Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/OJvf0t2hLrV5HYDKxhwIZAElrE4.roa
File: OJvf0t2hLrV5HYDKxhwIZAElrE4.roa (raw, json)
Hash identifier: plSao+NUZ5ifZOKEhbcliVyDzXl108DLViMjsIHo/qQ=
Subject key identifier: 38:9B:DF:D2:DD:A1:2E:B5:79:1D:80:CA:C6:1C:08:64:01:25:AC:4E
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 03ED0023
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/OJvf0t2hLrV5HYDKxhwIZAElrE4.roa
Signing time: Mon 25 Apr 2022 10:19:03 +0000
ROA not before: Mon 25 Apr 2022 10:19:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209242
IP address blocks: 185.176.26.0/24 maxlen: 24
185.148.104.0/24 maxlen: 24
185.148.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65863715 (0x3ed0023)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: Apr 25 10:19:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=389bdfd2dda12eb5791d80cac61c08640125ac4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f6:06:ea:84:91:88:b2:40:36:99:f7:e5:a3:
c5:27:0a:1e:7e:bc:ff:a6:8a:d0:a2:80:fe:de:46:
fa:94:33:52:a7:7f:b0:e0:ca:0f:e8:48:df:5d:d5:
78:18:e5:2b:73:a8:77:48:cf:7f:12:ae:c3:49:49:
75:fe:db:d4:ae:70:6d:f6:b9:cc:29:fb:84:0e:05:
8e:37:e4:d4:11:26:44:e5:d9:04:5f:41:71:1b:85:
68:99:f7:ec:6a:c4:08:f9:58:ce:8c:90:44:f9:46:
d0:01:a0:6a:76:98:b8:4d:55:01:76:04:a2:82:36:
b6:8c:ba:f8:63:c0:80:c3:73:9f:7f:1e:fa:9b:86:
4c:7d:a0:e8:d2:d1:57:dc:33:e2:85:a1:b4:b6:ef:
c5:ab:3e:b9:10:4a:63:02:65:ec:f2:46:9e:e1:4c:
1e:6c:c8:c6:78:67:64:5c:e0:26:7f:77:35:43:f1:
7a:aa:c2:98:c7:15:ae:40:bd:42:73:9e:b2:b5:fe:
56:88:4b:de:ba:f3:b2:51:42:44:b1:e3:86:08:68:
fd:2f:ad:86:6d:38:17:e7:1d:7f:24:50:8f:ba:1e:
76:1a:74:39:52:97:03:2c:8e:8e:e5:ef:23:78:a0:
0f:51:e8:fe:ff:c0:b6:9a:bf:c6:d9:dc:87:53:97:
da:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:9B:DF:D2:DD:A1:2E:B5:79:1D:80:CA:C6:1C:08:64:01:25:AC:4E
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/OJvf0t2hLrV5HYDKxhwIZAElrE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.104.0/23
185.176.26.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:53:da:d5:cc:7a:27:64:9b:fa:e5:dd:71:2e:7d:86:41:33:
e3:f9:f4:a1:60:a4:6a:7a:d8:26:16:43:80:a2:ed:02:f7:3e:
83:bd:e7:3b:89:9a:27:62:34:26:47:a7:b3:f7:f3:0c:20:06:
57:51:57:72:6c:d1:40:6a:a6:a7:df:85:12:01:d6:73:09:d7:
42:4e:58:18:66:13:f9:46:1f:e5:ce:7d:07:6b:ff:37:bd:20:
49:03:50:1a:82:59:3e:c1:64:6a:25:d4:ba:7d:1c:be:d5:6a:
a3:0d:67:43:8d:ff:d1:4c:cf:a1:da:31:5e:71:fd:81:8c:2b:
a9:2a:cb:b1:07:b4:8f:5a:fe:b8:91:0d:b6:ba:59:eb:28:06:
11:6b:8a:ea:cd:ef:cc:0c:6e:e0:d6:72:23:ea:9d:31:51:cf:
73:63:9e:c0:a4:de:a6:15:c0:5e:56:97:fb:53:6a:e7:ef:b6:
0b:3c:1d:fd:a1:30:be:2e:7a:c4:49:93:f2:6d:5f:74:fc:aa:
93:19:78:68:7e:e1:cc:5f:72:bb:4c:f5:6b:e6:07:f5:06:82:
d4:c7:fa:b1:fb:1b:63:da:52:1f:6a:0c:8a:35:b5:3f:a5:32:
2e:ca:1b:1c:6e:67:4d:b5:0a:e1:c2:df:e1:ae:5e:ef:4d:ca:
eb:36:5c:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:58 2024 by rpki-client on console-fra.rpki-client.org