Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/hVu9SVx30RmltQMKOO-w2Kbwoog.roa
File: hVu9SVx30RmltQMKOO-w2Kbwoog.roa (raw, json)
Hash identifier: 33MUfo0cpK4HDCRmQuF3z3AwS4f7OrxozcuP3Txr9sY=
Subject key identifier: 85:5B:BD:49:5C:77:D1:19:A5:B5:03:0A:38:EF:B0:D8:A6:F0:A2:88
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 03653163
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/hVu9SVx30RmltQMKOO-w2Kbwoog.roa
Signing time: Tue 12 Apr 2022 15:36:49 +0000
ROA not before: Tue 12 Apr 2022 15:36:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59631
IP address blocks: 185.83.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56963427 (0x3653163)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Apr 12 15:36:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=855bbd495c77d119a5b5030a38efb0d8a6f0a288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3c:df:da:1f:cd:f3:ff:a3:81:85:2c:d9:ef:
26:90:fe:e2:5c:a7:f1:e5:bd:2e:0e:23:60:b6:47:
a7:32:c8:a3:a1:92:cc:ee:77:41:e4:36:0e:63:bb:
cf:be:b7:5d:0c:8f:0c:5d:56:8e:ad:7b:82:de:7d:
81:84:7b:9b:3e:14:a1:bb:b3:17:2d:17:4c:ca:26:
59:46:44:71:2b:a8:c0:98:2c:a4:6c:b0:19:f1:66:
cf:5c:7b:32:d6:88:c0:ac:7f:be:f0:fa:29:17:51:
2c:30:57:52:23:58:ff:79:dd:90:ce:eb:eb:c3:a0:
69:ef:e9:a9:48:2a:80:e0:2c:58:c9:f8:68:1d:03:
f9:ca:be:4d:b0:dd:ac:c1:aa:f6:ed:62:01:da:29:
98:3d:d6:f3:a8:5c:99:27:e0:49:02:0f:ad:41:a2:
ed:b4:8f:0f:47:e1:ad:1e:b0:5d:92:63:a3:c1:53:
56:d4:2d:78:dd:13:fb:8a:56:19:5d:85:c4:3f:ed:
a4:1c:eb:93:3e:88:af:cb:f5:30:61:aa:07:cd:5d:
74:9b:81:bc:da:7e:3f:ff:99:9c:5d:22:19:ce:74:
f2:4c:1a:32:e1:38:0e:50:b2:91:f8:72:47:de:6a:
7a:de:b6:39:41:7b:3a:51:fc:74:22:ed:87:b3:f2:
dd:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:5B:BD:49:5C:77:D1:19:A5:B5:03:0A:38:EF:B0:D8:A6:F0:A2:88
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/hVu9SVx30RmltQMKOO-w2Kbwoog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.104.0/22
Signature Algorithm: sha256WithRSAEncryption
87:a9:98:c5:4a:3c:1e:0d:0d:9b:23:0b:49:e2:99:4f:71:04:
84:1f:99:b7:84:01:a5:cb:3a:d1:38:3f:09:40:44:6c:cb:a8:
65:2c:aa:03:2a:8b:87:8e:6d:6e:e3:a5:dc:b9:62:1e:6f:fc:
8b:08:fa:69:06:9f:ae:ea:98:f1:89:1e:3f:c9:33:31:72:c6:
22:ee:5a:63:5e:df:8b:8b:80:96:1b:23:ba:ba:6a:d8:f7:b8:
6e:f6:b4:90:41:48:42:41:c8:4f:6e:44:94:93:d9:05:1c:5c:
6f:fa:c3:e3:60:a0:2a:45:5d:60:17:0e:8d:4c:78:c8:d6:72:
26:00:7f:60:04:7c:79:93:69:a2:2a:4a:2e:7f:31:7d:55:a6:
82:dc:b8:97:cf:68:83:11:01:f6:18:91:be:64:2f:d6:4f:7c:
55:97:b1:cc:b1:b0:bd:a7:af:6d:25:4d:07:96:65:e8:05:54:
8d:c6:d9:fd:6a:80:bc:78:50:ad:ee:bd:f4:96:ac:41:fb:a3:
db:34:fe:50:eb:c3:bf:45:8b:c1:ab:e3:a2:55:4c:46:ae:74:
02:de:af:27:a1:5b:1f:08:c7:08:e1:6d:c8:2e:6a:55:73:57:
b7:83:10:d6:f2:10:b6:95:62:9e:ab:35:8c:dc:23:ea:83:38:
a5:8b:2b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org