Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7916cd-4d2f-4f52-aeac-f1e9bc41d92f/1/wFAttWmfqahZj-Sdc0qJ33r8Kkg.roa
File: wFAttWmfqahZj-Sdc0qJ33r8Kkg.roa (raw, json)
Hash identifier: PHgDSwse9+Nfxd+EbMkjmtRr6UDl/buqsSsEbmHAa1Q=
Subject key identifier: C0:50:2D:B5:69:9F:A9:A8:59:8F:E4:9D:73:4A:89:DF:7A:FC:2A:48
Certificate issuer: /CN=32ed67002dc7307e8563b6e4934ccd5723a44f3e
Certificate serial: 03C87B28
Authority key identifier: 32:ED:67:00:2D:C7:30:7E:85:63:B6:E4:93:4C:CD:57:23:A4:4F:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mu1nAC3HMH6FY7bkk0zNVyOkTz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7916cd-4d2f-4f52-aeac-f1e9bc41d92f/1/wFAttWmfqahZj-Sdc0qJ33r8Kkg.roa
Signing time: Sun 13 Mar 2022 16:20:25 +0000
ROA not before: Sun 13 Mar 2022 16:20:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15924
IP address blocks: 185.180.29.0/24 maxlen: 24
185.180.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63470376 (0x3c87b28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32ed67002dc7307e8563b6e4934ccd5723a44f3e
Validity
Not Before: Mar 13 16:20:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0502db5699fa9a8598fe49d734a89df7afc2a48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f4:2d:05:de:21:e6:1d:aa:bd:86:20:52:86:
5f:db:12:d2:82:a4:d2:5f:df:36:0f:1e:bd:5e:71:
1b:d7:ca:52:ef:a4:28:e1:cf:a2:d4:fb:ff:58:f9:
e1:b1:9b:d5:da:1c:7d:d9:07:ef:5d:52:c2:2c:09:
47:59:da:e0:a6:0c:c3:10:82:a1:fd:64:c9:2d:d1:
a8:eb:dd:ac:2c:4f:2d:0e:0b:4f:0a:f6:79:87:b9:
66:48:af:fb:ab:25:b8:22:7a:bf:cd:9d:b4:e8:d7:
ff:6f:cb:b6:ed:42:7c:1e:3d:4f:16:7c:13:d8:1b:
da:7d:ab:fe:b1:4c:d7:41:67:de:95:8d:7b:f2:7d:
83:dc:4f:89:42:fc:d7:af:af:4c:f6:7b:f9:65:00:
dc:46:0c:e4:6c:24:65:ab:51:c2:63:96:c3:a0:c6:
af:9b:a2:34:e8:9b:c9:4b:5c:8e:ed:95:1b:69:05:
2e:41:11:2a:18:86:72:44:3f:8a:2d:93:48:ba:07:
bc:3b:4a:5b:54:6c:24:3a:6d:82:50:5e:93:1e:0e:
a3:dc:c9:8b:30:a6:d2:6b:71:34:e5:25:f6:7a:39:
c0:14:6d:7c:45:bd:c4:3d:4f:9a:3a:04:b5:24:1a:
3a:d0:27:aa:07:8f:7e:67:b6:67:fa:4e:ed:6f:c6:
80:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:50:2D:B5:69:9F:A9:A8:59:8F:E4:9D:73:4A:89:DF:7A:FC:2A:48
X509v3 Authority Key Identifier:
keyid:32:ED:67:00:2D:C7:30:7E:85:63:B6:E4:93:4C:CD:57:23:A4:4F:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mu1nAC3HMH6FY7bkk0zNVyOkTz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7916cd-4d2f-4f52-aeac-f1e9bc41d92f/1/wFAttWmfqahZj-Sdc0qJ33r8Kkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7916cd-4d2f-4f52-aeac-f1e9bc41d92f/1/Mu1nAC3HMH6FY7bkk0zNVyOkTz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.28.0/23
Signature Algorithm: sha256WithRSAEncryption
83:68:19:2a:ae:43:00:bf:41:fd:f5:e5:44:53:a8:04:55:dc:
1b:9c:4f:66:f2:24:b5:ef:a1:a7:40:eb:90:fd:7e:22:5d:8e:
7a:b3:d7:dd:c1:be:c7:5c:b9:6f:2e:a7:c6:7d:3f:df:4f:58:
ee:04:17:b9:18:15:be:ed:3c:9a:5e:58:cc:97:f0:06:ef:0f:
c4:07:ba:47:70:86:9c:2c:ba:20:6b:51:68:43:c5:da:1e:2c:
e7:b3:27:62:e9:99:1d:af:65:af:18:bc:c7:52:cf:ba:46:ec:
3c:64:1c:20:70:51:18:57:31:08:46:8a:26:33:1f:db:da:e3:
5c:ac:be:77:c7:9e:f9:48:eb:b2:cf:90:66:6b:ba:b3:3c:ea:
16:1d:c6:a6:03:c9:8b:19:2e:d9:98:0b:3c:95:63:b7:c1:68:
e1:56:fc:f0:80:d8:9f:de:90:e4:d7:0b:5c:e5:a8:36:d1:de:
e8:29:49:e9:56:7d:b1:45:bb:f5:80:5b:46:96:a2:0f:df:54:
47:ca:b1:f7:5c:3d:1e:54:76:77:20:7f:48:75:61:17:42:5c:
42:2f:37:f2:84:3a:a0:40:84:3d:72:3f:ad:40:08:ef:36:c3:
85:55:66:e8:96:df:3e:aa:49:1e:e1:5d:ee:e4:3f:6e:cf:6f:
9f:3a:3b:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:16 2024 by rpki-client on console-fra.rpki-client.org