Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Cr5dkGs9FFdp5XV4Ixk2wZ9cOmA.roa
File: Cr5dkGs9FFdp5XV4Ixk2wZ9cOmA.roa (raw, json)
Hash identifier: 8wh7tEz9wDWVCLpm04VP2plqdkgEaDxp5CB5bIGtoN0=
Subject key identifier: 0A:BE:5D:90:6B:3D:14:57:69:E5:75:78:23:19:36:C1:9F:5C:3A:60
Certificate issuer: /CN=43af2e987d2b63addaa5adc178f31e90d876aaa7
Certificate serial: 1AD96BF4
Authority key identifier: 43:AF:2E:98:7D:2B:63:AD:DA:A5:AD:C1:78:F3:1E:90:D8:76:AA:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q68umH0rY63apa3BePMekNh2qqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Cr5dkGs9FFdp5XV4Ixk2wZ9cOmA.roa
Signing time: Sat 01 Jan 2022 13:02:38 +0000
ROA not before: Sat 01 Jan 2022 13:02:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48728
IP address blocks: 185.2.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 450456564 (0x1ad96bf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43af2e987d2b63addaa5adc178f31e90d876aaa7
Validity
Not Before: Jan 1 13:02:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0abe5d906b3d145769e57578231936c19f5c3a60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:74:e0:c9:47:10:0c:74:c6:6b:60:2b:19:37:
18:a4:ef:5b:c0:38:fc:30:48:8e:76:4b:71:db:34:
a6:7d:5e:bd:55:8b:3a:3b:fd:7e:b7:91:62:1f:d5:
7c:01:46:ad:9a:d7:98:6c:f3:8e:7e:02:90:ca:d1:
ff:fa:b7:47:ef:ae:dd:cf:74:7c:a1:70:31:99:64:
55:f1:e8:9b:f6:f0:30:a2:7e:b0:78:13:60:02:21:
f9:5f:93:31:72:7e:0c:16:44:93:75:02:f3:c6:2c:
6f:78:76:66:1a:fe:a2:a2:85:2e:ed:7b:43:d7:6f:
e7:a9:8b:9b:b4:42:89:d7:9e:39:5d:09:00:d9:a7:
d0:76:c0:de:0f:cb:0b:7c:89:c5:10:d9:1d:f5:5d:
0e:f2:f2:22:91:f7:e9:f5:cc:ad:1e:ca:14:22:e3:
ce:e0:93:64:4d:ee:a9:ad:e5:f6:ee:87:03:5e:02:
2f:14:d0:b0:fe:1c:69:ed:28:b7:72:81:6a:22:41:
ca:0c:08:9b:de:f5:96:43:cd:c7:50:a3:d3:68:19:
24:45:5e:bc:3d:3d:93:57:b2:7b:20:7d:5d:27:a5:
6e:17:a3:79:f7:cf:52:b6:4f:09:34:f4:ff:49:a8:
23:4e:ed:55:b2:c2:5f:4a:82:ce:6a:0c:59:c5:0f:
5f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:BE:5D:90:6B:3D:14:57:69:E5:75:78:23:19:36:C1:9F:5C:3A:60
X509v3 Authority Key Identifier:
keyid:43:AF:2E:98:7D:2B:63:AD:DA:A5:AD:C1:78:F3:1E:90:D8:76:AA:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q68umH0rY63apa3BePMekNh2qqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Cr5dkGs9FFdp5XV4Ixk2wZ9cOmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Q68umH0rY63apa3BePMekNh2qqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.246.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:79:65:d3:ba:48:16:32:9e:ae:cf:43:ed:11:de:1f:11:79:
e9:f8:2b:52:3f:f4:ba:e0:68:7c:1a:3e:83:49:94:77:bf:68:
a6:6b:50:b3:94:53:60:5c:d0:33:81:ec:47:e8:cb:af:8f:55:
d1:98:97:ed:f4:b6:de:bd:18:7e:08:be:8c:05:bf:3c:36:ee:
e6:55:99:ed:41:4e:53:b2:2a:e7:50:83:53:04:23:15:da:42:
e7:f6:da:77:a7:88:7f:66:f4:bf:5e:a6:e6:0f:96:8d:3d:b2:
ee:44:9b:8e:51:c2:4e:1b:02:9e:8a:02:e9:06:4d:2c:3b:4b:
39:a9:08:a6:1a:9d:a1:df:a3:a4:7b:e5:77:d0:16:49:ef:d7:
da:21:96:38:af:7e:a1:74:fa:51:9a:92:b0:68:32:5c:83:29:
46:89:f1:2e:b5:17:4b:a1:48:a8:22:7f:a4:f5:f5:99:58:0a:
54:51:0c:af:ea:64:99:25:13:3f:a5:38:c4:2d:47:ba:08:16:
6c:f8:e0:10:aa:84:b2:03:9e:80:79:30:48:c5:d4:9d:0e:8d:
87:a6:4d:78:cf:a1:4b:8b:87:ac:d0:01:d4:fe:69:ab:32:a0:
97:da:4a:d0:b6:1a:2c:cd:91:e2:ac:a0:90:7b:0c:da:ff:fd:
ba:0c:ce:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:30 2024 by rpki-client on console-fra.rpki-client.org