Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/Hr1nhhYbJzQkQv84FyHSRLFspfg.roa
File: Hr1nhhYbJzQkQv84FyHSRLFspfg.roa (raw, json)
Hash identifier: 4zPdPt+rSG1dlfyGoJ8lhSJRvJ0TZZwnIjkDlaEzejg=
Subject key identifier: 1E:BD:67:86:16:1B:27:34:24:42:FF:38:17:21:D2:44:B1:6C:A5:F8
Certificate issuer: /CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Certificate serial: 103ED11E
Authority key identifier: 6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/Hr1nhhYbJzQkQv84FyHSRLFspfg.roa
Signing time: Mon 07 Feb 2022 23:41:41 +0000
ROA not before: Mon 07 Feb 2022 23:41:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8870
IP address blocks: 185.237.74.0/24 maxlen: 24
185.237.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 272552222 (0x103ed11e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Validity
Not Before: Feb 7 23:41:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ebd6786161b27342442ff381721d244b16ca5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:0d:54:d0:4b:cd:37:2a:03:7f:3a:16:05:21:
0f:88:fe:06:15:c1:a0:2e:8a:d9:04:2c:41:71:bf:
70:a7:2e:5e:5f:e9:b8:ab:0a:37:99:60:43:36:5e:
29:fb:a1:9b:1d:b7:4e:b4:21:e2:06:a9:a9:82:82:
a1:f3:45:2e:73:85:89:33:ce:d3:f3:84:18:81:b8:
d5:60:6d:67:b8:73:c3:b6:23:17:51:c1:8a:66:33:
fa:7b:18:e4:78:52:07:61:0d:ea:50:ef:93:e3:d3:
06:cd:09:e8:26:c9:00:36:8b:1d:1d:11:e5:2a:94:
8b:54:66:75:42:2c:0d:de:13:01:d0:8f:8a:61:dc:
7e:a3:92:dc:49:3c:f1:5f:9c:97:f5:da:f0:8d:d4:
af:51:59:ef:af:a9:2f:57:ac:91:8f:16:1c:fc:04:
3a:fa:26:1e:a4:91:64:5b:b8:5a:df:2c:68:bc:1a:
fc:c6:f3:ac:8a:13:a2:61:56:cc:3f:43:c7:76:39:
cb:40:74:bb:1a:68:e0:8d:de:5b:43:b7:46:b0:71:
f8:a2:06:1b:79:ca:37:a0:07:a3:f7:51:21:f6:54:
22:d2:ea:ad:02:68:e0:c4:21:a9:5e:b3:67:c0:d0:
b0:a5:e4:19:23:f8:f7:c4:46:86:c3:58:23:19:fd:
46:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BD:67:86:16:1B:27:34:24:42:FF:38:17:21:D2:44:B1:6C:A5:F8
X509v3 Authority Key Identifier:
keyid:6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/Hr1nhhYbJzQkQv84FyHSRLFspfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.74.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:72:73:8b:fa:8e:28:c4:12:04:3e:38:ae:36:4a:f4:2e:1c:
88:cb:86:06:98:72:02:4c:09:e2:f8:b5:7d:c1:6f:87:96:a1:
8c:10:54:93:df:c4:21:2e:10:6b:19:86:fa:2f:03:d2:ad:01:
43:7d:1d:4a:5e:4f:51:4f:f1:cd:55:2c:2d:9b:32:ff:cb:f7:
2c:ff:13:4f:7e:eb:48:34:da:b9:bf:43:d6:b0:fb:07:fb:9c:
f8:fe:4a:d0:a9:b4:bd:47:0c:8a:c0:7a:3a:50:74:40:8f:6c:
cb:0c:c8:de:e1:5b:4d:ee:e8:72:02:94:8e:c8:11:58:d2:89:
39:f9:b6:2b:08:a2:af:bc:47:dc:39:32:04:b9:a7:c4:f9:88:
4b:dd:74:0e:cd:60:3c:30:db:70:56:27:9f:2c:15:45:e3:f5:
29:f4:ca:15:2f:1c:49:f6:f8:d8:b1:de:b0:82:5a:c5:55:46:
e7:65:6d:5f:23:f6:f9:c5:9a:18:80:81:83:49:d4:3f:f2:95:
57:38:3f:70:f1:80:36:24:39:c6:f4:f2:f0:d2:08:ac:55:d8:
14:39:c9:63:29:21:72:25:71:9d:ea:00:b4:02:b2:ce:47:d3:
22:15:a4:00:50:7c:4c:54:a3:c1:ec:14:e3:44:ca:b3:12:ea:
ab:96:aa:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:38 2024 by rpki-client on console-ams.rpki-client.org