Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/0ohw7S6EkfmF1oHKpb99bYZvK8U.roa
File: 0ohw7S6EkfmF1oHKpb99bYZvK8U.roa (raw, json)
Hash identifier: aVWrbuCt2JAl3IAklu/KdJqeJDfUUfn3s3ptArFMGXY=
Subject key identifier: D2:88:70:ED:2E:84:91:F9:85:D6:81:CA:A5:BF:7D:6D:86:6F:2B:C5
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 13B6E7B0
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/0ohw7S6EkfmF1oHKpb99bYZvK8U.roa
Signing time: Mon 04 Apr 2022 06:31:19 +0000
ROA not before: Mon 04 Apr 2022 06:31:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205939
IP address blocks: 185.145.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330753968 (0x13b6e7b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: Apr 4 06:31:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d28870ed2e8491f985d681caa5bf7d6d866f2bc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:21:64:36:c9:9b:be:23:10:9e:d4:d0:22:6c:
8d:d5:d1:01:57:4e:a2:57:cd:11:07:29:7a:b8:55:
d1:f7:21:ae:cb:0f:38:f2:f4:67:b8:8e:5f:bc:d7:
45:3c:79:8a:5e:64:96:22:17:4f:b4:de:40:0f:33:
56:6c:54:9e:3b:35:16:c5:12:14:77:43:7d:8b:b6:
1f:08:0e:f2:56:f1:af:9d:e8:c6:66:e8:e4:68:ca:
e4:ab:b4:e9:62:b4:bc:ae:ba:c5:72:7b:13:a6:39:
35:47:5c:31:b4:57:5d:15:49:0f:1d:ad:af:57:5d:
e4:f9:4a:6e:97:f6:bc:bb:79:46:2f:1c:1d:71:96:
70:27:00:02:1c:e9:c4:43:79:f9:f1:0e:31:23:13:
21:f8:ac:f3:ae:e8:00:cc:32:f0:77:ba:56:43:cf:
9e:f2:13:e3:cd:87:7a:98:b8:53:0e:5b:4a:1a:fc:
ce:00:bd:0c:22:6d:8b:fa:e0:68:0a:9b:d3:90:0b:
5a:62:63:94:9d:0b:2c:dd:31:29:ff:8a:bc:9a:5e:
3b:88:9b:06:c4:74:66:3e:56:10:8f:db:7e:e8:ca:
3c:82:86:e0:5a:bb:15:d6:88:a9:50:61:8d:44:a9:
ab:f3:44:e0:17:24:96:56:12:98:23:ba:b9:12:25:
e6:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:88:70:ED:2E:84:91:F9:85:D6:81:CA:A5:BF:7D:6D:86:6F:2B:C5
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/0ohw7S6EkfmF1oHKpb99bYZvK8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.77.0/24
Signature Algorithm: sha256WithRSAEncryption
02:a7:73:6c:b5:6c:dd:da:6b:ad:ce:88:92:52:a2:13:b1:76:
86:26:08:f3:ee:c4:ea:04:ac:46:57:2e:23:72:79:f6:db:f2:
98:42:47:90:bb:56:44:da:ce:94:d5:52:96:dd:5e:c5:c3:f4:
05:15:c2:cd:5c:27:d8:b2:1a:9b:0c:e8:64:6d:88:a3:96:11:
99:3e:b6:79:2a:1b:2d:e2:17:67:57:0d:a6:7c:6f:96:01:ac:
fa:1f:f5:50:a7:a7:8f:0d:3f:49:28:f8:48:71:fc:35:af:d1:
8f:75:66:d6:ca:38:54:49:72:a0:d1:ec:50:93:d6:48:02:69:
9a:31:12:db:97:e7:77:0e:f5:9e:b2:85:42:bc:7d:39:93:d0:
ad:fe:0b:4d:12:7b:d9:b9:9b:ee:3d:65:fd:29:64:c2:05:b9:
46:06:b6:a8:c1:ac:33:c9:8b:55:b3:24:2a:bf:27:c5:c5:fb:
95:20:59:f3:da:71:29:cc:0e:43:ea:e5:fb:93:e4:2a:84:e5:
23:53:d7:e7:de:43:7f:97:d7:37:54:44:71:23:85:d4:ed:0e:
6d:0e:42:8d:8b:0c:8c:44:3b:66:b9:c7:51:08:00:06:35:57:
b6:f0:a3:a0:d7:16:1f:9f:12:73:a6:f7:c7:f9:b1:06:a4:e3:
4b:dd:82:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:31 2024 by rpki-client on console-ams.rpki-client.org