Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4d1cf3-67f4-4b83-ad76-c750208662fd/1/dh6j0NiKncyAAO6GtIZ25pPBtQs.roa
File: dh6j0NiKncyAAO6GtIZ25pPBtQs.roa (raw, json)
Hash identifier: 6th/kkB7imstFBM67z0/KvQeLNXwZZ1Bf5CE4eu7rJw=
Subject key identifier: 76:1E:A3:D0:D8:8A:9D:CC:80:00:EE:86:B4:86:76:E6:93:C1:B5:0B
Certificate issuer: /CN=a3d7f84861b266ee2f8d386304cece191c282e7d
Certificate serial: 9712
Authority key identifier: A3:D7:F8:48:61:B2:66:EE:2F:8D:38:63:04:CE:CE:19:1C:28:2E:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o9f4SGGyZu4vjThjBM7OGRwoLn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4d1cf3-67f4-4b83-ad76-c750208662fd/1/dh6j0NiKncyAAO6GtIZ25pPBtQs.roa
Signing time: Tue 25 Jan 2022 10:38:32 +0000
ROA not before: Tue 25 Jan 2022 10:38:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209235
IP address blocks: 185.122.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38674 (0x9712)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3d7f84861b266ee2f8d386304cece191c282e7d
Validity
Not Before: Jan 25 10:38:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=761ea3d0d88a9dcc8000ee86b48676e693c1b50b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a8:8a:2a:cd:4b:55:a4:2c:06:df:cb:94:a5:
8d:a9:e9:ef:19:d6:c1:cf:84:64:63:38:51:14:0f:
d9:41:cb:9f:91:92:c3:7f:29:21:0d:ed:c3:c7:2b:
94:37:16:2e:1f:b1:bf:a1:d7:7c:fe:e0:ba:cc:ef:
6a:71:aa:b7:7e:fb:c6:9d:c9:e9:2e:df:2b:da:72:
15:46:f0:98:99:79:7d:b2:34:7f:01:9d:e9:7d:d8:
6c:ca:3f:24:d5:4d:7c:99:63:56:d1:b7:0e:21:af:
ee:48:24:0e:e6:d9:c5:63:18:48:21:a7:72:6b:d6:
18:17:a2:26:8a:c7:cd:8b:ee:12:41:d1:66:46:54:
2b:ee:66:95:c3:eb:3e:be:f3:49:f1:bb:ec:2c:b8:
86:e9:19:62:dc:96:ab:5a:d7:dd:3d:49:a6:22:a7:
eb:a3:bd:84:e3:32:a1:2b:f8:95:6a:e5:c3:97:45:
c4:ed:0d:dd:95:ee:04:0f:20:60:2a:f0:a2:1d:61:
64:65:ba:c6:39:7d:04:a2:28:1a:4d:97:e2:0f:db:
f0:5d:ea:c2:32:d5:49:2f:3f:a8:16:02:f3:e4:79:
82:43:4e:58:d3:46:5a:05:c3:9e:38:3a:44:ad:42:
97:dd:39:05:9d:0e:a4:1e:5b:bb:e2:e5:89:12:9f:
ff:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:1E:A3:D0:D8:8A:9D:CC:80:00:EE:86:B4:86:76:E6:93:C1:B5:0B
X509v3 Authority Key Identifier:
keyid:A3:D7:F8:48:61:B2:66:EE:2F:8D:38:63:04:CE:CE:19:1C:28:2E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o9f4SGGyZu4vjThjBM7OGRwoLn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4d1cf3-67f4-4b83-ad76-c750208662fd/1/dh6j0NiKncyAAO6GtIZ25pPBtQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4d1cf3-67f4-4b83-ad76-c750208662fd/1/o9f4SGGyZu4vjThjBM7OGRwoLn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.205.0/24
Signature Algorithm: sha256WithRSAEncryption
84:12:a9:1c:3e:97:0a:9a:d7:f6:40:86:2b:d4:c0:bd:c9:51:
67:70:30:f9:6a:ca:13:bc:5f:50:08:57:d9:61:5a:ad:80:a0:
b8:f7:14:d9:51:f6:be:7c:eb:0f:6e:e3:c3:9f:06:27:22:d6:
85:fa:f0:c9:22:8e:b4:4d:fe:39:1c:d0:c9:66:ff:1b:f3:f2:
4a:75:d8:b9:ff:77:04:d5:d9:e8:d5:30:42:bb:e8:aa:9f:87:
0b:bc:91:68:e3:fe:f8:23:56:85:bd:56:d5:ec:9f:56:31:19:
74:73:5c:8d:2b:25:41:80:f5:08:f5:49:78:58:dd:e1:c1:e0:
7d:90:b2:d8:52:7b:ed:4f:fd:c1:9e:f7:43:d7:a4:30:c7:e8:
a4:ac:a3:44:a9:9d:64:17:bc:b6:cf:30:4c:df:06:26:f4:90:
2d:a4:35:ad:0b:9f:6d:cc:b8:60:42:74:2d:7e:b6:fb:fc:bf:
33:2e:1c:39:58:42:cc:c1:4a:f8:9f:a6:c6:75:d6:5e:3f:0a:
c6:78:83:f4:08:71:37:25:98:20:97:53:09:c4:96:67:35:a6:
94:50:77:f5:3e:6d:2e:9d:73:6d:64:48:ea:47:09:38:cf:bc:
9d:41:5e:13:2a:29:71:24:ee:19:30:76:0b:c0:87:d3:fb:0d:
ed:1d:6f:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:59 2024 by rpki-client on console-ams.rpki-client.org