Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/L3g55RyOn8K4Yi9ONGPJN4OG-O8.roa
File: L3g55RyOn8K4Yi9ONGPJN4OG-O8.roa (raw, json)
Hash identifier: IZNP2oGoDdhoovgOq7Ia8gLxSFNlsso6DRFWJfxEsjY=
Subject key identifier: 2F:78:39:E5:1C:8E:9F:C2:B8:62:2F:4E:34:63:C9:37:83:86:F8:EF
Certificate issuer: /CN=a2900e4655ab349a4632b140719dc97230431725
Certificate serial: 0D597FA3
Authority key identifier: A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/L3g55RyOn8K4Yi9ONGPJN4OG-O8.roa
Signing time: Sat 01 Jan 2022 05:55:24 +0000
ROA not before: Sat 01 Jan 2022 05:55:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210135
IP address blocks: 185.221.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223969187 (0xd597fa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2900e4655ab349a4632b140719dc97230431725
Validity
Not Before: Jan 1 05:55:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f7839e51c8e9fc2b8622f4e3463c9378386f8ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0d:90:4a:a4:c2:61:7a:f1:32:df:15:c3:22:
45:e8:51:76:1f:fe:cd:de:f0:fd:b5:af:31:82:93:
bf:00:76:29:7d:3e:62:89:ae:9e:cd:2b:a5:7e:5f:
c5:d2:e3:be:a1:8e:e3:d0:f3:fd:20:b3:14:de:cc:
b4:62:05:f9:18:f5:c2:17:38:78:bd:8c:a9:52:0c:
15:a7:32:e7:44:77:ec:9b:d8:eb:15:96:2e:93:5c:
ea:1b:26:d1:ff:70:64:00:14:c2:1c:d2:a9:da:68:
0f:31:b9:2d:3f:eb:c4:aa:6f:ba:22:0c:aa:90:ad:
0a:68:41:6b:98:c8:00:e8:53:99:6a:e6:c9:9a:9c:
6e:94:ba:0f:d9:68:fb:41:5d:c5:60:db:1a:35:0d:
4a:a4:73:8c:8a:4b:2c:e1:63:af:71:b8:5e:ff:4b:
7c:82:d5:30:61:84:9f:9a:b4:f3:70:3e:51:1a:ec:
9b:c9:c5:d0:e6:1e:41:c8:11:8a:d1:2c:c3:5b:4f:
b6:96:8c:ff:82:61:f7:00:64:94:37:8f:f1:ef:34:
9c:ce:50:87:2d:ef:a0:ff:d1:ac:59:01:f1:ea:09:
6a:38:77:79:91:38:b2:07:b3:bf:54:57:b5:f4:2a:
d4:59:d7:ae:5f:37:20:59:2c:5c:65:1a:08:a8:56:
89:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:78:39:E5:1C:8E:9F:C2:B8:62:2F:4E:34:63:C9:37:83:86:F8:EF
X509v3 Authority Key Identifier:
keyid:A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/L3g55RyOn8K4Yi9ONGPJN4OG-O8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/opAORlWrNJpGMrFAcZ3JcjBDFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.44.0/24
Signature Algorithm: sha256WithRSAEncryption
17:90:3e:12:ca:c2:5c:ae:99:c1:1e:38:48:24:f5:4c:a4:da:
27:7c:03:d9:ef:4c:82:17:ec:dd:b0:2c:1d:20:63:1a:d2:57:
b4:76:f1:d7:99:e6:9d:cf:3e:71:73:4c:66:57:07:0f:25:7d:
b2:ff:39:14:56:2a:77:9a:31:f7:da:e2:8f:e7:7d:21:b5:c6:
06:55:55:d0:e0:39:6c:ba:79:22:9b:b0:39:2d:39:9c:aa:44:
15:b3:dc:23:a2:91:5e:31:5b:6a:e0:61:43:69:b9:d1:29:45:
80:85:95:2a:86:20:84:7f:91:53:fd:12:d2:0f:1a:f0:1a:08:
db:50:be:08:cf:00:f7:af:b7:a4:2d:b7:61:a2:a1:79:11:1a:
22:3e:13:80:3e:7d:03:23:14:8b:96:16:64:33:7e:27:d1:94:
01:f7:f3:a0:68:91:58:60:e1:ca:3e:d7:ca:1e:ae:c4:af:5f:
4a:04:2f:ff:d3:e9:0f:60:82:ee:6d:46:16:ef:62:19:10:45:
a1:5a:50:06:6a:18:47:62:e3:70:e1:b8:f6:d1:5d:4f:32:f3:
3e:f5:af:73:09:9a:ca:10:9f:e7:38:de:fe:fd:85:83:23:f6:
4b:9f:69:b3:06:3a:84:24:c9:fd:6b:74:94:8b:0e:23:06:a5:
5a:ce:f1:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:54 2024 by rpki-client on console-ams.rpki-client.org