Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/94f98c-c1d1-4fe2-9adc-a010d8e4faf0/1/dOc6PZu2J_LYKnXRkOUP__Du-V8.roa
File: dOc6PZu2J_LYKnXRkOUP__Du-V8.roa (raw, json)
Hash identifier: GrQ6ntnGrA3jbvijldybqEGbXa4IhXm6WKDcSzqkafA=
Subject key identifier: 74:E7:3A:3D:9B:B6:27:F2:D8:2A:75:D1:90:E5:0F:FF:F0:EE:F9:5F
Certificate issuer: /CN=d9c9baf46d6c94d27ce128da3b65b5a3b06db38b
Certificate serial: 022141F3
Authority key identifier: D9:C9:BA:F4:6D:6C:94:D2:7C:E1:28:DA:3B:65:B5:A3:B0:6D:B3:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2cm69G1slNJ84SjaO2W1o7Bts4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/94f98c-c1d1-4fe2-9adc-a010d8e4faf0/1/dOc6PZu2J_LYKnXRkOUP__Du-V8.roa
Signing time: Sat 01 Jan 2022 11:58:00 +0000
ROA not before: Sat 01 Jan 2022 11:58:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212122
IP address blocks: 185.228.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35734003 (0x22141f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9c9baf46d6c94d27ce128da3b65b5a3b06db38b
Validity
Not Before: Jan 1 11:58:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74e73a3d9bb627f2d82a75d190e50ffff0eef95f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:06:61:a7:22:bc:7d:f7:b7:3a:df:52:f4:cb:
bd:90:29:7f:d7:23:0f:47:cb:d3:7c:bb:7c:1b:87:
a9:61:1e:e3:a5:80:7d:18:78:99:99:a8:8b:7b:22:
0c:b3:15:cf:73:9e:70:ee:0e:0d:1e:5a:8e:73:94:
d5:a4:d5:82:16:91:91:f9:b7:0d:79:11:6b:10:70:
f2:75:93:ad:b6:9d:f9:b2:06:c6:0a:0f:a6:4f:db:
cd:3d:77:05:df:a7:f7:3c:44:80:b8:98:e3:b9:9e:
1b:b7:e1:f7:4e:b7:84:96:9c:08:74:54:b7:c8:fe:
4e:3b:17:3c:ae:d0:b3:28:09:67:df:62:c7:3d:e9:
0f:91:4c:73:98:bb:ab:d7:30:85:50:e8:31:6d:07:
ea:6d:a9:ed:b3:cb:db:ef:08:a1:38:df:73:c9:97:
08:c1:3b:f0:1c:fc:97:96:51:cf:dc:82:7d:19:23:
45:c6:50:be:54:d5:1a:32:14:17:48:5c:72:c7:3a:
7e:af:59:9f:e2:cf:89:4d:21:02:6e:d0:01:a5:47:
ca:50:84:f7:32:a6:ca:cf:e3:ff:79:14:13:d0:11:
86:f3:da:50:fa:65:ca:a5:5d:1b:e4:20:b0:f6:48:
0a:75:2f:05:ef:41:6f:1b:55:36:98:7c:86:53:e7:
5a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E7:3A:3D:9B:B6:27:F2:D8:2A:75:D1:90:E5:0F:FF:F0:EE:F9:5F
X509v3 Authority Key Identifier:
keyid:D9:C9:BA:F4:6D:6C:94:D2:7C:E1:28:DA:3B:65:B5:A3:B0:6D:B3:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2cm69G1slNJ84SjaO2W1o7Bts4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/94f98c-c1d1-4fe2-9adc-a010d8e4faf0/1/dOc6PZu2J_LYKnXRkOUP__Du-V8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/94f98c-c1d1-4fe2-9adc-a010d8e4faf0/1/2cm69G1slNJ84SjaO2W1o7Bts4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.249.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:28:17:ae:74:e3:af:7d:ea:3d:f2:9a:e4:c6:4e:bd:67:77:
f6:95:90:72:16:8d:7d:6e:3c:51:f2:45:fa:87:7e:21:c5:55:
06:c0:9a:10:f0:8c:de:76:86:0b:71:66:55:0a:e2:0b:30:23:
5d:4d:4f:fa:a5:8d:68:fd:7e:fd:b1:1d:51:ac:02:c0:0c:d6:
2b:7f:7f:5a:b8:c1:e3:08:94:28:eb:d8:0d:52:7e:b9:83:dd:
f9:e7:e5:a4:2c:b6:af:9d:33:82:c8:40:de:85:e6:78:87:da:
2c:af:a4:9b:37:bf:c4:8e:b2:d9:e6:5c:c9:c4:66:a0:3d:39:
ef:b9:16:0b:ba:83:f4:a0:19:2b:3b:f0:1a:a0:0e:46:67:95:
1f:ce:ba:0e:c4:e5:e4:13:47:28:74:ab:d5:10:d6:19:5b:c8:
5f:d4:12:7f:68:52:03:41:00:81:59:ff:e7:65:f1:45:39:0a:
36:4d:53:18:67:66:9a:4e:f4:00:c9:d9:37:22:e6:81:51:71:
2c:fa:f6:ab:08:99:ab:e7:87:46:06:53:a1:4c:35:82:c7:44:
46:32:a9:35:a0:0f:e6:7d:67:4a:a3:bb:ef:ac:c0:46:46:ca:
38:7d:6f:47:9f:25:8d:4f:a8:c5:f7:06:cf:42:ea:30:d8:3e:
42:d8:13:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:50 2023 by rpki-client on console-fra.rpki-client.org