Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c2d399-4ae9-4431-9161-58efa0bee084/1/rHexYSlgn4KBFpEmiQSSVSGfhD4.roa
File: rHexYSlgn4KBFpEmiQSSVSGfhD4.roa (raw, json)
Hash identifier: 0znu58knRr3FVKzxQGcyTsi4RE4WAh5J3dRKlZSUAjc=
Subject key identifier: AC:77:B1:61:29:60:9F:82:81:16:91:26:89:04:92:55:21:9F:84:3E
Certificate issuer: /CN=12c603666719e979bef0921451a2ec264ed01209
Certificate serial: 0184BFB9440E125F467A03A614290B97A34E
Authority key identifier: 12:C6:03:66:67:19:E9:79:BE:F0:92:14:51:A2:EC:26:4E:D0:12:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsYDZmcZ6Xm-8JIUUaLsJk7QEgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c2d399-4ae9-4431-9161-58efa0bee084/1/rHexYSlgn4KBFpEmiQSSVSGfhD4.roa
Signing time: Mon 28 Nov 2022 19:31:40 +0000
ROA not before: Mon 28 Nov 2022 19:31:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35398
IP address blocks: 185.211.29.0/24 maxlen: 24
185.211.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:bf:b9:44:0e:12:5f:46:7a:03:a6:14:29:0b:97:a3:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c603666719e979bef0921451a2ec264ed01209
Validity
Not Before: Nov 28 19:31:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac77b16129609f828116912689049255219f843e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8d:43:49:e1:8c:13:e5:d8:3e:ce:06:b6:66:
c4:a4:58:31:f2:58:58:22:b7:00:d4:8c:e0:d2:f2:
7c:34:e0:f2:e0:bd:49:23:a2:19:51:13:5f:ec:b4:
c4:c0:5b:dd:40:73:5a:5e:d9:89:a7:c6:ea:c0:7f:
e2:15:41:2f:14:dd:80:e2:19:23:f6:99:42:58:5c:
01:5f:64:79:86:2b:03:cb:d4:64:df:e1:fa:50:39:
3b:cf:ac:01:6a:fe:6d:7b:e2:37:94:41:02:01:86:
76:31:76:39:ff:95:f9:3d:3b:d2:d1:e7:aa:ea:b5:
ee:b1:bd:fc:53:7e:bc:31:b1:4e:3a:84:2b:5e:8c:
a7:da:c9:49:0e:ac:25:33:98:ef:ba:c9:76:17:25:
10:ae:d2:ab:c8:ec:ab:c1:57:90:fe:6b:14:52:2b:
8c:dc:0d:e0:3f:73:a8:f7:c5:ef:33:d9:b3:2e:4c:
2b:69:dc:95:a6:6a:66:cb:e3:59:9d:35:a5:0f:94:
92:82:76:a3:3d:59:39:01:7a:00:92:90:8f:00:a7:
ed:df:40:f8:eb:e1:c4:99:54:69:e2:6d:3c:71:00:
2c:2b:56:8c:00:79:b3:13:57:5b:df:7d:fb:97:96:
1f:fb:b2:9f:c2:df:30:18:ee:11:64:bc:e2:0e:73:
33:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:77:B1:61:29:60:9F:82:81:16:91:26:89:04:92:55:21:9F:84:3E
X509v3 Authority Key Identifier:
keyid:12:C6:03:66:67:19:E9:79:BE:F0:92:14:51:A2:EC:26:4E:D0:12:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsYDZmcZ6Xm-8JIUUaLsJk7QEgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c2d399-4ae9-4431-9161-58efa0bee084/1/rHexYSlgn4KBFpEmiQSSVSGfhD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c2d399-4ae9-4431-9161-58efa0bee084/1/EsYDZmcZ6Xm-8JIUUaLsJk7QEgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.28.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:6b:d8:ed:48:8c:24:ca:3b:39:50:51:a4:e1:49:1d:34:3b:
29:92:31:15:b2:19:59:5c:34:db:60:e3:7b:71:be:6a:44:06:
ee:7b:d2:72:2b:11:35:f9:24:2e:35:d4:79:3d:5f:89:71:78:
95:84:c2:f4:20:db:72:14:de:e9:91:1a:40:e3:c8:0c:00:67:
5c:63:d0:43:30:a3:43:99:1a:b1:59:a8:d9:f4:85:87:5f:43:
72:8c:6a:ed:55:61:ef:ec:66:d9:3a:83:85:e3:f4:af:8f:c4:
79:ec:d8:05:01:62:74:94:b2:87:6a:1c:96:f6:b2:8e:87:de:
fa:db:ae:55:a9:d2:ee:c6:23:fe:15:e8:b0:63:92:03:e6:b7:
dc:f0:f2:07:45:0e:07:f8:2f:66:8d:a4:7d:a6:4a:05:25:44:
1f:d0:27:88:db:af:61:59:b0:3a:df:20:55:39:1e:fc:59:0c:
0f:de:37:26:4b:12:41:ae:ed:28:dc:20:6d:b0:4a:40:10:87:
79:22:f3:23:ef:28:ea:39:b8:47:96:77:19:4b:2e:28:f3:3a:
5b:1d:a3:84:2b:6a:94:55:4b:87:0c:cc:a1:35:6a:56:45:38:
14:e5:64:e7:a8:51:61:ba:bb:88:f1:29:f8:09:d4:ac:9a:71:
81:e2:82:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:00 2023 by rpki-client on console-fra.rpki-client.org