Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/c6e217-03ff-4396-adfe-255f0c51bbe0/1/1ms_vrHoPakvyshzn48Z1d__EHc.roa
File: 1ms_vrHoPakvyshzn48Z1d__EHc.roa (raw, json)
Hash identifier: 129qoziewNiYor4jW7tipZNMpaFajPpEZ8Y4x9GT4zE=
Subject key identifier: D6:6B:3F:BE:B1:E8:3D:A9:2F:CA:C8:73:9F:8F:19:D5:DF:FF:10:77
Certificate issuer: /CN=043692f2a1d1bc76ff7f9d29091beda08b7bc96c
Certificate serial: 0CD4B884
Authority key identifier: 04:36:92:F2:A1:D1:BC:76:FF:7F:9D:29:09:1B:ED:A0:8B:7B:C9:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BDaS8qHRvHb_f50pCRvtoIt7yWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/c6e217-03ff-4396-adfe-255f0c51bbe0/1/1ms_vrHoPakvyshzn48Z1d__EHc.roa
Signing time: Sat 01 Jan 2022 07:04:15 +0000
ROA not before: Sat 01 Jan 2022 07:04:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207151
IP address blocks: 185.234.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 215267460 (0xcd4b884)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=043692f2a1d1bc76ff7f9d29091beda08b7bc96c
Validity
Not Before: Jan 1 07:04:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d66b3fbeb1e83da92fcac8739f8f19d5dfff1077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:70:59:d8:19:49:ce:00:33:ec:2a:90:b9:e9:
e4:95:5a:19:66:e4:77:02:8a:83:71:cc:2a:cf:51:
e8:65:1b:cd:84:26:16:0e:b7:16:9b:f1:1d:58:03:
22:e1:9a:26:f1:1a:5e:f4:de:5a:d0:80:14:09:c4:
22:48:94:80:df:9a:d2:a6:13:51:78:d5:48:88:41:
98:fb:9e:be:27:c2:43:76:78:d1:23:8c:05:26:00:
43:3f:9d:b0:ec:c7:db:dc:f3:72:44:6e:f9:31:94:
43:f6:e3:e8:6b:1d:68:b1:cf:a4:73:8c:db:3a:b9:
a4:03:3c:2a:73:1e:59:39:af:76:4c:3c:10:ca:e7:
f3:5b:4f:df:e7:f5:6c:1b:8f:6e:6f:39:7c:e2:73:
8d:b2:c2:9d:a5:a0:88:17:0d:a8:6a:ac:3c:b9:ec:
16:fe:f0:92:45:43:b9:e2:0b:9d:f9:40:d5:7f:2e:
68:52:05:3d:32:ca:27:82:5b:2c:f0:28:6b:b4:b7:
a5:68:cd:41:54:ab:c9:62:79:b8:4d:3a:d5:2e:9a:
20:bc:06:dd:79:68:62:14:b3:2f:dd:f4:91:a3:77:
ff:3a:81:9a:1c:8e:c5:86:59:cf:77:03:54:66:9d:
81:d8:88:b2:a9:68:a3:a7:2a:c7:dd:93:3d:f8:ae:
a6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:6B:3F:BE:B1:E8:3D:A9:2F:CA:C8:73:9F:8F:19:D5:DF:FF:10:77
X509v3 Authority Key Identifier:
keyid:04:36:92:F2:A1:D1:BC:76:FF:7F:9D:29:09:1B:ED:A0:8B:7B:C9:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BDaS8qHRvHb_f50pCRvtoIt7yWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c6e217-03ff-4396-adfe-255f0c51bbe0/1/1ms_vrHoPakvyshzn48Z1d__EHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c6e217-03ff-4396-adfe-255f0c51bbe0/1/BDaS8qHRvHb_f50pCRvtoIt7yWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.104.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:34:a1:bc:8e:a8:71:0f:ec:bc:e2:c4:6a:85:b2:38:31:3a:
c9:68:6d:38:d8:69:34:19:ae:1a:d2:82:a2:5d:0f:87:14:12:
6d:fd:ad:6f:ff:44:4a:47:dc:ef:9c:1d:08:d2:1b:c6:a9:21:
3b:4b:ed:8d:56:f1:1a:f8:27:76:24:f6:a9:9c:f3:e8:26:79:
39:63:17:3d:b9:a8:08:5c:41:03:a6:f3:05:53:20:46:ea:5b:
d3:bb:9c:0b:7d:83:80:3d:c5:3f:80:67:8e:5a:c9:d0:e7:b3:
13:47:5d:7c:3e:66:66:fd:8d:0e:f9:1e:c5:3f:7c:19:ea:74:
f4:7f:08:ca:cc:23:22:22:14:0d:b1:f6:5e:11:5e:e1:51:f0:
de:5b:bc:20:5b:a6:94:94:83:75:01:62:87:1d:c2:9a:bf:f5:
00:0a:b2:48:01:a5:2a:a3:2e:5c:ca:8b:52:79:3c:4b:50:dc:
6c:7c:fa:db:6e:5d:46:b1:ee:fc:2a:3c:5c:57:00:9d:7c:54:
c3:87:5e:80:49:5b:3d:ff:b8:52:82:da:da:03:bf:d5:2a:00:
a0:e8:b7:3b:f3:c6:fe:8f:c1:f4:44:64:cb:86:bd:a8:d7:7f:
a5:80:41:c1:23:34:8c:48:99:65:72:34:c3:85:4c:93:f8:92:
36:ba:a3:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:17 2025 by rpki-client