Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/a1b15f-7d3d-4af6-b656-65bb1a89f259/1/Po1DpYolJNDTJExmM-kj8hakfAI.roa
File: Po1DpYolJNDTJExmM-kj8hakfAI.roa (raw, json)
Hash identifier: l/E+O52f0FTukJ0dtC0b+eWrgEZuc1Ct1w9i6UW3Juk=
Subject key identifier: 3E:8D:43:A5:8A:25:24:D0:D3:24:4C:66:33:E9:23:F2:16:A4:7C:02
Certificate issuer: /CN=acd35e0da439bea65c48329ce9e8b1093f72300a
Certificate serial: 0135E83B
Authority key identifier: AC:D3:5E:0D:A4:39:BE:A6:5C:48:32:9C:E9:E8:B1:09:3F:72:30:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rNNeDaQ5vqZcSDKc6eixCT9yMAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/a1b15f-7d3d-4af6-b656-65bb1a89f259/1/Po1DpYolJNDTJExmM-kj8hakfAI.roa
Signing time: Sat 01 Jan 2022 06:02:25 +0000
ROA not before: Sat 01 Jan 2022 06:02:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200906
IP address blocks: 185.72.4.0/24 maxlen: 24
185.72.6.0/24 maxlen: 24
185.72.7.0/24 maxlen: 24
185.72.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20310075 (0x135e83b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acd35e0da439bea65c48329ce9e8b1093f72300a
Validity
Not Before: Jan 1 06:02:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e8d43a58a2524d0d3244c6633e923f216a47c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8e:af:e1:08:60:a7:e7:91:83:6a:d7:f8:51:
5e:09:30:d2:1b:75:c7:af:1f:25:dd:84:aa:92:0e:
2a:e9:d2:cb:20:51:37:63:5b:9e:a2:15:3f:fa:20:
18:cd:3f:f4:df:18:05:ed:e6:77:e6:fe:78:60:9b:
03:22:dc:9d:f2:b3:a2:8a:fb:db:54:4a:b8:81:d8:
57:40:f0:07:f1:bb:de:f6:31:34:fe:04:43:23:2d:
05:24:45:60:5f:e4:a5:61:ed:d9:a2:da:6b:ba:63:
28:f4:09:09:e2:e6:d3:60:25:61:38:96:66:a2:ee:
26:de:39:1e:ac:78:3c:8e:21:69:47:4a:c2:6a:1b:
b3:9f:25:9b:73:d2:40:74:69:ef:9b:bc:d5:f6:e2:
75:ed:f5:95:51:09:37:6b:ae:13:31:28:aa:12:b6:
cf:bb:70:58:df:d1:c9:32:85:4a:f9:4f:dc:d5:7f:
ce:66:f9:77:06:97:1b:56:7f:b4:19:88:52:06:76:
11:01:0f:8f:9b:10:70:92:f4:b9:e6:8f:9d:b1:fc:
e3:87:c8:16:17:7f:dc:12:90:17:17:ad:23:10:8d:
08:9e:2a:08:d2:8e:39:d7:9d:a6:05:00:b5:99:d6:
01:c8:6f:e0:d9:eb:65:20:16:a6:65:71:36:5c:f5:
a1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:8D:43:A5:8A:25:24:D0:D3:24:4C:66:33:E9:23:F2:16:A4:7C:02
X509v3 Authority Key Identifier:
keyid:AC:D3:5E:0D:A4:39:BE:A6:5C:48:32:9C:E9:E8:B1:09:3F:72:30:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rNNeDaQ5vqZcSDKc6eixCT9yMAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a1b15f-7d3d-4af6-b656-65bb1a89f259/1/Po1DpYolJNDTJExmM-kj8hakfAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a1b15f-7d3d-4af6-b656-65bb1a89f259/1/rNNeDaQ5vqZcSDKc6eixCT9yMAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.4.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:52:79:c1:fb:0d:36:07:8d:f6:66:47:8e:72:9b:93:ef:76:
07:8e:3b:9b:9c:fd:d5:7c:e3:8a:0a:37:5d:8a:9b:de:42:6a:
ff:ea:05:c8:19:ae:6d:10:60:53:61:aa:3e:04:49:a0:2a:0c:
90:05:6d:6a:f3:af:59:1d:9f:ea:a1:7b:68:31:3b:57:46:fc:
36:fd:ab:5d:fa:c6:5c:a6:d3:db:ad:3f:46:b6:5f:08:e6:8f:
f4:fe:b3:0b:b0:49:a4:12:2e:a6:ce:cc:17:ba:91:e6:cd:76:
4d:65:a4:79:87:93:61:be:23:bd:36:fe:a7:5b:53:fa:50:9e:
c0:d1:d8:70:3e:10:f7:dc:23:c5:ba:be:13:0b:4a:91:a6:d1:
1a:39:69:77:42:38:df:96:cd:d6:9d:b1:b7:e8:9f:ef:de:e6:
2f:8f:c3:0a:7f:71:fb:c1:3a:d9:ca:10:41:5e:d2:c9:fc:03:
b3:21:53:62:71:02:a8:80:ae:83:c0:60:ff:f2:26:3f:a5:e5:
fd:f2:12:cd:c5:27:ba:e4:0e:b6:a4:7f:9c:59:39:ab:9e:91:
ff:c8:74:27:b7:c9:a4:77:26:ff:62:f1:99:be:8e:f8:ef:bc:
59:57:20:11:5a:ce:c7:aa:c8:f8:e1:bf:1a:84:f3:c4:9d:38:
ba:87:cc:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:56 2024 by rpki-client on console-fra.rpki-client.org