x172b6b0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Mar 10 20:37:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9d8e1acf76865f9e07574f081b885d4ef767a27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a9:a4:d7:c0:ff:66:56:30:0e:03:1a:89:da:
27:0b:f7:4f:91:db:68:a5:d2:22:26:97:56:e3:0f:
df:cd:df:f3:a1:6c:71:88:82:6b:fd:ed:10:26:4a:
2d:db:b7:47:18:4e:3f:02:a4:b8:ed:63:69:e1:31:
fb:a3:d9:da:73:5b:77:6a:43:46:0c:b6:96:35:8b:
36:ef:1f:64:95:d9:b7:1d:1e:0e:78:b0:c2:24:5b:
d9:97:ef:62:59:d3:5e:8a:2b:43:72:c1:85:1d:7f:
53:5e:9a:70:35:82:cf:a7:43:e0:70:25:0d:38:60:
d9:b2:cd:b8:ee:19:5e:c9:ef:20:12:4a:36:3c:67:
69:87:eb:a5:9e:cc:fb:a0:8e:c7:56:7d:03:5a:55:
2d:89:0c:8d:48:0f:43:86:8d:32:d7:41:0f:d5:df:
9a:5b:16:ba:16:9a:90:22:8a:fe:68:8f:4c:f3:c4:
4d:03:41:d0:44:5d:4d:b0:61:0c:23:1e:55:93:2d:
d0:98:43:d7:68:11:8e:06:d1:73:90:f2:73:0f:8a:
6e:07:eb:3a:94:e0:e2:e5:4f:1e:a4:54:e3:97:fd:
f2:81:99:cb:f9:13:b1:0f:17:d6:4d:5b:b9:98:be:
56:f6:42:b4:d2:0a:1f:d3:d1:d4:77:cb:f2:a6:39:
81:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:D8:E1:AC:F7:68:65:F9:E0:75:74:F0:81:B8:85:D4:EF:76:7A:27
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/6djhrPdoZfngdXTwgbiF1O92eic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.12.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:aa:a0:ff:5c:70:22:82:7a:72:d1:58:31:3c:b3:4f:12:6a:
39:4a:66:9e:00:ac:50:9b:9b:41:74:93:81:76:10:79:69:02:
db:84:e6:9f:15:44:62:0e:9e:76:34:f5:f2:2f:98:33:c6:bb:
d0:99:da:9d:02:e9:69:f3:46:f0:d1:9e:95:76:32:56:7b:4c:
fb:38:c8:80:73:d4:a1:3c:ad:96:4d:b2:39:97:d9:49:b8:78:
80:fd:80:5c:4b:3b:2b:ec:84:1f:26:e2:86:4f:48:cf:c6:43:
ae:8e:9d:c7:33:1c:70:0c:9d:27:66:b4:39:fa:8a:15:56:ee:
d3:37:d0:04:d7:f5:a9:cd:1e:45:8e:42:87:54:05:46:89:07:
c5:c7:04:19:33:55:08:ce:8e:87:8c:72:65:e0:25:42:b9:0b:
44:94:bc:f8:8c:48:ee:7b:78:b1:f1:b2:5c:66:53:b5:72:b5:
6d:7b:2a:5a:61:11:60:d7:9f:b5:54:7a:f1:54:49:30:cc:3f:
42:7b:08:21:1f:c4:0d:69:7e:45:82:d6:3c:4c:1b:a8:95:6e:
56:e4:6e:ee:72:cb:e4:b7:a2:ba:fe:70:2f:ab:d7:b4:2a:f5:
f8:f6:7e:dc:79:cc:c2:c7:a9:a9:50:27:28:f9:15:15:ed:81:
b0:8d:53:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:06 2023 by rpki-client on console-fra.rpki-client.org