Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5b43b8-5cfa-4407-8b63-baa0a30e371f/1/d2rham7T-c2ieatLINhilneAZTc.roa
File: d2rham7T-c2ieatLINhilneAZTc.roa (raw, json)
Hash identifier: Pb11+sYYLTjOlHtCnGlDlfKanzpNW5Y7S4wC2VsW3RQ=
Subject key identifier: 77:6A:E1:6A:6E:D3:F9:CD:A2:79:AB:4B:20:D8:62:96:77:80:65:37
Certificate issuer: /CN=dc432b427a84b541164a2fcb6c34b54fba79ec9a
Certificate serial: 0A88BA5B
Authority key identifier: DC:43:2B:42:7A:84:B5:41:16:4A:2F:CB:6C:34:B5:4F:BA:79:EC:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EMrQnqEtUEWSi_LbDS1T7p57Jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5b43b8-5cfa-4407-8b63-baa0a30e371f/1/d2rham7T-c2ieatLINhilneAZTc.roa
Signing time: Sat 01 Jan 2022 16:06:39 +0000
ROA not before: Sat 01 Jan 2022 16:06:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202914
IP address blocks: 185.138.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176732763 (0xa88ba5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc432b427a84b541164a2fcb6c34b54fba79ec9a
Validity
Not Before: Jan 1 16:06:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=776ae16a6ed3f9cda279ab4b20d8629677806537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:55:15:5a:25:35:e7:e2:79:24:f3:20:cf:da:
12:f3:6b:1b:df:06:2c:58:63:4d:29:1d:9f:3b:08:
62:cb:9b:64:e6:42:e3:7a:6f:81:3f:92:23:c8:a7:
7c:ea:fb:6c:c4:18:a4:d7:8f:07:5c:f5:e3:2b:da:
54:c8:cb:1e:dc:8a:2a:e1:fc:35:13:1b:23:00:8c:
a6:71:65:43:4e:46:44:18:44:57:bd:37:07:03:8a:
cb:03:79:67:8e:14:2a:d3:13:33:15:c2:74:7c:a2:
0a:63:cd:2d:f1:48:8d:bd:43:6c:75:6b:9d:e4:ab:
01:2d:c7:1d:3f:d4:72:68:00:31:30:f5:e3:21:1d:
5e:71:e7:16:de:e6:21:1f:71:68:f3:96:a9:8e:04:
72:7e:b1:68:22:dc:fb:1d:88:1e:81:18:ec:f1:da:
0a:56:68:3a:e3:7f:70:a9:b6:41:31:ef:82:34:85:
96:25:af:6d:97:44:df:e3:03:4c:d5:9f:58:7c:c0:
be:27:fa:5e:61:8a:e4:a9:ff:96:30:ae:02:d6:4b:
76:2d:3f:c1:bc:a5:71:8d:9a:eb:72:15:03:9e:57:
72:24:3e:b1:89:b5:84:60:a3:88:06:22:78:07:95:
ea:9b:84:11:b4:47:92:40:93:6e:3b:93:70:63:04:
b8:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:6A:E1:6A:6E:D3:F9:CD:A2:79:AB:4B:20:D8:62:96:77:80:65:37
X509v3 Authority Key Identifier:
keyid:DC:43:2B:42:7A:84:B5:41:16:4A:2F:CB:6C:34:B5:4F:BA:79:EC:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EMrQnqEtUEWSi_LbDS1T7p57Jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5b43b8-5cfa-4407-8b63-baa0a30e371f/1/d2rham7T-c2ieatLINhilneAZTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5b43b8-5cfa-4407-8b63-baa0a30e371f/1/3EMrQnqEtUEWSi_LbDS1T7p57Jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.248.0/22
Signature Algorithm: sha256WithRSAEncryption
58:85:52:46:7f:96:63:cd:c1:93:1a:ce:f5:a9:0a:99:e1:11:
09:38:7a:12:24:e4:68:55:ac:cc:63:b8:ee:d1:d2:21:78:dc:
02:6b:81:9b:fe:50:cc:df:8e:8c:83:0c:7b:ba:e2:43:9b:99:
78:c8:47:18:d3:5f:5a:a2:28:4b:52:21:ec:e9:95:2c:bb:e7:
1a:e2:63:6b:aa:46:19:9d:d4:44:87:e9:06:da:ae:a5:6a:cd:
19:a4:02:4c:4d:ee:e1:f9:80:69:50:08:33:a9:d7:ec:34:b1:
9c:56:d5:13:ad:41:16:f9:52:87:d9:73:e2:f2:41:c7:07:50:
c0:54:f7:3a:36:3c:50:3c:26:53:0f:9c:32:f2:fe:7d:48:70:
b3:b1:9c:3d:69:d5:b2:dc:93:e4:37:d5:8c:5f:2c:bd:8c:f1:
63:f1:13:f7:f9:a6:3e:40:f3:c6:5c:36:f9:1b:48:87:48:2f:
ad:c7:4e:2c:25:10:a4:95:fa:7a:25:e5:0c:96:40:72:d3:d9:
d5:71:8f:31:80:1a:25:a7:5c:59:4e:d6:4e:1a:8d:8f:d2:74:
e0:57:ca:46:7d:e1:58:0f:ab:4d:e3:7c:83:c5:65:66:30:ce:
fe:36:6d:3f:b5:fa:c2:0f:90:78:03:8f:51:6b:f0:27:f0:55:
17:ba:e7:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:49 2023 by rpki-client on console-fra.rpki-client.org