Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/H7vML62jmzCYn5rfUhQqJEQaK5Y.roa
File: H7vML62jmzCYn5rfUhQqJEQaK5Y.roa (raw, json)
Hash identifier: neWzj8+ziRmsZHsR6mNNMVHvj292YFt8xvzn5brtFhQ=
Subject key identifier: 1F:BB:CC:2F:AD:A3:9B:30:98:9F:9A:DF:52:14:2A:24:44:1A:2B:96
Certificate issuer: /CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Certificate serial: 0902B5C8
Authority key identifier: 20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/H7vML62jmzCYn5rfUhQqJEQaK5Y.roa
Signing time: Sat 01 Jan 2022 02:52:33 +0000
ROA not before: Sat 01 Jan 2022 02:52:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205706
IP address blocks: 185.205.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151172552 (0x902b5c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Validity
Not Before: Jan 1 02:52:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fbbcc2fada39b30989f9adf52142a24441a2b96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:08:58:5c:06:f0:47:62:06:50:61:e8:19:44:
2f:b4:e6:93:09:92:49:00:2c:df:00:f0:89:39:36:
8a:97:25:04:d5:76:83:ff:0e:c2:2f:a3:61:e6:44:
f1:76:95:73:27:b9:05:b2:a3:a6:54:36:bc:f3:6c:
86:d2:7c:55:69:44:85:51:e6:a0:70:c7:12:1c:35:
71:e2:75:8a:5a:04:42:80:23:d6:2a:0c:1f:37:a1:
67:6a:d5:ea:d1:eb:4b:43:f7:84:b2:20:55:a0:a1:
45:0f:a8:c1:62:69:2b:b2:f6:66:0c:99:94:03:20:
0e:8d:9b:88:aa:5f:f8:98:da:19:1e:09:90:37:14:
78:8d:cf:3e:dd:41:3b:82:81:34:78:69:4a:7b:d8:
04:ea:78:69:16:37:84:96:c1:38:20:db:9a:bc:a3:
0b:d2:5b:40:e9:68:24:f3:27:ed:70:47:98:ed:24:
e3:2d:c4:cb:96:43:f4:c4:fa:38:79:47:e8:8b:7c:
df:25:b8:c5:6a:f7:f8:f8:42:49:d5:f2:47:c2:da:
35:b0:7b:69:cc:36:84:a2:2b:44:32:10:bc:a5:2c:
4e:03:1d:4f:e2:d7:f1:83:25:dc:ec:12:c5:4d:18:
68:8e:d6:36:24:a4:8d:f0:4f:90:88:59:c9:6f:60:
c7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:BB:CC:2F:AD:A3:9B:30:98:9F:9A:DF:52:14:2A:24:44:1A:2B:96
X509v3 Authority Key Identifier:
keyid:20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/H7vML62jmzCYn5rfUhQqJEQaK5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/IC9MGjfpMTzdLup3UK4CjRjNWq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.152.0/22
Signature Algorithm: sha256WithRSAEncryption
39:b5:35:9f:ae:29:49:46:37:b8:c5:dd:60:b3:d5:66:0d:e3:
dd:37:02:c6:eb:e9:db:44:19:64:6a:59:58:5f:03:04:d8:6e:
6b:83:9d:84:ea:62:57:fa:bb:91:80:cc:cc:2c:42:07:24:32:
50:d3:89:8a:e7:2c:47:de:40:01:d5:e4:f8:dc:b2:f0:5b:50:
c1:ad:9f:13:5a:0b:3b:61:07:1b:de:fa:11:b7:40:71:1f:2e:
1c:21:be:a7:2e:b8:34:02:33:d3:ea:aa:10:29:7c:c1:2d:45:
5d:f1:5c:50:68:c9:3b:2f:b0:19:35:d5:e7:ae:49:32:dc:40:
7f:bd:5c:8d:29:01:a4:b0:c5:0e:29:c2:5c:62:54:cf:c4:93:
30:f9:9b:25:1d:9f:35:f2:bc:51:e2:b6:97:0b:85:ba:da:64:
3f:e7:1f:a2:2c:f4:64:d5:ff:1c:8d:52:35:85:4a:ec:a4:02:
a7:22:44:09:ea:4f:81:71:fa:cd:5c:84:54:66:86:0a:d2:a9:
37:fb:05:e2:b0:3c:86:33:38:4c:24:b2:03:f3:3c:96:dd:13:
e7:4b:fe:0c:a7:40:07:1e:ba:43:90:c3:92:09:15:7b:35:97:
60:08:49:b4:c5:60:3a:61:d0:6c:fc:8f:8a:22:eb:51:1e:6e:
7e:fc:92:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:01 2023 by rpki-client on console-fra.rpki-client.org