Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d61275-e00a-4bfb-be8a-16b36d0801e9/1/n8A-A5A5TJSsIHvXfgJZJHMzHEk.roa
File: n8A-A5A5TJSsIHvXfgJZJHMzHEk.roa (raw, json)
Hash identifier: VqHxZQYLKdNn4hqK0P9THT6nAYHWSweac5NITMl9j1c=
Subject key identifier: 9F:C0:3E:03:90:39:4C:94:AC:20:7B:D7:7E:02:59:24:73:33:1C:49
Certificate issuer: /CN=3816e19b24a7e8cff189fabac28852cd8748a380
Certificate serial: 0C694738
Authority key identifier: 38:16:E1:9B:24:A7:E8:CF:F1:89:FA:BA:C2:88:52:CD:87:48:A3:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBbhmySn6M_xifq6wohSzYdIo4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d61275-e00a-4bfb-be8a-16b36d0801e9/1/n8A-A5A5TJSsIHvXfgJZJHMzHEk.roa
Signing time: Sat 01 Jan 2022 14:58:07 +0000
ROA not before: Sat 01 Jan 2022 14:58:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199826
IP address blocks: 185.33.47.0/24 maxlen: 24
185.33.45.0/24 maxlen: 24
185.33.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 208226104 (0xc694738)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3816e19b24a7e8cff189fabac28852cd8748a380
Validity
Not Before: Jan 1 14:58:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fc03e0390394c94ac207bd77e02592473331c49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e2:d7:ac:1c:f4:d5:27:ad:8f:21:91:66:e7:
9e:21:18:97:f6:0b:a7:c5:8d:4f:12:be:08:58:3b:
98:bc:49:f0:6f:f2:aa:0f:b2:84:5e:2b:b0:6b:b1:
9d:74:56:e2:84:34:9d:a5:34:af:8c:e9:67:b2:71:
6c:4a:16:68:3b:e8:e6:e4:ed:1e:5b:e3:82:bd:97:
6c:b7:8e:95:66:1d:28:f6:6b:d2:bd:e2:de:95:01:
8d:99:f8:93:cc:89:6b:5d:7e:1e:90:1c:4a:57:ac:
99:39:bc:d5:04:5b:ab:b8:7b:73:53:49:4e:ca:8f:
4d:d6:26:89:95:cb:c2:3b:11:35:bb:b2:22:06:6e:
ff:c4:78:3f:de:02:5b:47:73:51:d0:c0:6d:52:4e:
cb:1f:0b:4d:19:22:c0:b7:e0:bc:c6:e6:32:9a:f5:
7e:5e:d3:15:da:be:19:3a:72:0c:91:3f:2d:93:75:
2e:cb:4d:0d:6a:d0:05:e1:53:d9:04:a5:f2:1b:c5:
0b:3b:88:e2:51:a7:11:f3:60:5c:72:1a:51:5b:66:
b2:9e:83:01:6d:26:c9:20:cd:56:99:af:32:3d:49:
dc:f5:e0:b1:1e:66:6d:89:eb:57:50:19:c1:d9:94:
5d:34:05:57:4b:3a:e3:e9:f8:dd:d1:5b:87:1a:c1:
cf:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:C0:3E:03:90:39:4C:94:AC:20:7B:D7:7E:02:59:24:73:33:1C:49
X509v3 Authority Key Identifier:
keyid:38:16:E1:9B:24:A7:E8:CF:F1:89:FA:BA:C2:88:52:CD:87:48:A3:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBbhmySn6M_xifq6wohSzYdIo4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d61275-e00a-4bfb-be8a-16b36d0801e9/1/n8A-A5A5TJSsIHvXfgJZJHMzHEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d61275-e00a-4bfb-be8a-16b36d0801e9/1/OBbhmySn6M_xifq6wohSzYdIo4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.45.0-185.33.47.255
Signature Algorithm: sha256WithRSAEncryption
6c:59:0c:fe:0e:d0:1c:da:78:4a:2f:ad:57:33:50:dd:cd:19:
2c:6b:7a:51:7a:3c:b0:3a:2f:b6:4a:e0:72:4b:04:db:13:30:
df:f9:06:84:5c:30:5d:3b:cf:4c:f8:54:11:2e:a3:72:bd:28:
d6:a3:48:b4:54:05:64:a4:b9:1c:dc:e8:46:df:4b:37:50:ff:
e0:79:bd:76:aa:f7:c0:a1:bd:95:c1:22:ae:8d:af:f0:38:93:
32:e6:65:ee:7a:4d:a8:68:8f:42:04:f1:81:77:64:24:e6:1e:
2d:da:d7:03:6e:c8:80:61:56:0c:fc:14:79:81:1b:60:40:61:
f5:72:5d:60:dd:6d:73:c2:1a:bf:2e:eb:1d:f7:7b:88:40:24:
0c:98:07:23:4f:41:4b:b2:75:c0:63:0c:c7:23:f7:a1:74:45:
70:30:08:38:d7:42:69:7d:9e:b8:a5:88:97:37:3d:c8:84:fb:
4a:b4:7d:68:c3:d0:b6:5a:3b:68:e0:dd:56:e8:a8:ae:80:04:
8b:03:da:c5:c9:3f:4a:34:21:df:bd:ce:ca:6c:b8:67:f0:78:
b3:e6:ee:a8:85:8f:08:93:9d:bc:3b:fd:bc:66:c1:94:87:dc:
87:a5:70:98:af:6b:23:3a:e1:b0:23:fd:7a:b8:60:74:9e:6b:
f1:74:4e:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:01 2024 by rpki-client on console-fra.rpki-client.org