Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/73e78e-45cf-45f0-82bf-39fd3ca76cd6/1/4hdzF_tdZ1telAInVZ-m5IGbOyc.roa
File: 4hdzF_tdZ1telAInVZ-m5IGbOyc.roa (raw, json)
Hash identifier: di0LC4oY3pyH9zBl3GBbBDCNQ7NjruhZ5g/7rVroQ94=
Subject key identifier: E2:17:73:17:FB:5D:67:5B:5E:94:02:27:55:9F:A6:E4:81:9B:3B:27
Certificate issuer: /CN=6dbddca0ab2ebe8b8529a7c9ce1dd6e8ea555c3d
Certificate serial: 02870B06
Authority key identifier: 6D:BD:DC:A0:AB:2E:BE:8B:85:29:A7:C9:CE:1D:D6:E8:EA:55:5C:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bb3coKsuvouFKafJzh3W6OpVXD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/73e78e-45cf-45f0-82bf-39fd3ca76cd6/1/4hdzF_tdZ1telAInVZ-m5IGbOyc.roa
Signing time: Sat 01 Jan 2022 05:01:12 +0000
ROA not before: Sat 01 Jan 2022 05:01:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211719
IP address blocks: 185.244.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42404614 (0x2870b06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dbddca0ab2ebe8b8529a7c9ce1dd6e8ea555c3d
Validity
Not Before: Jan 1 05:01:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2177317fb5d675b5e940227559fa6e4819b3b27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:13:a7:b6:75:ca:a8:e3:ed:ca:f0:4a:60:92:
57:ae:44:06:c9:25:a4:c2:5b:b5:db:01:40:0c:b5:
df:13:c1:cd:16:61:c3:45:9f:64:04:71:5a:29:cd:
14:4a:4d:31:ca:2d:40:9e:67:8f:05:43:99:4a:64:
a4:6a:ad:87:7c:84:9c:dd:8a:b0:97:26:4f:d8:7a:
df:3e:d9:4c:b9:10:45:1c:5f:20:7b:d9:c6:89:17:
72:77:df:42:fc:10:5f:15:60:40:c0:4b:1e:01:74:
39:ce:a2:5b:2b:70:41:03:87:4d:ae:ce:23:bf:06:
03:fa:31:6d:9d:d4:81:08:af:bb:4f:da:42:28:8f:
ce:aa:2d:6a:d4:b2:82:ee:36:a4:4e:d8:72:02:4f:
b2:c7:e5:b4:fc:96:c2:fd:72:6e:f3:38:81:53:6a:
2a:9f:36:f3:33:7a:12:3e:e2:a1:92:91:74:7c:f7:
b2:97:cf:76:92:e2:22:e9:38:ae:75:96:ef:f6:e0:
44:a8:a3:18:8e:2b:d4:88:60:8a:71:8f:e1:52:db:
e9:88:14:fe:a8:b7:1d:f1:b2:dd:c2:36:ad:63:6e:
52:da:40:dc:2f:5d:22:28:c5:73:04:c6:72:2a:04:
d2:50:50:14:4d:4d:b6:af:e3:60:14:84:64:c9:67:
a8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:17:73:17:FB:5D:67:5B:5E:94:02:27:55:9F:A6:E4:81:9B:3B:27
X509v3 Authority Key Identifier:
keyid:6D:BD:DC:A0:AB:2E:BE:8B:85:29:A7:C9:CE:1D:D6:E8:EA:55:5C:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb3coKsuvouFKafJzh3W6OpVXD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/73e78e-45cf-45f0-82bf-39fd3ca76cd6/1/4hdzF_tdZ1telAInVZ-m5IGbOyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/73e78e-45cf-45f0-82bf-39fd3ca76cd6/1/bb3coKsuvouFKafJzh3W6OpVXD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.227.0/24
Signature Algorithm: sha256WithRSAEncryption
34:ce:57:04:32:f5:40:0f:87:67:e6:3e:1f:5a:99:7c:34:94:
79:02:92:83:e6:72:ba:f6:70:2a:1a:6b:93:bf:ac:37:0e:e9:
b4:21:7d:b6:c8:c3:a8:fc:fd:21:08:9b:d2:23:c8:bd:88:5d:
39:46:cc:4c:6a:d7:db:9d:63:41:42:33:b2:48:fe:d0:5f:79:
64:ed:b4:3f:e3:5e:c0:2e:ad:ce:8f:0a:a6:e1:9b:58:dc:0d:
85:93:b8:12:df:68:3e:15:53:14:4b:8a:5b:db:74:31:58:00:
55:76:c8:df:90:4f:99:de:cd:2b:27:da:93:34:97:6a:56:83:
7d:37:53:f9:f2:33:6a:02:8f:1e:26:10:4a:a4:e9:40:f0:da:
1a:7e:6c:ee:8a:47:cb:de:94:e9:75:70:cc:c0:a9:50:79:87:
41:11:51:4f:e9:77:7f:3d:86:fa:e6:98:3f:ef:f3:2a:e5:b9:
73:14:86:e7:22:13:84:e2:91:0c:0d:1c:aa:63:8c:59:8a:d7:
88:5d:6c:6f:3d:71:d0:a5:f0:ed:1b:d6:ca:a3:82:d7:8d:92:
a1:c3:74:d7:90:16:9a:e5:1f:b2:13:77:08:d3:32:dc:51:d9:
85:94:fb:52:2d:98:fe:80:6b:72:c5:b5:35:e4:3d:41:88:fd:
a0:b2:ea:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:51 2024 by rpki-client on console-fra.rpki-client.org