Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/d8c85e-4198-4869-b9cd-e280b6501704/1/DNNl2n3hsh8MbiXg3EHx0OQGX8E.roa
File: DNNl2n3hsh8MbiXg3EHx0OQGX8E.roa (raw, json)
Hash identifier: uxbjuWPYBZ32vPLJIcgU4SK7DKkKKOhUKRucbHxSgpE=
Subject key identifier: 0C:D3:65:DA:7D:E1:B2:1F:0C:6E:25:E0:DC:41:F1:D0:E4:06:5F:C1
Certificate issuer: /CN=52702cdee043094ac2f33170125f94f7034da8f0
Certificate serial: 011D26A5
Authority key identifier: 52:70:2C:DE:E0:43:09:4A:C2:F3:31:70:12:5F:94:F7:03:4D:A8:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnAs3uBDCUrC8zFwEl-U9wNNqPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/d8c85e-4198-4869-b9cd-e280b6501704/1/DNNl2n3hsh8MbiXg3EHx0OQGX8E.roa
Signing time: Sat 01 Jan 2022 13:03:14 +0000
ROA not before: Sat 01 Jan 2022 13:03:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59521
IP address blocks: 185.171.128.0/22 maxlen: 24
45.80.38.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18687653 (0x11d26a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52702cdee043094ac2f33170125f94f7034da8f0
Validity
Not Before: Jan 1 13:03:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cd365da7de1b21f0c6e25e0dc41f1d0e4065fc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c2:d8:b0:78:b3:99:5b:ec:c9:5d:f1:ff:a0:
51:b4:f7:f2:02:93:af:78:1f:37:65:5b:a4:f1:0f:
49:6d:ae:be:48:43:06:c9:ee:02:b7:9c:9a:53:50:
32:f6:3a:a6:61:0d:69:09:ab:54:9c:e9:17:1a:7e:
25:a1:37:40:dc:2e:fd:96:c8:6b:18:68:32:db:5b:
e2:8c:0d:33:9c:9e:91:d6:d8:23:06:58:60:89:90:
63:f0:1b:45:3e:d9:d9:d5:c7:ff:3a:63:c0:43:aa:
b3:8e:72:0a:a9:8b:e8:c9:d9:fc:36:e2:c5:5a:ee:
9f:22:2d:af:4b:b5:b1:b3:2b:b2:74:35:3f:9e:2f:
1d:6e:8c:65:ef:d2:af:d4:c5:57:fe:f5:20:6e:2c:
99:5c:79:35:ee:49:2c:da:42:7f:29:6d:49:9d:0d:
07:c5:a2:ce:98:27:a2:04:42:2c:df:53:3a:b5:be:
bb:e1:69:c2:29:f9:10:23:02:b3:b1:56:ea:a8:2c:
a1:fc:cc:82:c5:4f:aa:aa:d9:59:f5:6d:bd:28:32:
77:bb:b7:03:91:fa:09:3e:1e:fa:29:6c:41:5d:f0:
1f:c0:bf:bf:59:92:65:3e:4c:5c:bd:5a:6d:ab:26:
81:37:e5:ce:5c:1a:fe:06:89:c2:b1:5b:40:90:07:
2b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:D3:65:DA:7D:E1:B2:1F:0C:6E:25:E0:DC:41:F1:D0:E4:06:5F:C1
X509v3 Authority Key Identifier:
keyid:52:70:2C:DE:E0:43:09:4A:C2:F3:31:70:12:5F:94:F7:03:4D:A8:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnAs3uBDCUrC8zFwEl-U9wNNqPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d8c85e-4198-4869-b9cd-e280b6501704/1/DNNl2n3hsh8MbiXg3EHx0OQGX8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d8c85e-4198-4869-b9cd-e280b6501704/1/UnAs3uBDCUrC8zFwEl-U9wNNqPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.38.0/23
185.171.128.0/22
Signature Algorithm: sha256WithRSAEncryption
21:a9:19:6a:e3:2d:3b:47:09:1d:eb:69:1b:a8:db:aa:19:f7:
64:8d:3e:d7:04:0e:90:65:20:8a:7e:9d:be:bc:e5:57:92:fe:
36:ad:e4:cc:29:45:d3:7e:2c:b2:79:6f:5d:dd:93:25:fe:8d:
7d:e3:e6:7d:c7:c8:56:bd:64:d3:07:f0:a9:6b:18:a4:4d:ab:
8b:30:ec:46:67:20:c8:40:c2:42:1a:bc:93:9a:89:54:51:ad:
73:94:d3:e0:3a:a3:3c:db:3e:eb:05:bc:af:de:bd:c2:f4:22:
85:4e:23:bb:12:d4:9d:8d:b8:1b:6d:c2:0d:23:1a:9c:a5:84:
4a:1c:06:06:2f:59:2e:27:e9:4f:68:eb:2d:34:19:09:35:66:
cb:36:f5:27:50:9d:d4:98:6b:e6:29:56:63:e9:0f:22:c8:96:
2b:35:71:0f:ea:6c:05:03:ce:b3:5b:de:56:56:a9:bf:8f:57:
7e:2a:84:8b:b1:e7:2c:17:4d:07:83:f5:ac:37:12:17:b6:16:
35:54:7b:49:05:6d:ba:fe:34:14:96:40:32:fd:45:d8:40:35:
45:df:1a:69:30:02:95:3b:32:2a:eb:93:c8:b1:ab:ff:88:4a:
a5:8a:c9:02:27:7b:65:7d:6b:9d:7a:c6:6a:17:45:38:00:ce:
43:67:c8:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:25 2024 by rpki-client on console-fra.rpki-client.org