Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/4c1b34-9c70-411f-b01f-be90b0fd1f78/1/dnJQS28PLq3EtL8tZ-_76KWCDlg.roa
File: dnJQS28PLq3EtL8tZ-_76KWCDlg.roa (raw, json)
Hash identifier: 4XmryJ7hu7o1mWcDZ7V87JT0a/q+41Ox+DndDqe4BMk=
Subject key identifier: 76:72:50:4B:6F:0F:2E:AD:C4:B4:BF:2D:67:EF:FB:E8:A5:82:0E:58
Certificate issuer: /CN=72426c3d11c9f24acc0a1d8454cbc9604865a809
Certificate serial: 0564749E
Authority key identifier: 72:42:6C:3D:11:C9:F2:4A:CC:0A:1D:84:54:CB:C9:60:48:65:A8:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckJsPRHJ8krMCh2EVMvJYEhlqAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/4c1b34-9c70-411f-b01f-be90b0fd1f78/1/dnJQS28PLq3EtL8tZ-_76KWCDlg.roa
Signing time: Sat 01 Jan 2022 08:55:33 +0000
ROA not before: Sat 01 Jan 2022 08:55:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200607
IP address blocks: 185.101.181.0/24 maxlen: 24
185.101.180.0/24 maxlen: 24
185.101.183.0/24 maxlen: 24
185.101.182.0/24 maxlen: 24
2a06:2040::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90469534 (0x564749e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72426c3d11c9f24acc0a1d8454cbc9604865a809
Validity
Not Before: Jan 1 08:55:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7672504b6f0f2eadc4b4bf2d67effbe8a5820e58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5c:4a:3a:cb:65:4e:ff:d3:f6:41:e4:df:7f:
87:e1:13:d1:7c:8f:d5:f0:e8:d7:5d:eb:3d:c0:24:
4c:9c:65:71:ad:48:3e:b6:af:31:30:10:8a:c4:44:
7f:3c:cc:64:33:82:89:70:62:b7:72:ed:e1:f0:eb:
6c:1a:8b:24:aa:62:d8:3b:1d:50:66:5f:ce:14:8c:
40:af:df:ba:7d:46:6f:c6:ad:e2:8e:43:4f:33:00:
96:31:ff:2c:8a:cd:ec:b8:8f:80:07:5c:ef:66:d0:
f3:66:e2:cb:0f:d8:cb:fa:9d:28:7b:a7:33:ff:b2:
08:f2:ca:b9:59:76:6e:04:de:7a:74:a6:58:b1:ac:
a3:ea:b6:36:a8:4f:8d:ec:f9:e0:22:1c:7c:75:42:
cd:43:64:b2:66:ac:17:7d:e8:40:c2:06:03:d8:ec:
1b:7c:21:9f:50:d1:6f:fe:3b:8f:12:94:48:dc:78:
f1:1a:68:30:80:74:19:b1:63:5d:32:1f:72:13:b6:
4b:29:b6:a9:44:e6:36:f9:38:96:d1:ae:9a:bc:6f:
40:e1:6b:03:1f:c0:d2:27:df:7d:c4:63:04:98:2b:
68:a8:7f:b7:9e:ff:d6:a5:5f:79:c3:3e:81:ba:de:
8c:04:ce:0e:a1:a1:5c:ee:a3:d1:03:f8:d5:ef:40:
69:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:72:50:4B:6F:0F:2E:AD:C4:B4:BF:2D:67:EF:FB:E8:A5:82:0E:58
X509v3 Authority Key Identifier:
keyid:72:42:6C:3D:11:C9:F2:4A:CC:0A:1D:84:54:CB:C9:60:48:65:A8:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckJsPRHJ8krMCh2EVMvJYEhlqAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4c1b34-9c70-411f-b01f-be90b0fd1f78/1/dnJQS28PLq3EtL8tZ-_76KWCDlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4c1b34-9c70-411f-b01f-be90b0fd1f78/1/ckJsPRHJ8krMCh2EVMvJYEhlqAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.180.0/22
IPv6:
2a06:2040::/29
Signature Algorithm: sha256WithRSAEncryption
47:d2:ea:ce:c0:04:c4:40:20:78:e9:fd:96:24:cc:03:a8:5a:
b1:32:fa:d1:e8:76:6f:1a:87:d9:6e:56:5b:01:cc:bc:dd:08:
cb:2c:71:8b:c2:a4:d6:0f:b2:83:d8:50:46:18:43:50:a1:5c:
e1:d9:6b:d0:a4:0a:af:e3:b6:15:ed:fa:df:b0:1b:37:bc:0b:
27:66:3b:6d:82:ba:b0:5a:5b:95:cb:2d:24:00:59:a1:bd:d0:
8e:7f:f2:e5:f3:62:16:f2:b3:45:17:a2:9d:57:4b:14:6e:3d:
28:87:f5:b0:94:6b:fa:45:97:78:49:5f:ab:f4:f1:00:85:83:
94:e4:8c:2a:20:a4:50:87:91:bf:81:f8:d8:11:47:3a:e8:c2:
b0:3d:22:6e:b7:20:af:73:18:fb:0c:b7:cb:24:a0:8e:ca:7f:
6e:8d:92:e8:61:9a:f6:82:42:bc:3d:d8:34:b1:d1:3d:95:bd:
38:15:d2:e5:87:03:3a:95:0e:14:c5:c3:90:cd:2b:33:e0:10:
cf:fc:60:1d:85:60:08:8e:3b:4c:0a:1e:46:23:38:aa:bc:79:
3b:79:0b:87:80:a7:58:76:c4:f6:05:e7:b9:a0:14:5d:27:cd:
01:e7:a2:e0:7f:75:b5:9c:52:1e:eb:bc:7f:fb:c3:99:53:46:
8d:72:5b:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:38 2024 by rpki-client on console-fra.rpki-client.org