Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/dfaVWNS6ptLnTglaikP3x5sc4V8.roa
File: dfaVWNS6ptLnTglaikP3x5sc4V8.roa (raw, json)
Hash identifier: MFCIRQeZ2lekrBPmZ3BWBbXb5w3p2vcs5Evo2SHUKn4=
Subject key identifier: 75:F6:95:58:D4:BA:A6:D2:E7:4E:09:5A:8A:43:F7:C7:9B:1C:E1:5F
Certificate issuer: /CN=dd82de4f1304339fde527ba06033ca9e511171bd
Certificate serial: 058E1C97
Authority key identifier: DD:82:DE:4F:13:04:33:9F:DE:52:7B:A0:60:33:CA:9E:51:11:71:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YLeTxMEM5_eUnugYDPKnlERcb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/dfaVWNS6ptLnTglaikP3x5sc4V8.roa
Signing time: Sat 01 Jan 2022 15:00:30 +0000
ROA not before: Sat 01 Jan 2022 15:00:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34871
IP address blocks: 185.236.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93199511 (0x58e1c97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd82de4f1304339fde527ba06033ca9e511171bd
Validity
Not Before: Jan 1 15:00:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75f69558d4baa6d2e74e095a8a43f7c79b1ce15f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ba:fb:10:82:19:c0:24:a5:73:a9:b7:2b:a2:
48:b5:6c:b6:33:da:c9:ea:92:5d:6d:40:03:f7:5c:
44:d8:07:f0:b1:2e:24:e4:0c:df:25:02:78:c8:71:
31:09:fe:20:62:17:15:89:8f:70:d6:03:d0:dc:41:
ca:ee:a0:62:6b:c5:7e:72:ac:d0:38:34:56:8b:ba:
77:8e:7c:85:35:ac:dc:e2:d0:00:b0:21:85:90:d2:
53:05:2d:0b:5e:c2:33:37:00:26:59:c8:f9:77:69:
f0:30:92:31:ed:75:f8:6a:f9:3e:91:51:79:42:c4:
38:a6:6a:a5:35:38:35:1b:2a:f8:f1:bb:fc:88:5f:
a6:78:06:06:00:25:0c:bd:af:12:a9:51:bb:50:2d:
67:4c:19:04:c6:b9:a9:cd:c7:5d:34:fc:2b:cb:11:
cf:7a:4f:0f:5a:9b:0f:82:e2:7c:ea:b5:a6:9a:76:
ff:ed:55:c9:cb:c5:49:8e:08:34:f9:fe:42:45:d2:
77:7a:cf:91:b0:ac:10:b3:bc:95:cb:9d:b6:79:8e:
3c:09:7e:01:fa:08:34:ec:4e:f3:99:7a:3a:2a:5c:
04:b9:58:02:b3:f9:af:38:11:fa:8e:00:9d:db:8a:
9b:a1:3a:09:bb:0b:3a:89:dc:65:7f:10:fa:07:bb:
9d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F6:95:58:D4:BA:A6:D2:E7:4E:09:5A:8A:43:F7:C7:9B:1C:E1:5F
X509v3 Authority Key Identifier:
keyid:DD:82:DE:4F:13:04:33:9F:DE:52:7B:A0:60:33:CA:9E:51:11:71:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YLeTxMEM5_eUnugYDPKnlERcb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/dfaVWNS6ptLnTglaikP3x5sc4V8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/3YLeTxMEM5_eUnugYDPKnlERcb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.38.0/24
Signature Algorithm: sha256WithRSAEncryption
61:c3:6a:fb:a9:be:27:03:0c:e7:5a:48:08:63:aa:ae:d2:40:
3a:9a:fd:23:aa:05:ee:cd:b5:51:a3:bb:89:b1:07:2c:4d:5d:
32:1f:ed:84:ae:28:7e:b3:80:b9:00:27:9d:79:62:08:bf:7c:
d6:cf:35:2b:5a:9b:00:f4:ea:c4:dc:5d:a7:f1:f1:9b:c1:99:
b9:72:f1:2c:42:c8:17:0b:ee:af:4c:96:e5:95:a5:06:03:c0:
44:4a:bb:30:3d:dc:21:95:24:67:ee:57:b4:45:66:19:ee:75:
25:08:bb:22:35:c6:bf:7b:10:6c:ce:25:a7:9c:98:33:82:7a:
3c:e6:bc:1b:81:0a:33:84:f9:96:af:9d:de:31:ae:ee:20:04:
19:ed:73:c7:e3:81:17:44:3f:3c:6f:3e:26:5e:cc:fa:e6:9b:
58:6c:43:64:28:a2:2e:58:4b:0c:d7:e9:64:78:79:b1:49:21:
65:8f:c7:e3:23:c8:72:92:2b:b3:22:14:45:f4:d2:f9:61:27:
17:0d:8e:31:35:aa:36:fe:00:e1:83:36:6f:de:1b:54:ed:f6:
7e:31:7a:71:67:1b:94:bd:54:82:33:88:cd:29:ca:0e:4b:03:
62:84:98:fc:fc:39:03:61:fe:d2:0d:34:9f:fd:30:38:6a:44:
74:73:d0:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:27 2023 by rpki-client on console-fra.rpki-client.org