Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c9e115-1236-4fda-a033-99eea1f0a354/1/1-sdh_Rmi9dCy2M-2Vm5OL-1adsw.roa
File: 1-sdh_Rmi9dCy2M-2Vm5OL-1adsw.roa (raw, json)
Hash identifier: dwD3JU6hz4s+FHHF98+59S1EO+GtiCt07cYU9IB3SIc=
Subject key identifier: FA:C7:61:FD:19:A2:F5:D0:B2:D8:CF:B6:56:6E:4E:2F:ED:5A:76:CC
Certificate issuer: /CN=1e0e4d2dbde986fdc25bf3bf75637852da87abf1
Certificate serial: 0804AE81
Authority key identifier: 1E:0E:4D:2D:BD:E9:86:FD:C2:5B:F3:BF:75:63:78:52:DA:87:AB:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hg5NLb3phv3CW_O_dWN4UtqHq_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c9e115-1236-4fda-a033-99eea1f0a354/1/1-sdh_Rmi9dCy2M-2Vm5OL-1adsw.roa
Signing time: Sat 01 Jan 2022 04:58:48 +0000
ROA not before: Sat 01 Jan 2022 04:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202790
IP address blocks: 185.152.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134524545 (0x804ae81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e0e4d2dbde986fdc25bf3bf75637852da87abf1
Validity
Not Before: Jan 1 04:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fac761fd19a2f5d0b2d8cfb6566e4e2fed5a76cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:df:09:63:9a:9e:83:67:ca:c3:e1:c8:e4:35:
1b:ab:08:f1:99:c0:1d:fb:1a:5d:22:3d:f0:46:32:
f7:c6:1b:4a:13:51:57:2b:3c:5e:eb:3f:f6:3e:15:
a2:f9:b1:08:72:3e:80:eb:73:c3:fa:28:45:1e:d2:
5f:59:b8:9d:d4:8b:d0:d1:3b:45:88:a9:a5:05:75:
f5:26:78:a7:ad:5a:5e:e1:ca:45:0d:2d:80:45:0a:
3b:91:7d:0b:2b:31:e7:d3:43:a8:8b:5e:93:da:92:
01:85:27:93:0f:ee:40:25:54:a0:d2:06:e0:77:4b:
4b:1e:f1:c8:aa:90:21:9e:57:91:6a:cc:96:eb:fc:
01:58:e9:e7:fa:51:1c:08:6b:9b:f2:7b:b2:dd:d9:
70:43:37:83:dc:93:bc:6e:31:35:53:f8:80:e1:02:
c4:84:11:94:5a:05:e0:99:44:18:23:cf:a2:c1:02:
14:a2:25:d5:d7:82:c7:fd:d1:64:48:7a:6a:95:59:
4e:32:5d:5d:1b:62:cc:e6:f3:bd:24:35:6f:1f:b1:
ae:bd:5b:aa:1d:12:0f:8a:f1:0c:e2:3e:5c:15:a7:
23:8d:8d:7d:d1:cb:6e:a4:87:d6:3e:6e:ef:fe:91:
74:a8:12:c9:b7:05:f7:4a:7c:31:f7:93:74:a5:71:
5f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C7:61:FD:19:A2:F5:D0:B2:D8:CF:B6:56:6E:4E:2F:ED:5A:76:CC
X509v3 Authority Key Identifier:
keyid:1E:0E:4D:2D:BD:E9:86:FD:C2:5B:F3:BF:75:63:78:52:DA:87:AB:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hg5NLb3phv3CW_O_dWN4UtqHq_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c9e115-1236-4fda-a033-99eea1f0a354/1/1-sdh_Rmi9dCy2M-2Vm5OL-1adsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c9e115-1236-4fda-a033-99eea1f0a354/1/Hg5NLb3phv3CW_O_dWN4UtqHq_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.124.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:cb:bf:ad:4d:23:7f:0e:26:58:1f:f4:d2:da:5a:89:f3:f1:
b9:0c:c0:dd:96:07:80:6e:ee:83:20:31:06:6a:ec:4c:0a:5d:
91:86:ed:47:99:6d:ff:66:26:91:9a:28:10:16:23:b1:4e:31:
8d:64:95:49:23:86:e6:f8:e8:6e:ef:e0:da:4f:bb:ac:df:80:
84:5f:ac:70:cc:67:df:47:1b:55:f7:1b:9e:60:c2:c5:ce:b6:
1b:c7:c3:42:17:00:82:08:ca:3b:5e:28:8c:4d:24:53:bd:e2:
dd:3d:81:47:4e:a2:95:e8:98:ca:3f:a3:e2:54:85:ba:22:5b:
59:4d:0c:38:93:5f:28:48:ae:cd:d0:e9:9b:70:08:3b:48:dd:
f5:45:02:1f:24:ab:47:35:dd:a5:19:21:51:e9:bc:27:46:57:
a5:49:ac:bf:4b:ae:63:ff:6b:90:0e:8d:df:36:4e:8e:6e:fe:
62:a7:89:07:d9:3a:20:a8:bd:2d:63:19:58:51:d6:e4:7b:5a:
6c:a6:95:cd:ff:b3:b2:51:8a:58:a3:df:37:10:c1:03:fd:eb:
bb:7e:dd:87:33:b8:eb:f5:ab:b0:a8:a3:ca:97:8a:b5:19:b1:
ac:c4:77:d5:19:26:4b:f9:4b:c2:eb:98:c5:97:48:07:53:ff:
9a:70:44:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:35 2024 by rpki-client on console-fra.rpki-client.org