Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1c418b-ec7d-46d2-99d5-dde0d12735c6/1/e09lOsLgmonKKnoDcuQb-OOVHJw.roa
File: e09lOsLgmonKKnoDcuQb-OOVHJw.roa (raw, json)
Hash identifier: T9Voc7OIS/mhT3FLtFQfyfzyKLowQEP95Me09jZMYyA=
Subject key identifier: 7B:4F:65:3A:C2:E0:9A:89:CA:2A:7A:03:72:E4:1B:F8:E3:95:1C:9C
Certificate issuer: /CN=849d5c1ca865b04b6f2b3ccd9016e92ddad99aab
Certificate serial: 0E077D7E
Authority key identifier: 84:9D:5C:1C:A8:65:B0:4B:6F:2B:3C:CD:90:16:E9:2D:DA:D9:9A:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJ1cHKhlsEtvKzzNkBbpLdrZmqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c418b-ec7d-46d2-99d5-dde0d12735c6/1/e09lOsLgmonKKnoDcuQb-OOVHJw.roa
Signing time: Sat 01 Jan 2022 11:02:10 +0000
ROA not before: Sat 01 Jan 2022 11:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 185.110.196.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 235371902 (0xe077d7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=849d5c1ca865b04b6f2b3ccd9016e92ddad99aab
Validity
Not Before: Jan 1 11:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b4f653ac2e09a89ca2a7a0372e41bf8e3951c9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:8f:96:9a:56:39:6a:12:7e:e1:bc:cd:89:7e:
bd:0b:82:ed:e8:3c:e9:54:a9:49:6c:7e:09:f4:76:
fa:1d:66:f2:94:6c:61:81:32:a9:5a:51:6f:a8:fd:
9d:aa:fc:e2:26:cf:fc:6b:1a:87:10:04:83:5e:6b:
55:4a:fc:8e:8d:6d:41:1c:a2:40:ee:72:6e:60:1c:
07:d9:32:db:ac:3a:a7:0b:d5:4f:f6:10:ba:f7:74:
98:b8:4a:71:00:f9:06:a9:ef:0a:65:36:f8:b5:03:
de:00:c7:b9:47:c6:43:9f:cc:b9:14:8c:47:17:dc:
29:47:e1:08:e8:05:91:9d:7e:e5:33:c6:ff:0b:d4:
e4:00:28:04:18:b5:43:ae:c9:3c:30:0d:03:0f:0a:
1a:d9:d7:4b:68:f8:a7:52:31:db:80:77:86:a8:45:
1e:54:36:f3:d4:2e:6c:91:3b:f8:8b:85:63:0d:2d:
52:6a:d1:db:c3:1b:9d:d7:f1:52:15:d5:22:8d:ed:
f0:a2:b9:64:33:85:a2:7a:4c:fe:54:d9:de:cb:83:
88:4b:65:88:12:ec:ce:f3:bf:80:62:51:5b:fb:25:
bd:ea:1e:66:21:c1:9a:3c:e6:0b:a7:d9:fc:ac:c7:
5b:9c:cb:ba:c5:17:ae:8d:bf:0e:58:01:97:60:5e:
5a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:4F:65:3A:C2:E0:9A:89:CA:2A:7A:03:72:E4:1B:F8:E3:95:1C:9C
X509v3 Authority Key Identifier:
keyid:84:9D:5C:1C:A8:65:B0:4B:6F:2B:3C:CD:90:16:E9:2D:DA:D9:9A:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJ1cHKhlsEtvKzzNkBbpLdrZmqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c418b-ec7d-46d2-99d5-dde0d12735c6/1/e09lOsLgmonKKnoDcuQb-OOVHJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c418b-ec7d-46d2-99d5-dde0d12735c6/1/hJ1cHKhlsEtvKzzNkBbpLdrZmqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.196.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:10:03:5f:3e:59:21:ac:42:43:60:6b:23:f1:72:9b:01:e5:
bc:84:01:ea:59:bf:e7:cc:99:e0:3d:f3:19:b4:ff:7e:29:6c:
b3:ec:c3:7e:84:68:60:62:53:f3:6b:b2:71:0c:5d:a8:fd:85:
b4:c7:4f:3a:e6:9a:26:42:a9:91:d2:a5:22:9b:33:eb:24:9f:
2a:15:00:a8:68:86:28:47:ce:0d:e0:a8:21:7e:46:61:a6:78:
6c:5c:c0:27:aa:f6:43:2e:fc:e5:cb:f0:6f:a5:78:38:69:2b:
9a:ea:7c:e1:b1:c6:8c:b0:b5:4b:27:55:ca:28:51:e0:fe:90:
80:3e:8a:6d:2c:64:16:a6:55:83:bd:46:ae:ed:42:a6:35:10:
58:7c:2b:8e:0e:4e:31:b6:53:d7:37:d2:3a:fd:89:05:02:c6:
f1:69:dd:6f:00:20:67:6a:8d:05:8b:4b:8c:b0:4b:54:a6:b5:
59:03:ee:c5:0d:f9:33:cc:5b:9c:83:b2:5c:a5:fe:85:f3:c4:
79:1c:54:75:b8:35:68:ae:82:0b:67:88:83:10:7d:32:df:9d:
2c:94:8b:b9:8f:ee:9c:8a:b8:0d:7d:14:dc:14:2e:96:29:e0:
9c:cb:13:0d:26:2e:7a:c1:2e:4d:39:3c:a3:52:34:a4:3b:16:
e7:65:fb:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:44 2024 by rpki-client on console-ams.rpki-client.org