Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/3SKP6QZwd8O1Z_0NPdu9eSvF7z4.roa
File: 3SKP6QZwd8O1Z_0NPdu9eSvF7z4.roa (raw, json)
Hash identifier: o2nEwdrTguHRXz3uOcMmh5Tnatz+vbOkxvBja9SXH1s=
Subject key identifier: DD:22:8F:E9:06:70:77:C3:B5:67:FD:0D:3D:DB:BD:79:2B:C5:EF:3E
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38CB4843
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/3SKP6QZwd8O1Z_0NPdu9eSvF7z4.roa
Signing time: Sat 01 Jan 2022 07:55:10 +0000
ROA not before: Sat 01 Jan 2022 07:55:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1146
IP address blocks: 145.100.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952846403 (0x38cb4843)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd228fe9067077c3b567fd0d3ddbbd792bc5ef3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:39:28:b9:23:11:46:88:15:fb:c8:da:d4:8a:
57:00:66:7d:04:84:a4:1a:34:d3:8b:a0:e8:5f:54:
eb:bb:82:24:d6:61:40:8d:74:59:0c:e1:9d:99:b8:
8b:8a:83:0e:01:bb:a6:85:9a:0a:dc:b1:f5:90:f7:
6a:23:8d:93:5a:94:58:11:9d:f8:ed:2f:65:6a:d3:
db:18:e1:99:9c:f8:5f:48:69:cf:6b:05:9b:06:e8:
8c:9f:f4:04:70:2a:8d:a4:89:12:c5:f9:a5:b7:52:
0b:ef:f6:4f:5d:5c:07:fc:3e:49:9b:bc:92:9d:51:
28:1a:a6:8a:29:d3:1c:b9:e4:a6:79:df:94:eb:42:
0b:af:ee:2e:b2:5c:a8:62:da:96:bb:50:9d:2c:de:
fc:f7:20:46:7e:ca:cf:5f:87:0c:5d:bb:e6:e3:24:
c5:6d:da:88:70:83:76:e6:f9:00:b3:de:e9:e6:5f:
20:b4:60:42:91:aa:61:2f:9a:32:ac:76:96:15:e4:
c0:59:cf:a3:30:3c:2f:31:ec:72:03:d8:a3:75:17:
44:48:2d:f6:cb:f4:82:00:6c:48:64:29:1d:4f:ce:
75:15:99:8c:60:5a:45:25:69:4d:2c:1c:c5:82:27:
05:2e:60:72:43:27:7c:80:40:35:b0:da:f0:06:2a:
5f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:22:8F:E9:06:70:77:C3:B5:67:FD:0D:3D:DB:BD:79:2B:C5:EF:3E
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/3SKP6QZwd8O1Z_0NPdu9eSvF7z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.100.101.0/24
Signature Algorithm: sha256WithRSAEncryption
80:6c:50:bd:8f:c0:0a:f3:29:e9:10:7b:36:76:ee:8f:18:b3:
b7:b6:de:0d:6c:c5:b4:80:0a:d0:ff:94:c1:fd:d8:e1:77:2b:
30:b0:2c:47:68:8f:7b:e4:35:ae:ec:e2:fa:bf:30:e5:6d:23:
30:5a:59:d1:ff:fd:cd:9c:58:54:0b:20:51:c8:42:07:94:c1:
f9:47:63:24:a6:a6:c2:84:31:49:f1:4e:ce:26:e9:5a:1e:96:
18:cf:12:40:a2:b7:07:4c:d3:9e:c5:f5:12:07:33:64:8c:5b:
d2:73:21:7f:16:94:9f:22:22:48:f5:08:e7:22:84:c1:80:7c:
5a:e8:a8:a8:f9:c2:6c:a0:2e:a9:06:11:00:f1:70:7f:03:4b:
d3:20:64:cf:64:5b:e6:4f:63:bd:51:74:9e:3c:05:10:dc:2b:
c6:68:b5:b0:72:8e:5f:a7:34:2a:54:ee:86:70:5b:3a:96:65:
1c:48:ad:9c:21:42:6a:90:b2:e4:5c:e1:b3:79:08:ea:6e:fd:
11:05:82:7e:e8:aa:26:9a:41:9e:a7:ef:ef:2b:67:a8:3a:54:
82:19:f8:20:f6:e1:b3:9b:10:e1:98:a1:14:62:29:35:84:6a:
65:9a:90:3e:03:4a:8b:85:2a:23:21:7a:38:fc:3a:99:95:e3:
65:ba:07:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org