Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/30RvT4_8MkxNpO-M0CCCa6w7WIs.roa
File: 30RvT4_8MkxNpO-M0CCCa6w7WIs.roa (raw, json)
Hash identifier: YzXSpRVIKwEFBKrIsSmM7BxSE9yqOBlHLRQ1caFmu+A=
Subject key identifier: DF:44:6F:4F:8F:FC:32:4C:4D:A4:EF:8C:D0:20:82:6B:AC:3B:58:8B
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 0DE60B28
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/30RvT4_8MkxNpO-M0CCCa6w7WIs.roa
Signing time: Sat 01 Jan 2022 10:54:09 +0000
ROA not before: Sat 01 Jan 2022 10:54:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3365
IP address blocks: 185.226.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 233179944 (0xde60b28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 10:54:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df446f4f8ffc324c4da4ef8cd020826bac3b588b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:64:03:7f:93:e2:da:09:21:b0:5a:27:7b:73:
61:17:a4:82:c2:7b:d8:20:39:ac:93:f0:f6:5b:2f:
11:e2:13:09:01:42:ee:33:7d:43:5e:87:e4:5e:64:
46:a5:61:21:65:a7:d2:9c:05:b8:34:1b:ac:0c:ae:
84:8e:32:8b:00:9b:25:32:93:f6:05:c4:dd:c7:69:
3a:fe:ef:95:ea:9a:4d:e8:19:f9:d0:0e:30:42:2b:
84:03:2e:79:aa:d1:33:bf:a5:3f:50:37:1e:9d:7d:
92:c5:93:75:45:4a:32:cb:f9:41:08:fc:81:38:c0:
b7:0e:2c:00:9d:3d:16:4e:5c:6d:76:6b:50:b8:4a:
f5:72:e0:40:25:82:41:fb:67:0b:8c:e0:6a:3b:96:
9d:f4:2e:38:8f:a2:4e:d4:0d:c2:94:6e:0b:c7:93:
e9:8a:a1:47:f7:36:f0:b5:15:a0:5e:d5:b8:a6:5b:
fe:99:ee:1c:a1:76:f5:b3:d8:7a:ba:ec:3b:ca:86:
35:45:73:f5:4a:fe:2b:5c:02:66:ee:d0:e2:e9:8f:
27:2b:53:13:bf:83:3d:bc:5c:33:c3:54:0d:17:9c:
c8:29:ca:d2:36:1b:df:5a:30:bf:83:fc:2e:8c:7d:
13:d0:cf:9c:0e:db:f2:05:d6:e4:95:30:a1:a8:fb:
ff:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:44:6F:4F:8F:FC:32:4C:4D:A4:EF:8C:D0:20:82:6B:AC:3B:58:8B
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/30RvT4_8MkxNpO-M0CCCa6w7WIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.204.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:b1:3b:1b:be:99:02:53:ab:8e:c8:5c:f8:35:ad:bd:d2:df:
5d:f1:91:e2:e2:d6:f8:98:82:6a:0a:88:de:3a:b4:81:f3:93:
0a:24:05:4a:b0:d0:93:38:ba:41:51:9f:fd:97:13:ff:48:25:
1a:57:7e:b3:b5:3c:f1:a2:d0:ef:31:3a:b2:5f:1f:de:69:fb:
0f:1e:cd:f4:5c:4a:18:5f:b7:6b:e5:97:10:d6:de:7c:f0:95:
09:0f:b3:81:47:44:eb:93:eb:bd:47:f8:38:53:02:46:be:90:
34:3d:c9:39:e1:45:80:00:a6:40:67:67:bd:7e:08:45:52:b9:
20:02:7f:79:53:68:5b:a6:65:de:80:43:f0:89:b0:15:35:64:
39:10:0f:cd:be:4e:08:f7:47:48:a1:42:26:28:22:35:c1:17:
31:f4:7c:94:b7:cf:93:78:df:16:47:46:c4:b9:81:64:f0:20:
4e:95:59:1a:24:25:db:c5:39:32:9d:51:48:23:28:92:59:4c:
f3:b6:1b:59:54:4e:64:d0:81:87:cd:f3:00:ec:83:ea:e8:f3:
02:f3:74:a3:c8:43:06:1f:d0:10:ac:cc:a5:6d:82:23:23:3b:
5d:6c:32:5f:52:dc:2a:4f:b7:a8:fa:78:52:4e:0b:2c:b0:a5:
9e:4d:35:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:50 2024 by rpki-client on console-ams.rpki-client.org