Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/no4HtDjFZE22UOfNwrQL9RgAY_I.roa
File: no4HtDjFZE22UOfNwrQL9RgAY_I.roa (raw, json)
Hash identifier: 1v1Z7tzzgM70rgd56ag1N/yl1UEzin6/4FND4fwhXNs=
Subject key identifier: 9E:8E:07:B4:38:C5:64:4D:B6:50:E7:CD:C2:B4:0B:F5:18:00:63:F2
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 13B6A2B2
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/no4HtDjFZE22UOfNwrQL9RgAY_I.roa
Signing time: Mon 04 Apr 2022 06:31:19 +0000
ROA not before: Mon 04 Apr 2022 06:31:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203984
IP address blocks: 185.145.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330736306 (0x13b6a2b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: Apr 4 06:31:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e8e07b438c5644db650e7cdc2b40bf5180063f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:26:00:fa:36:fd:1e:91:d3:98:0a:5f:3e:b9:
dc:3c:51:13:e6:5e:c9:ee:38:1e:c5:2e:ab:21:06:
f6:41:76:f5:f2:2e:fd:c2:78:5d:3c:82:19:83:f0:
d7:0d:74:4f:1b:cf:6e:dd:e4:86:5c:7a:fd:41:7b:
8b:b5:05:2b:d2:ae:fa:09:79:22:04:6e:a0:91:01:
e6:79:dc:bf:c5:a9:05:a0:ee:8c:ef:b6:d0:3b:f2:
28:20:fd:e6:ff:8a:fb:ae:94:60:e6:bf:ef:65:c4:
57:ff:4d:76:e8:c8:f6:83:37:49:8c:fe:63:7e:a9:
95:ac:0f:af:96:86:af:3e:2b:d5:41:a9:c6:d1:d3:
0c:aa:82:ae:e3:d9:cf:e1:f5:09:f5:4a:c0:3a:78:
39:8f:be:78:4e:c6:cd:3b:e5:17:65:08:bb:42:8d:
ea:8b:8c:f5:0b:0f:2b:8b:b5:05:03:a6:cf:af:29:
dc:5f:dc:d1:26:0a:bc:5e:e1:e0:82:2d:16:35:02:
0b:6b:70:29:75:07:33:02:c9:b2:8f:50:36:95:1c:
18:5f:ec:8f:0b:59:f2:fd:6b:e5:c4:2f:ca:c1:74:
c5:e6:33:92:4a:e4:09:29:85:01:39:39:8c:fa:68:
56:bf:26:d3:33:d1:41:a2:8f:b1:fc:1a:5b:34:7e:
35:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:8E:07:B4:38:C5:64:4D:B6:50:E7:CD:C2:B4:0B:F5:18:00:63:F2
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/no4HtDjFZE22UOfNwrQL9RgAY_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.76.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:11:5d:0e:5a:87:11:cd:54:cd:c8:d0:da:e3:89:24:9b:19:
89:93:9d:c1:e7:c9:ec:8a:2a:97:fc:52:36:0e:0a:c0:fe:88:
d7:1f:b0:d8:15:7e:4d:30:94:6c:46:6f:8a:b5:55:dd:dc:5a:
60:38:f7:a5:3e:f1:b4:81:8f:5d:be:71:d7:56:66:1b:d4:72:
22:42:64:5a:23:f6:45:04:95:22:1f:34:d9:41:b9:d3:95:7f:
d5:93:cd:71:ad:2d:4e:3b:08:73:4d:e9:b1:78:2c:37:b8:de:
bb:64:a1:20:c3:cb:51:d7:d9:f0:8c:b5:0c:07:3e:76:91:fe:
b7:da:5f:b7:d5:ce:be:d2:b5:eb:97:8d:73:80:4f:2b:86:e1:
cd:67:9f:2b:03:25:79:9e:48:a0:bd:be:7c:1a:57:06:94:d8:
50:0d:db:e8:96:40:9e:89:b2:33:ea:7d:57:0c:1d:8c:00:5a:
3f:67:30:fe:76:6f:4d:d4:12:4b:79:1d:aa:8e:a6:f5:41:fb:
8a:ac:29:e6:7a:44:fc:07:44:57:19:28:e2:4e:d4:42:91:5d:
62:5b:8a:cf:53:8a:05:7c:e0:a1:4f:ed:40:bf:31:bc:c9:79:
d4:61:67:73:64:97:fe:95:25:71:4a:d2:a2:75:06:0f:0d:c8:
ba:b5:bd:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:31 2024 by rpki-client on console-ams.rpki-client.org