Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f64f83-370a-4901-8bfa-3655302bf005/1/djHsK-5VjOM0iaj-WYARulmG0pg.roa
File: djHsK-5VjOM0iaj-WYARulmG0pg.roa (raw, json)
Hash identifier: VyzTNZv+iCskruEF7+E3+RnE4HY5Qgx5YVK6VYbV9lE=
Subject key identifier: 76:31:EC:2B:EE:55:8C:E3:34:89:A8:FE:59:80:11:BA:59:86:D2:98
Certificate issuer: /CN=05da7571c5eb13b1ae4f4417cefec2bd77902e2d
Certificate serial: 0E0BE1BE
Authority key identifier: 05:DA:75:71:C5:EB:13:B1:AE:4F:44:17:CE:FE:C2:BD:77:90:2E:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bdp1ccXrE7GuT0QXzv7CvXeQLi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f64f83-370a-4901-8bfa-3655302bf005/1/djHsK-5VjOM0iaj-WYARulmG0pg.roa
Signing time: Sat 01 Jan 2022 15:57:54 +0000
ROA not before: Sat 01 Jan 2022 15:57:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203185
IP address blocks: 185.112.244.0/24 maxlen: 24
185.112.245.0/24 maxlen: 24
185.112.246.0/24 maxlen: 24
185.112.247.0/24 maxlen: 24
2a02:6e40:beef::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 235659710 (0xe0be1be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05da7571c5eb13b1ae4f4417cefec2bd77902e2d
Validity
Not Before: Jan 1 15:57:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7631ec2bee558ce33489a8fe598011ba5986d298
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:96:bf:26:ef:3f:b6:11:2c:db:bd:e2:0a:8b:
5c:ee:2d:d3:a8:f8:28:a7:e1:29:60:19:6d:fe:7c:
a9:3b:8a:c9:ab:88:43:71:d5:55:af:3f:72:80:7d:
69:29:48:9e:4c:61:de:01:f9:ad:77:c6:5c:0e:7f:
14:f2:cd:1c:19:54:69:06:f1:fc:f1:9b:da:22:97:
21:fd:eb:4f:c4:34:de:5a:80:11:3e:89:6a:01:30:
40:42:65:46:ba:e9:59:c4:48:f1:ab:6a:cd:4a:46:
71:f3:d9:32:89:b5:ed:77:0c:d1:5b:1a:22:85:fc:
d7:63:05:f2:d3:f2:e1:e9:ec:76:9d:5d:6d:ee:bc:
74:c2:4e:b3:bf:61:15:70:13:9f:0b:1a:1d:5f:2d:
4e:00:79:80:50:40:d6:f0:e4:a3:3c:0c:ec:92:01:
68:fc:ab:6b:75:62:e8:f3:fd:a0:2c:73:70:4a:98:
7d:52:e9:b0:c0:8a:81:08:2d:dc:57:71:57:05:27:
88:91:3a:37:d1:4a:87:41:9c:43:b2:f4:27:bd:20:
12:1b:9b:ca:d8:3a:0a:99:bd:0c:7c:f4:75:e7:e2:
ef:fb:de:78:b9:19:20:77:11:74:a5:c5:0e:e7:17:
00:a2:11:b3:fb:f5:15:3f:b1:7e:be:ec:07:0c:6d:
15:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:31:EC:2B:EE:55:8C:E3:34:89:A8:FE:59:80:11:BA:59:86:D2:98
X509v3 Authority Key Identifier:
keyid:05:DA:75:71:C5:EB:13:B1:AE:4F:44:17:CE:FE:C2:BD:77:90:2E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bdp1ccXrE7GuT0QXzv7CvXeQLi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f64f83-370a-4901-8bfa-3655302bf005/1/djHsK-5VjOM0iaj-WYARulmG0pg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f64f83-370a-4901-8bfa-3655302bf005/1/Bdp1ccXrE7GuT0QXzv7CvXeQLi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.244.0/22
IPv6:
2a02:6e40:beef::/48
Signature Algorithm: sha256WithRSAEncryption
17:ec:40:4d:3f:4e:c1:fa:56:1b:f7:e8:42:33:93:80:8f:14:
9d:1b:6a:ad:0d:84:d2:af:3a:d1:82:50:d9:87:19:58:92:96:
e5:b8:b1:d0:93:84:ee:81:4a:99:0e:01:2f:73:8e:c3:89:9f:
99:32:ac:94:d2:c4:9c:cb:9e:0d:a9:11:4a:67:a0:bb:97:45:
b9:9c:1d:df:ce:21:78:82:37:f6:dd:2f:85:2a:81:7f:4c:70:
a3:f1:64:b8:aa:da:18:8a:95:82:6e:69:0d:28:95:24:71:c3:
a9:a8:dd:c4:b8:1a:20:68:32:7c:f1:15:f6:b6:24:f6:cf:d5:
fa:02:72:8b:1c:79:3e:98:88:60:99:58:ca:5d:b7:bf:06:68:
0b:42:77:ff:9d:83:4f:67:21:aa:55:c9:06:a2:22:b7:b5:55:
71:6b:4d:e3:47:3c:57:f8:9c:7b:0c:c6:22:a3:75:d8:c5:25:
34:93:25:d0:bc:19:b4:cd:69:4b:1b:d0:f0:97:b2:43:64:10:
5f:83:0f:53:66:5c:76:d8:fa:13:9e:76:dd:61:dc:b8:38:33:
f2:63:55:d9:58:20:e0:d2:0f:64:8b:b5:b2:6b:51:89:17:37:
74:ad:c9:5b:aa:a0:d1:d8:73:d9:eb:0c:7e:04:2a:e1:8d:ca:
d8:30:9d:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:35 2023 by rpki-client on console-fra.rpki-client.org