Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/4JhTPlRYmtlrSSJfeXK-lW6VQQw.roa
File: 4JhTPlRYmtlrSSJfeXK-lW6VQQw.roa (raw, json)
Hash identifier: ZXoRvHjFbWY2YwQG1Dn2Gxztc3Ldse/wSv6Nnl2IRqo=
Subject key identifier: E0:98:53:3E:54:58:9A:D9:6B:49:22:5F:79:72:BE:95:6E:95:41:0C
Certificate issuer: /CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Certificate serial: 180B3B6C
Authority key identifier: 81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/4JhTPlRYmtlrSSJfeXK-lW6VQQw.roa
Signing time: Sat 01 Jan 2022 09:01:09 +0000
ROA not before: Sat 01 Jan 2022 09:01:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8473
IP address blocks: 185.65.188.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403389292 (0x180b3b6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Validity
Not Before: Jan 1 09:01:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e098533e54589ad96b49225f7972be956e95410c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:72:0c:56:34:0e:eb:6b:ea:2a:17:d4:85:3a:
49:41:7c:d2:40:6a:cb:e6:07:aa:5e:6c:1a:04:84:
39:ef:c4:bc:40:b1:44:4d:a1:3c:26:d2:ab:15:93:
46:38:d1:be:06:a7:4f:d3:16:42:2b:e6:08:f3:47:
57:cf:a9:28:0d:fb:b5:41:bc:87:15:70:93:02:3d:
da:fe:18:92:f3:80:55:d3:3b:dc:da:fc:c4:a3:6b:
ec:ed:7e:0b:90:68:8b:f5:7b:7c:d8:7f:62:6c:92:
8d:b0:6f:48:da:4d:cf:67:d7:10:a4:a0:5d:6d:d0:
e7:79:f8:3f:b9:38:63:97:21:d1:5d:35:8e:e8:be:
9f:19:41:92:0a:26:c4:b2:be:f2:f3:f8:5b:01:e8:
96:a3:2b:5e:81:46:f1:a6:7f:2e:23:86:ce:63:90:
43:c6:55:30:f5:2b:c0:53:80:bd:22:5c:9e:43:75:
8f:6f:a1:d7:4d:7d:bc:5e:7c:6c:d5:62:41:ba:ce:
fa:c1:32:54:2e:d0:69:9c:31:c1:ce:0a:55:cb:43:
a5:da:92:26:97:93:53:bb:e5:2d:42:67:b5:88:2a:
9c:2a:65:44:43:86:10:0b:cf:df:8f:8c:53:b7:79:
49:d6:a2:29:80:be:e4:f8:7c:ca:74:5a:22:3e:4d:
1a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:98:53:3E:54:58:9A:D9:6B:49:22:5F:79:72:BE:95:6E:95:41:0C
X509v3 Authority Key Identifier:
keyid:81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/4JhTPlRYmtlrSSJfeXK-lW6VQQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.188.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:50:6b:93:11:13:64:cc:44:da:32:7e:21:c0:f6:5a:cc:c1:
b8:f9:3b:88:9f:95:41:98:c2:07:bd:5d:de:a2:ad:4d:4e:c7:
c4:a6:90:06:b8:9b:be:b6:d0:d1:84:3b:ce:24:be:a5:c9:68:
f1:b8:ec:1d:31:44:61:d0:a0:d3:64:04:1b:50:14:8e:d1:a9:
00:95:e5:b6:fc:72:7c:2b:9f:53:24:71:4e:25:82:15:0d:f3:
1e:cc:34:8c:30:a3:f2:f4:6b:21:d8:8c:ca:4d:27:13:7c:b8:
47:fd:d6:e5:d3:08:11:50:1f:3f:84:15:e2:3c:e9:8f:b4:79:
b2:4c:4c:1a:9f:87:69:89:ef:14:22:44:26:cd:41:04:83:89:
b7:ba:47:b3:b8:74:b7:84:4b:87:54:08:db:20:55:3d:b8:73:
c3:c9:0a:23:a4:70:4d:2a:87:26:9d:16:05:66:16:96:a8:ff:
0e:95:f8:a1:a7:83:16:e4:00:41:15:1b:50:63:f5:eb:0e:32:
8e:b2:ef:bd:b2:1b:3b:c2:ed:65:a1:a6:4e:e3:c2:39:b5:61:
11:64:01:9f:23:fe:18:64:f5:74:1d:18:ad:fb:14:81:5b:5e:
2d:4b:1d:23:12:a5:61:1b:eb:f4:75:b2:22:3c:1e:0a:5b:69:
73:0a:08:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:47 2024 by rpki-client on console-fra.rpki-client.org