Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/2mhGMQ51qxMa3eU76sP9w9fO8Ng.roa
File: 2mhGMQ51qxMa3eU76sP9w9fO8Ng.roa (raw, json)
Hash identifier: AlvJsLaQ8sr6jRPnVR9skZMO9qqaS9yq5Bu7dS2Kn1w=
Subject key identifier: DA:68:46:31:0E:75:AB:13:1A:DD:E5:3B:EA:C3:FD:C3:D7:CE:F0:D8
Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Certificate serial: 0B4033CA
Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/2mhGMQ51qxMa3eU76sP9w9fO8Ng.roa
Signing time: Sat 01 Jan 2022 08:59:17 +0000
ROA not before: Sat 01 Jan 2022 08:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208149
IP address blocks: 185.83.72.0/22 maxlen: 24
185.117.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188756938 (0xb4033ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Validity
Not Before: Jan 1 08:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da6846310e75ab131adde53beac3fdc3d7cef0d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e7:64:12:7c:f0:10:46:a6:59:7f:0f:5a:18:
21:e9:a5:4e:d0:00:7b:35:e9:f9:92:60:d6:5c:06:
a2:cc:fb:d5:e4:b9:67:c2:2c:4d:19:5d:72:6e:fb:
cf:5d:d4:d7:70:9b:93:e5:d9:a1:35:15:7f:a8:3e:
1b:37:44:94:7b:26:5c:2e:7d:74:57:d4:5f:27:b2:
be:bd:0a:73:dc:d4:aa:99:55:15:74:89:16:15:5a:
85:70:6a:17:77:04:bd:c6:df:95:03:d7:58:96:a8:
05:b7:8b:9d:cf:c9:b9:a5:cf:e9:62:47:e6:ac:b1:
45:54:18:bc:66:5f:6a:29:05:a4:2c:ba:14:b5:be:
60:e8:e1:05:51:2a:0f:91:6f:3c:d6:b2:69:af:62:
9a:e6:73:76:ad:8e:93:64:7a:09:a5:de:8c:4b:ca:
f1:e1:8c:95:f6:59:e2:52:6f:69:6a:52:8a:17:61:
ed:7d:b3:3f:a0:2e:67:7b:eb:f4:ee:d8:2d:4e:bb:
63:05:31:71:da:55:b4:db:b9:4c:71:fc:e9:48:99:
33:3a:e4:8f:fa:9b:c2:72:1d:05:b7:7e:d5:14:db:
88:1b:33:e7:fb:94:a4:9a:32:71:b8:a8:e3:82:97:
a0:fd:bf:68:07:04:91:31:31:6f:88:ca:eb:93:b1:
c2:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:68:46:31:0E:75:AB:13:1A:DD:E5:3B:EA:C3:FD:C3:D7:CE:F0:D8
X509v3 Authority Key Identifier:
keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/2mhGMQ51qxMa3eU76sP9w9fO8Ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.72.0/22
185.117.35.0/24
Signature Algorithm: sha256WithRSAEncryption
68:55:50:c4:72:a9:92:13:d1:c6:cf:b9:ac:8b:f4:fb:87:5e:
a5:26:01:e1:f0:3a:db:99:f6:81:83:c9:8d:22:0f:62:70:2f:
4b:70:bf:46:7c:24:44:89:24:8f:2d:00:2d:a0:f4:99:75:8f:
90:12:b1:13:17:57:d6:08:f5:12:f1:fc:4f:08:bf:da:06:36:
36:0a:c9:bb:4f:8c:68:71:e0:89:88:51:de:3a:c3:99:1a:b5:
74:72:55:d3:51:53:c7:04:c8:09:ed:f8:98:38:e9:c7:df:b9:
1c:cf:34:6b:7c:80:1c:50:61:64:43:04:00:c6:5d:79:f3:19:
e9:71:8a:7f:78:35:65:93:a9:25:d8:03:2a:7e:18:9d:d7:2a:
a9:a0:78:95:a6:3a:e3:76:7e:c8:05:1f:4c:d8:14:85:f0:04:
c7:97:51:c7:36:8c:4f:4f:1c:e5:59:33:44:92:c7:fe:07:a2:
02:fa:12:fb:35:de:95:cb:34:c9:99:89:0c:f3:05:98:40:af:
be:00:16:d4:74:2a:e3:72:37:dd:86:b1:c4:05:4c:2c:63:1c:
e9:15:63:e8:4e:52:94:b9:37:bc:2c:97:a7:68:7e:68:68:c4:
f3:56:69:dd:bd:ac:6d:9b:68:4d:3a:d7:0d:fe:0b:60:d7:8c:
c7:ca:88:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:30 2024 by rpki-client on console-fra.rpki-client.org