Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/hIpMrmaulS3M8G-UVU8s3y2huuU.roa
File: hIpMrmaulS3M8G-UVU8s3y2huuU.roa (raw, json)
Hash identifier: Bmqj2NA5PkvzKD5jZ+IbXhYcxd3d0JPB4f0VTZhUP+A=
Subject key identifier: 84:8A:4C:AE:66:AE:95:2D:CC:F0:6F:94:55:4F:2C:DF:2D:A1:BA:E5
Certificate issuer: /CN=26a5aa918cbfeb3e12997f33890feb258907b343
Certificate serial: 036E67F1
Authority key identifier: 26:A5:AA:91:8C:BF:EB:3E:12:99:7F:33:89:0F:EB:25:89:07:B3:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/hIpMrmaulS3M8G-UVU8s3y2huuU.roa
Signing time: Sat 01 Jan 2022 05:06:09 +0000
ROA not before: Sat 01 Jan 2022 05:06:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48760
IP address blocks: 185.84.136.0/22 maxlen: 22
195.62.12.0/23 maxlen: 23
2a07:1cc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57567217 (0x36e67f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26a5aa918cbfeb3e12997f33890feb258907b343
Validity
Not Before: Jan 1 05:06:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=848a4cae66ae952dccf06f94554f2cdf2da1bae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8b:0d:53:ef:06:b2:e6:6e:cc:d2:90:8b:dc:
74:40:85:e6:28:51:2a:55:0b:98:e1:d3:de:3f:76:
22:5f:8d:79:40:1d:96:a1:f8:9b:f4:8a:35:63:f6:
5f:0a:42:c2:0a:63:43:2f:8e:29:20:98:13:a4:53:
51:46:be:77:28:4c:6d:55:32:3d:02:6e:76:6a:d0:
eb:6d:85:0a:77:82:38:a7:f3:68:6c:0b:92:e4:25:
66:87:fe:d4:8d:55:ab:64:ee:38:f4:29:49:d4:ca:
bc:26:67:71:f2:cf:06:be:63:3b:fa:b4:c3:0b:05:
e4:88:7b:cc:63:c5:06:0a:68:62:24:1b:59:ab:20:
ef:ec:4f:5b:cc:4a:ea:90:54:ba:c6:98:7c:1d:ab:
76:65:c1:d6:83:43:9d:be:24:36:d2:54:69:31:be:
f0:83:73:e6:38:29:d7:1e:d6:02:57:89:8c:95:c7:
41:a1:51:52:0f:1f:9e:1f:46:20:8c:39:40:32:9e:
80:a1:0c:06:0a:7e:0c:6b:87:86:39:4f:26:7b:40:
92:71:a0:f3:f3:0c:ad:55:b2:17:4f:3f:54:b6:53:
93:b5:51:2c:ec:8f:4d:43:3c:29:9b:c8:e6:79:2d:
fc:d8:6d:3b:26:c1:5b:4a:f9:44:64:f7:d3:28:22:
d6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:8A:4C:AE:66:AE:95:2D:CC:F0:6F:94:55:4F:2C:DF:2D:A1:BA:E5
X509v3 Authority Key Identifier:
keyid:26:A5:AA:91:8C:BF:EB:3E:12:99:7F:33:89:0F:EB:25:89:07:B3:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/hIpMrmaulS3M8G-UVU8s3y2huuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.136.0/22
195.62.12.0/23
IPv6:
2a07:1cc0::/29
Signature Algorithm: sha256WithRSAEncryption
83:0d:c6:04:c9:e1:92:c1:12:a1:e7:23:29:22:cd:dd:9d:56:
ee:f2:44:6b:cf:d6:05:ca:88:34:e1:dd:f1:f3:6d:c7:af:99:
c8:93:c0:4b:7e:84:08:e9:e9:b9:c1:15:44:0a:3f:4d:5c:14:
53:74:ff:22:4e:d5:bb:48:60:9e:3b:28:0c:b4:a4:ee:82:6f:
01:35:ef:ab:d7:f0:e6:42:05:4c:2d:ce:36:9c:0b:02:e1:b6:
65:97:82:7e:e2:c5:db:6a:26:6b:de:10:06:41:b1:20:55:f5:
2f:6a:94:ae:cd:c1:cb:a0:73:54:b9:6f:df:0a:d2:23:b4:af:
8e:70:ea:4a:40:37:05:49:43:0b:5f:35:9e:08:e3:70:88:da:
de:c3:34:1b:a0:28:3d:05:73:b4:a2:45:4b:b6:98:da:28:8a:
14:ee:b8:53:7b:9f:c7:72:82:71:c8:3c:e4:1d:e8:17:5b:97:
aa:ec:89:67:93:7e:4e:6f:68:ab:07:0d:7e:8d:d0:29:1d:5f:
43:19:08:64:15:22:1d:72:d7:e8:ea:02:d8:3d:ec:8d:0c:fe:
1f:e9:b4:4e:96:ef:23:53:56:f8:66:84:54:0d:b9:68:23:5e:
ee:1c:0d:ac:1f:04:f9:0a:36:53:17:49:e3:df:e8:80:c0:be:
55:2f:87:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:21 2024 by rpki-client on console-fra.rpki-client.org