Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/Cph2L3FffCtPHymSXLccLXR45Fg.roa
File: Cph2L3FffCtPHymSXLccLXR45Fg.roa (raw, json)
Hash identifier: QIDFceEeqFAkvNsiY7xcOlm5pvrAIig0jT73yZ7CiqU=
Subject key identifier: 0A:98:76:2F:71:5F:7C:2B:4F:1F:29:92:5C:B7:1C:2D:74:78:E4:58
Certificate issuer: /CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Certificate serial: 023754F6
Authority key identifier: 24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/Cph2L3FffCtPHymSXLccLXR45Fg.roa
Signing time: Sat 01 Jan 2022 12:04:14 +0000
ROA not before: Sat 01 Jan 2022 12:04:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206178
IP address blocks: 185.215.132.0/22 maxlen: 23
185.30.168.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37180662 (0x23754f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Validity
Not Before: Jan 1 12:04:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a98762f715f7c2b4f1f29925cb71c2d7478e458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f1:82:6f:0a:80:89:e2:78:a9:44:36:b9:b3:
bd:a2:de:e4:42:f7:7d:37:af:14:25:fe:43:e1:e7:
bc:64:be:c4:ba:88:22:66:c0:4c:f5:77:ef:7f:a3:
1d:59:24:37:98:55:f9:a3:de:35:86:39:25:41:c6:
41:f8:4f:67:d7:be:6d:43:d6:a8:e6:ea:69:70:30:
e9:33:27:aa:5c:eb:ab:52:25:46:10:2d:1a:d9:88:
e1:f7:da:39:c5:77:15:c5:e2:cb:fc:64:cc:33:31:
77:fd:5c:2d:2d:56:a7:00:51:00:28:04:a7:7e:a0:
65:95:4b:9b:d5:db:db:76:56:9e:7f:e0:2c:7e:01:
81:70:8b:3e:24:af:c3:02:f5:63:10:23:2f:d1:c5:
e4:b6:7e:f3:e3:22:da:1c:9f:c8:1b:63:61:bc:21:
0b:9f:e5:f2:a2:b2:ca:c8:38:13:ef:26:f2:d6:c9:
49:23:e1:62:a6:4f:8c:50:0e:06:ee:9f:7f:75:c6:
04:74:0c:96:e1:98:c2:dd:f4:c1:68:d6:00:61:80:
22:f2:de:5e:1f:54:97:0a:1d:f0:a8:bf:86:5d:0a:
29:f6:3f:d3:48:da:57:a2:1c:73:e4:58:48:55:88:
3f:83:7e:5d:7f:2b:ad:21:30:bb:45:5e:c1:e3:66:
e5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:98:76:2F:71:5F:7C:2B:4F:1F:29:92:5C:B7:1C:2D:74:78:E4:58
X509v3 Authority Key Identifier:
keyid:24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/Cph2L3FffCtPHymSXLccLXR45Fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.168.0/22
185.215.132.0/22
Signature Algorithm: sha256WithRSAEncryption
15:b8:e6:51:f3:fa:2f:c8:0e:7d:66:00:19:e1:8b:72:10:29:
0f:88:f2:18:49:b1:ae:3c:80:87:f5:2c:bb:a8:27:d4:20:54:
86:22:c3:b5:46:e3:f3:54:68:d5:06:b4:47:9d:90:42:ce:c2:
95:26:52:4b:38:1f:cb:83:3f:a0:82:94:5a:fa:db:5f:2f:88:
b0:e8:52:6b:de:54:24:26:f9:d3:f9:3b:c6:37:23:fb:f3:60:
d2:60:83:af:43:36:40:3c:f3:a9:e2:54:6d:53:5e:a5:f0:a2:
e1:0c:61:60:02:4b:68:c1:ca:ab:87:b6:91:c5:4a:df:d2:29:
b4:8b:b2:2d:b3:a4:2d:75:24:f9:84:bf:f7:2d:74:3b:f2:9e:
1c:f7:4b:70:cc:5d:71:1e:46:9d:5e:48:27:2f:4d:88:24:2e:
b6:d8:f4:2c:ab:b3:77:49:33:bd:e7:93:53:bb:27:9d:f0:fe:
c6:51:f4:d1:92:10:c2:63:ab:50:35:fb:26:f4:52:a6:a5:8d:
63:b6:97:03:11:59:2b:28:52:eb:ae:0f:9c:76:4e:2e:c4:39:
d5:4c:a5:6e:e8:8b:02:f9:ab:89:69:d6:6c:8c:0c:0a:e2:38:
34:c7:72:98:5b:1a:07:79:1f:32:20:06:a8:ec:1e:c5:db:c9:
2e:f8:b2:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:16 2024 by rpki-client on console-ams.rpki-client.org