Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/groG8erh-CkmEoRTW59igcg5T5Y.roa
File: groG8erh-CkmEoRTW59igcg5T5Y.roa (raw, json)
Hash identifier: e/muQj/RreaWEhEocJwvXjK7Nh1lz3PDAshcHaLoBtQ=
Subject key identifier: 82:BA:06:F1:EA:E1:F8:29:26:12:84:53:5B:9F:62:81:C8:39:4F:96
Certificate issuer: /CN=6f846c8c0db65dc746ef64cfd82bb9c194e27f73
Certificate serial: 050E167A
Authority key identifier: 6F:84:6C:8C:0D:B6:5D:C7:46:EF:64:CF:D8:2B:B9:C1:94:E2:7F:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4RsjA22XcdG72TP2Cu5wZTif3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/groG8erh-CkmEoRTW59igcg5T5Y.roa
Signing time: Sat 01 Jan 2022 04:03:30 +0000
ROA not before: Sat 01 Jan 2022 04:03:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62749
IP address blocks: 185.32.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84809338 (0x50e167a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f846c8c0db65dc746ef64cfd82bb9c194e27f73
Validity
Not Before: Jan 1 04:03:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82ba06f1eae1f829261284535b9f6281c8394f96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:58:f8:d4:2e:0a:eb:83:00:6f:ec:d5:79:71:
c3:03:67:87:9a:87:79:c9:07:e7:e5:5b:69:ba:7d:
23:93:dd:d9:6a:01:5c:6b:7c:eb:fb:c0:87:19:53:
d8:71:50:15:06:3b:d4:b2:2c:a1:db:8c:91:78:11:
ce:37:6a:e0:e4:c5:b5:85:78:e6:a3:d8:fb:f2:be:
61:be:b0:11:e9:3a:80:c2:aa:91:23:9f:1f:c2:a2:
cd:b2:fe:9a:4f:c4:7c:a0:1e:01:e2:87:7b:d1:19:
68:56:66:d7:6a:1c:71:0c:dd:13:a6:62:a4:f9:f4:
67:72:9b:b2:2b:5e:19:21:71:d3:2f:d7:10:ee:04:
85:35:0f:f7:ea:c7:5d:e9:3b:67:50:92:8d:a7:12:
dd:f6:21:89:75:65:4e:29:39:8b:c6:37:35:3a:ec:
fa:1c:c2:18:6a:5a:f7:de:86:4b:ad:d2:c2:a7:dd:
0e:e8:09:2f:dd:e2:bc:54:41:d7:58:17:49:69:76:
da:80:42:72:43:d4:af:cd:81:fa:95:3f:97:09:0e:
aa:00:05:1d:ce:1d:47:7c:e6:cc:48:8b:1d:7a:69:
69:55:4c:a6:2b:87:76:5e:b5:a2:32:3d:9f:6c:56:
5b:fb:96:2b:df:f6:ba:8e:d6:08:47:2e:b5:7d:95:
19:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:BA:06:F1:EA:E1:F8:29:26:12:84:53:5B:9F:62:81:C8:39:4F:96
X509v3 Authority Key Identifier:
keyid:6F:84:6C:8C:0D:B6:5D:C7:46:EF:64:CF:D8:2B:B9:C1:94:E2:7F:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4RsjA22XcdG72TP2Cu5wZTif3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/groG8erh-CkmEoRTW59igcg5T5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/b4RsjA22XcdG72TP2Cu5wZTif3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.76.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:90:42:97:f6:8f:35:98:50:9f:a9:58:82:41:83:87:4d:4e:
b9:20:36:bc:65:01:56:57:d8:09:a8:b5:6a:fc:34:fd:c6:c3:
d0:89:a2:6f:f8:53:9e:2a:04:82:a5:ad:66:1d:29:51:ed:a6:
c1:2f:3e:12:81:1e:3e:bc:6e:b4:4d:4d:93:22:03:bc:55:d7:
56:c2:21:86:16:47:03:62:42:6d:7d:b5:b4:6f:42:2e:b2:e2:
c7:84:53:0f:ca:33:88:91:ac:2a:5e:d5:4f:fd:49:27:8d:29:
e4:2d:9d:24:e0:72:10:ea:22:ce:8e:c0:66:d8:58:e1:da:da:
34:9b:d3:fc:d9:5a:50:52:c3:4e:ed:e8:84:83:b9:c5:c6:f7:
c1:5f:f1:2f:b7:97:6f:62:d3:44:03:9a:96:12:91:e3:09:e1:
ea:9a:b8:c3:83:8a:e8:ec:5a:f3:48:9a:60:ca:12:24:f7:81:
5d:f1:9b:ad:3f:c1:98:96:8d:9a:49:40:87:f2:87:09:83:1a:
08:b2:ca:dd:0a:51:49:20:11:63:a7:0e:a7:c0:b8:a4:cd:90:
b1:9c:69:e3:0c:d1:cd:97:2b:67:7a:4f:be:eb:65:99:54:56:
a5:ac:23:7d:30:b5:15:d7:62:6c:06:6f:f0:d6:f2:85:b6:35:
93:f7:16:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:34 2024 by rpki-client on console-fra.rpki-client.org