Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/3eMqGB9eFxNn63csFr2P9Ty7VtE.roa
File: 3eMqGB9eFxNn63csFr2P9Ty7VtE.roa (raw, json)
Hash identifier: /Oi6NPuARpA4OH+vvnewWct4Zey66J+B/Xdtogroabs=
Subject key identifier: DD:E3:2A:18:1F:5E:17:13:67:EB:77:2C:16:BD:8F:F5:3C:BB:56:D1
Certificate issuer: /CN=261b941dbe59651fafbba9724a12775e07edb635
Certificate serial: 0182443336E3075F763CFB93AC1056711714
Authority key identifier: 26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/3eMqGB9eFxNn63csFr2P9Ty7VtE.roa
Signing time: Thu 28 Jul 2022 09:46:23 +0000
ROA not before: Thu 28 Jul 2022 09:46:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206903
IP address blocks: 185.172.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:44:33:36:e3:07:5f:76:3c:fb:93:ac:10:56:71:17:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=261b941dbe59651fafbba9724a12775e07edb635
Validity
Not Before: Jul 28 09:46:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dde32a181f5e171367eb772c16bd8ff53cbb56d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:11:62:6e:7e:c6:ba:ca:63:29:19:6a:c0:a6:
ca:b1:d8:18:b0:4e:78:25:1a:45:16:4a:6f:b4:70:
ed:91:56:19:72:e0:f8:f6:df:35:b4:75:46:fb:a2:
c6:eb:11:69:e3:62:49:15:62:1e:50:c9:6f:48:27:
8b:c5:92:d5:43:30:b5:12:76:7d:60:09:e6:02:e5:
8d:5c:35:1b:95:3f:51:2a:bf:df:99:a1:1a:8a:58:
21:2e:22:26:90:e9:7c:8a:46:f9:6e:7a:0d:92:f7:
f6:d2:da:c0:3a:d2:76:ca:e1:c7:02:99:9c:e8:04:
d2:9e:60:15:c2:cd:2c:19:40:3b:6d:9e:7a:cc:ff:
f6:09:84:44:13:8c:bf:83:20:48:df:75:b7:51:00:
c0:4a:92:fb:b0:c4:a9:44:f8:d3:ad:ed:9f:77:57:
fc:15:7a:b6:aa:18:19:2f:ef:31:89:0c:37:df:3e:
d9:33:b7:17:f0:67:4a:9f:f8:28:e2:3d:2a:01:ae:
bc:5f:7c:31:64:9e:49:ab:61:b2:37:43:a4:f8:f0:
aa:2a:c2:8f:fe:c5:07:8b:39:86:d2:62:7d:2c:a8:
2b:84:7e:f2:42:75:b0:da:8c:5f:7d:74:cf:21:2d:
da:fe:4b:0d:13:b3:8f:6d:9c:19:71:28:a7:01:a9:
a9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E3:2A:18:1F:5E:17:13:67:EB:77:2C:16:BD:8F:F5:3C:BB:56:D1
X509v3 Authority Key Identifier:
keyid:26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/3eMqGB9eFxNn63csFr2P9Ty7VtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/JhuUHb5ZZR-vu6lyShJ3XgfttjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.152.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:b9:3b:14:62:9b:c3:8b:60:1d:c6:5e:e6:f3:fe:ec:fd:c5:
8b:93:03:9a:ac:d1:40:48:b9:ae:09:d1:61:7d:b1:c1:0e:de:
2d:95:e4:43:5e:5e:92:58:d9:93:d1:e2:1e:bb:19:fa:f2:c7:
de:c6:40:2b:5f:30:6f:13:c0:9e:a6:d6:15:f3:48:81:8e:8c:
60:21:cc:06:b8:dd:74:e2:54:bf:c8:6a:0a:e9:89:ec:79:a0:
c4:a4:ef:ac:94:7f:40:e9:99:a8:11:9a:c3:e7:32:0f:5c:24:
09:c6:dc:18:e9:b2:23:51:42:ab:98:27:12:22:01:ed:e1:f8:
bf:1e:9e:0d:18:6f:41:07:13:99:51:d9:f9:ae:35:a9:48:52:
50:35:d4:8f:29:b7:ca:d6:a8:15:bf:35:f1:9d:5a:02:3d:a5:
fc:94:bc:a4:b8:37:f1:aa:d8:e6:0e:cb:58:80:d1:3e:76:24:
8f:57:67:e5:52:3a:3d:00:55:5c:dd:f4:70:b2:73:42:6e:5d:
df:3c:08:d2:68:ee:e1:90:bd:b1:ac:10:1c:8d:4d:bd:bb:5c:
d7:60:8d:81:f3:4f:97:ad:04:45:a9:5b:c6:03:fe:35:7a:19:
49:2c:93:d2:73:85:c8:7a:8a:8e:a4:27:88:6e:1b:97:d8:40:
ea:46:bf:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:57 2024 by rpki-client on console-fra.rpki-client.org