Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a9d9da-f8a5-47ba-b66a-bd0b5774f637/1/Daypc-8UQ4NhGjXeipNwgC6nvB8.roa
File: Daypc-8UQ4NhGjXeipNwgC6nvB8.roa (raw, json)
Hash identifier: 3n9EAZfo62iYujAnxIe1vY6UAtCTgGBKG+0Qn69bwO4=
Subject key identifier: 0D:AC:A9:73:EF:14:43:83:61:1A:35:DE:8A:93:70:80:2E:A7:BC:1F
Certificate issuer: /CN=8d30810e2dc271a6a0f07b8e209e2dc223637839
Certificate serial: 13C23E9C
Authority key identifier: 8D:30:81:0E:2D:C2:71:A6:A0:F0:7B:8E:20:9E:2D:C2:23:63:78:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jTCBDi3Ccaag8HuOIJ4twiNjeDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a9d9da-f8a5-47ba-b66a-bd0b5774f637/1/Daypc-8UQ4NhGjXeipNwgC6nvB8.roa
Signing time: Sat 01 Jan 2022 06:53:52 +0000
ROA not before: Sat 01 Jan 2022 06:53:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203726
IP address blocks: 185.124.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 331497116 (0x13c23e9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d30810e2dc271a6a0f07b8e209e2dc223637839
Validity
Not Before: Jan 1 06:53:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0daca973ef144383611a35de8a9370802ea7bc1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:19:b9:ce:c6:73:dd:1e:b3:d9:b9:c0:2c:0e:
fc:7e:fa:40:e4:ad:03:51:59:38:60:ce:ea:8a:dc:
4a:5e:43:e6:0d:9a:e4:fb:98:53:7d:0b:ce:fb:cd:
8a:fc:6d:db:28:8e:10:a2:81:28:2e:73:1f:3e:2d:
f1:d3:bb:c0:72:2d:a9:64:97:14:cd:2e:05:f5:8b:
05:eb:81:5a:73:4c:59:57:58:ce:fb:62:69:70:8e:
be:29:2a:34:cc:36:66:82:dc:38:be:11:f2:8e:be:
6e:23:d2:7c:59:7f:4f:9b:a5:e6:bc:51:da:cd:fd:
c2:7a:d3:60:0d:b5:c5:4d:08:f1:ce:7a:59:d6:7c:
cb:3e:95:53:09:4c:61:d0:5b:a2:39:2a:27:5c:78:
83:f0:27:54:a6:84:d3:2c:b7:75:5e:32:3a:34:53:
83:81:d7:32:06:fa:a2:84:1d:d9:a2:9e:b9:ef:c3:
80:79:31:47:f0:57:9a:c4:bb:4a:96:a1:4e:74:e4:
9c:ba:5f:0c:a7:8b:6f:1f:0b:a8:96:6b:3d:30:d8:
f6:c9:d0:43:f5:8c:0f:d3:92:4b:c4:0a:78:fe:0c:
30:16:ea:ec:28:35:67:64:e5:cf:39:fb:e4:88:7d:
74:7c:16:fe:99:b2:3c:b7:22:9e:a7:ec:06:8e:a1:
ba:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:AC:A9:73:EF:14:43:83:61:1A:35:DE:8A:93:70:80:2E:A7:BC:1F
X509v3 Authority Key Identifier:
keyid:8D:30:81:0E:2D:C2:71:A6:A0:F0:7B:8E:20:9E:2D:C2:23:63:78:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jTCBDi3Ccaag8HuOIJ4twiNjeDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a9d9da-f8a5-47ba-b66a-bd0b5774f637/1/Daypc-8UQ4NhGjXeipNwgC6nvB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a9d9da-f8a5-47ba-b66a-bd0b5774f637/1/jTCBDi3Ccaag8HuOIJ4twiNjeDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.180.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:99:ef:c1:a0:7d:c5:f9:96:dd:cf:31:17:e9:57:fe:4c:3e:
f4:47:bc:9f:76:2f:c4:4d:d7:1a:79:69:73:84:63:a7:7b:6e:
33:4c:8f:de:fe:a4:5f:48:69:f6:9d:0c:56:c5:df:01:d9:0e:
4b:01:e0:c4:c0:91:fe:f2:d7:91:e0:d0:f5:98:7f:e6:4c:ef:
ec:f5:c9:a2:6a:d8:16:b0:f3:8d:87:22:3c:eb:7c:98:29:4d:
56:66:86:bd:8e:40:50:33:9a:b7:1e:ec:06:4d:be:d6:01:58:
c7:22:e2:0b:a8:dc:68:10:2f:bc:f2:2b:2c:7c:52:b7:e2:1d:
38:1a:58:d7:89:01:60:c6:0f:e8:d2:87:d3:ce:f1:c3:82:6c:
7b:b5:72:77:f0:77:8b:7e:34:00:76:af:44:31:cf:83:86:b6:
64:12:0b:91:e2:c4:c2:65:95:10:42:84:63:49:33:ed:8d:10:
dd:2f:02:07:45:99:69:00:f6:c0:a1:3f:ed:fe:74:2c:ab:23:
4f:61:38:8c:72:75:ef:f1:c9:86:07:dd:36:c1:83:6f:61:49:
79:2f:90:c5:60:6e:7d:a9:1c:de:b0:72:b0:46:a5:d4:26:d7:
90:be:e1:0f:c0:57:e8:6d:f2:ec:62:73:73:89:53:b3:d0:c8:
b1:ac:d8:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:52 2024 by rpki-client on console-fra.rpki-client.org