Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/80393f-2bd5-4668-acbd-152b463aa3ca/1/0X1HsDzkpqh7Sky3Y5CqSGKdUkU.roa
File: 0X1HsDzkpqh7Sky3Y5CqSGKdUkU.roa (raw, json)
Hash identifier: Jxm0HqRFhgW2YPlohM3YBud7wno3cW5CCpHDDKOo8fM=
Subject key identifier: D1:7D:47:B0:3C:E4:A6:A8:7B:4A:4C:B7:63:90:AA:48:62:9D:52:45
Certificate issuer: /CN=c126122b4ceee41f97ffb8cc22550be3fa0a53dc
Certificate serial: 094CDB06
Authority key identifier: C1:26:12:2B:4C:EE:E4:1F:97:FF:B8:CC:22:55:0B:E3:FA:0A:53:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSYSK0zu5B-X_7jMIlUL4_oKU9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/80393f-2bd5-4668-acbd-152b463aa3ca/1/0X1HsDzkpqh7Sky3Y5CqSGKdUkU.roa
Signing time: Sat 01 Jan 2022 14:55:08 +0000
ROA not before: Sat 01 Jan 2022 14:55:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43391
IP address blocks: 185.131.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156031750 (0x94cdb06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c126122b4ceee41f97ffb8cc22550be3fa0a53dc
Validity
Not Before: Jan 1 14:55:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d17d47b03ce4a6a87b4a4cb76390aa48629d5245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:57:3c:81:25:aa:ff:77:b4:d9:e9:72:32:c4:
ae:cd:ea:67:05:64:1f:b8:83:e8:2a:a7:b6:27:b9:
bf:aa:b7:86:b4:cd:6f:48:cc:93:51:14:98:23:11:
61:fd:5b:0b:ac:3c:bd:4f:22:e0:68:e7:ce:ca:44:
48:bb:67:02:9d:07:7e:1a:8d:c3:a0:3c:9c:22:1d:
81:b2:85:0d:6a:91:5a:bf:c4:8f:76:7f:82:fb:cc:
03:35:9b:04:3e:e2:14:e7:2e:44:38:b9:a4:24:8b:
7f:f7:5e:31:1e:82:a8:7d:50:ad:14:c7:30:d6:b4:
2e:ed:40:b3:d2:8a:44:de:d5:ca:5b:f7:66:b9:c0:
62:a3:cc:c4:da:8b:7a:16:cf:f6:06:28:ae:84:e2:
be:08:ea:82:51:94:c2:8e:fb:d3:b6:3a:47:46:89:
51:b5:f2:3f:2d:89:94:f9:98:54:05:8f:ff:c4:60:
67:53:49:64:43:21:63:ce:66:7d:43:c2:58:d2:92:
1e:da:3b:63:3d:5f:ff:4a:14:93:b4:25:5e:a2:be:
f9:9b:fc:74:de:87:62:eb:e4:4a:96:d3:90:5b:44:
d9:6e:ea:03:56:22:76:cd:05:0a:21:f4:38:f3:79:
a9:c9:b6:23:22:5e:9e:01:ce:23:40:ee:8f:25:87:
12:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:7D:47:B0:3C:E4:A6:A8:7B:4A:4C:B7:63:90:AA:48:62:9D:52:45
X509v3 Authority Key Identifier:
keyid:C1:26:12:2B:4C:EE:E4:1F:97:FF:B8:CC:22:55:0B:E3:FA:0A:53:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSYSK0zu5B-X_7jMIlUL4_oKU9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/80393f-2bd5-4668-acbd-152b463aa3ca/1/0X1HsDzkpqh7Sky3Y5CqSGKdUkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/80393f-2bd5-4668-acbd-152b463aa3ca/1/wSYSK0zu5B-X_7jMIlUL4_oKU9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.208.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:34:61:9f:d9:db:84:0b:ca:f8:3e:4e:ec:a3:09:ee:74:6e:
1d:26:09:ff:dd:1f:7d:c0:9b:ba:fd:46:f7:37:47:8d:3a:2b:
67:7c:62:04:09:d3:e5:52:f4:2f:3c:08:0b:71:c9:42:5f:4b:
47:77:64:b7:67:b8:9a:9d:5f:db:cd:23:ee:fd:5c:9b:4c:27:
a3:26:13:83:a0:45:27:fc:8b:f9:80:f1:76:75:d3:ad:7a:8b:
ae:3e:92:03:63:59:b6:79:e0:da:2a:34:32:fb:dc:c9:e1:32:
a2:bb:38:94:5c:68:34:1f:6e:2a:f1:59:74:89:f2:76:ea:73:
f5:3b:79:40:9f:e0:83:cc:64:9d:85:d1:e3:db:d4:bb:cf:fc:
6e:e8:82:70:b6:f8:53:54:62:d2:1f:8d:96:09:1c:b6:b1:1f:
5d:54:81:e7:3a:f6:db:33:c4:9b:80:c7:be:de:51:d6:66:0b:
fb:2a:5b:e9:ab:92:39:67:ed:b8:ed:c2:fc:ac:3d:a3:45:df:
55:a0:a0:10:8b:a5:27:c5:ca:8b:ba:8d:55:92:ce:7d:3d:4a:
a0:17:4c:58:24:b0:9d:77:dc:37:b0:25:04:62:d1:41:9b:a0:
1e:e4:07:c6:c6:10:d0:97:3d:9d:1a:42:e3:73:fb:b3:c8:7f:
88:ca:7a:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:19 2024 by rpki-client on console-fra.rpki-client.org