Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/id0F4QKBOiwWhjkEAoX5UB8AI7s.roa
File: id0F4QKBOiwWhjkEAoX5UB8AI7s.roa (raw, json)
Hash identifier: RFFKKtydrlcldvHbnRKpyVyUAuImI2QRwcwaKtkwKv8=
Subject key identifier: 89:DD:05:E1:02:81:3A:2C:16:86:39:04:02:85:F9:50:1F:00:23:BB
Certificate issuer: /CN=68b22eea4a4a3b81654a227eda94e0e75937b015
Certificate serial: 03FB23F4
Authority key identifier: 68:B2:2E:EA:4A:4A:3B:81:65:4A:22:7E:DA:94:E0:E7:59:37:B0:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLIu6kpKO4FlSiJ-2pTg51k3sBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/id0F4QKBOiwWhjkEAoX5UB8AI7s.roa
Signing time: Tue 10 May 2022 13:52:02 +0000
ROA not before: Tue 10 May 2022 13:52:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208972
IP address blocks: 185.252.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66790388 (0x3fb23f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b22eea4a4a3b81654a227eda94e0e75937b015
Validity
Not Before: May 10 13:52:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89dd05e102813a2c168639040285f9501f0023bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c1:46:46:37:55:32:10:65:26:03:35:0c:e1:
04:7e:ed:14:10:5b:fb:a1:03:3a:dc:b6:db:14:58:
e2:72:02:fa:97:4d:a1:0c:6b:a4:71:9b:ce:d7:4a:
0d:3d:6c:d3:07:7e:7f:ea:8e:b4:5d:cb:b4:69:65:
18:90:f6:eb:df:ff:33:3d:41:f7:ab:24:e5:99:49:
be:18:4e:21:80:39:12:77:02:f6:b0:e5:4a:84:87:
d4:36:c3:4e:a4:d2:14:39:c9:33:86:f5:cc:ca:a6:
af:9e:87:66:17:53:74:f5:3a:46:8c:5a:9f:65:ee:
9f:79:c8:02:dc:14:0a:ac:96:66:51:ce:bb:04:0e:
6e:3a:5d:9f:17:62:98:dc:1a:56:e0:00:03:0a:ce:
67:44:fd:8c:a3:33:ff:4c:3e:90:cf:70:6c:a1:c0:
4c:3f:eb:83:e1:dd:cd:24:c6:d0:bc:e4:19:a6:4d:
2e:6e:30:1c:0f:32:12:b1:b6:12:2f:e0:c9:80:2a:
43:99:53:07:d0:4e:3c:05:ea:7b:f6:26:16:77:44:
e4:18:a8:14:a4:4c:a6:47:90:0e:7a:48:11:df:d2:
0d:db:71:d0:fe:3a:07:f1:2b:3b:39:ab:85:fa:29:
c5:09:49:d7:52:a5:0e:96:77:f6:92:b6:b1:af:04:
e3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:DD:05:E1:02:81:3A:2C:16:86:39:04:02:85:F9:50:1F:00:23:BB
X509v3 Authority Key Identifier:
keyid:68:B2:2E:EA:4A:4A:3B:81:65:4A:22:7E:DA:94:E0:E7:59:37:B0:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLIu6kpKO4FlSiJ-2pTg51k3sBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/id0F4QKBOiwWhjkEAoX5UB8AI7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/aLIu6kpKO4FlSiJ-2pTg51k3sBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.114.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:79:7f:a4:01:b2:b9:eb:86:82:24:cf:c2:12:f2:79:9c:ac:
f7:35:1e:26:2b:c8:4d:ef:4e:ee:4f:ed:fe:72:3c:4b:79:d3:
f9:19:5d:80:02:2b:29:4c:83:65:0b:07:9c:fd:9b:5c:11:49:
bf:f5:90:d3:51:b0:7a:56:65:2d:18:9c:bc:95:3e:9d:9d:35:
11:db:da:f5:05:6f:e4:f6:66:80:b9:44:62:a6:79:16:d5:01:
f9:8b:62:ae:d7:c0:c6:0f:b5:55:12:6c:f2:a3:34:d9:d5:f2:
1b:75:4e:08:16:17:f2:6d:8f:82:51:d6:52:75:62:e6:06:1b:
b9:11:5f:92:73:4e:4e:ee:3c:b9:96:ae:e7:84:93:56:73:3e:
d2:a5:3b:75:49:70:2f:36:3d:7c:5b:99:46:bd:eb:3b:71:d4:
2a:04:f2:14:d5:26:75:b5:57:cf:9a:5f:3b:2a:0e:cb:3c:54:
88:8f:65:f1:20:d0:9d:47:0b:15:e7:4b:89:8e:2a:47:17:1a:
c5:af:af:7d:9e:44:9f:2d:bc:8a:06:02:57:ad:aa:f7:2b:66:
65:44:1f:a0:d4:ad:aa:61:6f:2f:15:70:b8:a2:8f:5e:c8:a3:
d1:87:b8:a4:92:ea:e6:f8:a3:e0:0e:7c:55:13:5e:d9:29:08:
f8:ec:19:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:50 2024 by rpki-client on console-fra.rpki-client.org