Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/OBFwuHLr4ccV-chA8W4oS1tWHyk.roa
File: OBFwuHLr4ccV-chA8W4oS1tWHyk.roa (raw, json)
Hash identifier: 4Zo3uHoWvRAX8uaOAS51qsBXdATxO1Fed2WJpBcghPY=
Subject key identifier: 38:11:70:B8:72:EB:E1:C7:15:F9:C8:40:F1:6E:28:4B:5B:56:1F:29
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 13BB1A8E
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/OBFwuHLr4ccV-chA8W4oS1tWHyk.roa
Signing time: Mon 04 Apr 2022 06:31:20 +0000
ROA not before: Mon 04 Apr 2022 06:31:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209163
IP address blocks: 185.204.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 331029134 (0x13bb1a8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: Apr 4 06:31:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=381170b872ebe1c715f9c840f16e284b5b561f29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:56:a4:86:3f:c7:3d:22:85:95:a0:a9:06:86:
7b:8d:ea:1c:81:c0:23:e6:71:39:4a:37:5b:f0:5f:
89:31:96:a3:f1:08:0b:95:54:8e:2c:b5:d1:17:56:
78:4d:3c:e2:57:76:2f:66:6f:52:4e:35:76:9b:e5:
79:bd:4b:90:09:cb:34:8e:bd:fc:af:44:b8:1d:a5:
85:a2:95:cc:00:aa:1b:f5:6c:3e:68:71:c3:12:2d:
d4:53:4a:28:ec:c0:e1:f9:a9:7f:2e:43:4c:93:dd:
30:63:33:27:43:a4:85:1f:24:2c:4e:64:21:46:9c:
73:bd:fd:4f:5e:6f:db:99:68:4a:3f:86:e1:4d:94:
c6:17:bd:64:68:26:1d:0f:2a:57:21:6a:f3:ef:f0:
6e:e6:c4:42:0b:1f:54:dd:f5:a7:46:e2:1a:a1:e6:
90:c7:2d:3e:06:c9:05:ed:d4:6b:f7:4c:bf:ad:46:
56:5f:67:78:58:39:fd:3a:d2:fa:1d:b3:d1:91:af:
1e:8f:60:9f:46:4d:cb:0a:10:71:f9:e2:d2:da:5c:
b5:2e:2a:d6:a7:7f:4e:e1:36:bf:21:3a:af:09:6a:
07:b6:3b:a9:0e:57:40:5d:3d:95:62:4f:5b:07:46:
c2:bf:9c:ef:2b:a5:b7:d6:9e:8a:4d:19:69:ba:18:
39:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:11:70:B8:72:EB:E1:C7:15:F9:C8:40:F1:6E:28:4B:5B:56:1F:29
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/OBFwuHLr4ccV-chA8W4oS1tWHyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.162.0/24
Signature Algorithm: sha256WithRSAEncryption
25:3b:9d:f7:35:a3:98:39:24:7a:fe:cd:0d:78:01:fe:fc:eb:
b1:bc:a2:14:fa:61:71:01:14:df:7a:bd:17:21:ff:8a:43:be:
23:bf:9f:ad:70:d5:b6:e3:40:dd:dd:22:69:ab:97:09:8a:c7:
5a:82:5e:04:08:84:9f:e2:d9:ed:6b:7e:bb:93:d5:21:c5:d0:
82:36:5c:29:5a:9d:0d:96:8e:f0:8c:06:02:de:8d:dc:ed:c1:
6a:c4:44:12:8a:94:bf:dd:14:7b:f3:e7:d9:42:29:6e:7b:e2:
11:90:f6:64:aa:d4:4a:2a:71:df:4c:ba:fe:40:78:8a:e1:9b:
af:8e:b5:b6:9d:3b:61:49:47:ce:64:ee:2c:07:49:cc:37:0a:
2a:dd:6c:89:ba:94:f7:68:bb:66:14:ec:72:a1:e6:dc:ff:49:
c1:ba:81:fa:c6:4b:27:03:2b:d1:45:66:34:3e:92:7d:07:7e:
17:09:9b:e0:0e:1c:dc:e5:6a:42:45:a6:e7:b4:cb:47:86:92:
3f:19:4e:53:01:af:42:4f:b8:f7:8d:2d:0f:26:36:cd:97:78:
44:a8:4c:51:57:7c:4f:e4:47:3a:7c:ac:df:19:f4:af:15:03:
ce:c9:64:33:21:f1:1f:3a:e6:e5:d0:94:48:9c:36:0a:a3:08:
f0:ac:3b:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:33 2024 by rpki-client on console-fra.rpki-client.org