Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0HCH7nPYoUY0ltl97cdbrwO6Kl0.roa
File: 0HCH7nPYoUY0ltl97cdbrwO6Kl0.roa (raw, json)
Hash identifier: hm8DR1fGO1gEppW49UTJ0IvcMOdhHPBWgE981p//FC8=
Subject key identifier: D0:70:87:EE:73:D8:A1:46:34:96:D9:7D:ED:C7:5B:AF:03:BA:2A:5D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01820CDDF9AD2BA1F4E81AF1DF76E18EC864
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0HCH7nPYoUY0ltl97cdbrwO6Kl0.roa
Signing time: Sun 17 Jul 2022 15:54:10 +0000
ROA not before: Sun 17 Jul 2022 15:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 185.234.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:0c:dd:f9:ad:2b:a1:f4:e8:1a:f1:df:76:e1:8e:c8:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 17 15:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d07087ee73d8a1463496d97dedc75baf03ba2a5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:49:00:0b:45:a5:04:95:3b:1d:2d:6b:bc:5b:
d7:d8:6f:2c:ba:4a:ea:05:9c:a7:02:f5:73:ab:9e:
93:39:31:b9:83:ba:e1:54:c2:36:52:8d:c7:06:cd:
a5:de:29:6f:74:7f:e6:b8:53:59:72:62:22:3a:ce:
de:47:10:6d:78:0f:f9:8c:c7:ec:c9:d9:bc:a5:07:
a3:31:19:52:db:80:bd:8b:52:30:7c:55:ad:bc:ff:
68:b2:97:87:41:d4:55:5c:87:21:94:f9:62:90:2e:
02:f5:1b:e4:24:fe:b7:19:6f:67:b0:4f:3b:32:60:
38:4b:31:d8:eb:95:86:02:d8:d7:e9:1a:bd:79:6e:
20:4d:aa:49:28:01:1a:90:b9:ee:0f:fb:ac:fd:17:
b5:a5:da:11:c6:74:29:36:85:a4:1f:bc:ce:35:f7:
91:20:eb:71:4e:61:93:81:40:84:15:6f:32:ff:15:
25:f3:1a:63:ce:21:35:d5:ab:98:47:2a:3f:96:e6:
6a:39:76:38:c9:63:e3:25:fb:cb:d0:44:53:35:aa:
7f:7b:3f:ac:9a:91:53:6a:34:22:67:f9:c0:3d:b6:
13:87:99:cc:7a:f0:52:90:d0:f8:37:5d:2c:07:4f:
79:17:63:77:82:c4:1d:32:fe:db:7f:fb:9f:4b:d5:
20:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:70:87:EE:73:D8:A1:46:34:96:D9:7D:ED:C7:5B:AF:03:BA:2A:5D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0HCH7nPYoUY0ltl97cdbrwO6Kl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.21.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:b6:8a:c8:53:f8:1b:35:dd:0a:3b:12:2c:38:01:e7:b7:21:
61:54:24:0b:b9:77:bb:fc:94:9e:12:7a:79:1b:59:8d:15:5b:
f0:a7:53:ff:96:cf:a4:9f:5b:e3:af:14:a0:e9:8d:d5:80:68:
95:e1:98:e0:9a:d9:a1:47:1e:97:40:a4:ed:1e:1c:2d:74:4f:
b6:11:cf:55:ea:d5:e0:8c:76:60:a6:a6:3d:22:2d:4c:8b:7d:
e7:51:03:bd:8a:d6:2e:f8:0d:5e:cb:2d:d0:a1:d2:b4:ee:d9:
85:92:5b:49:d5:1b:f2:4c:dc:c5:fc:d4:86:da:8e:fa:26:35:
e5:5e:fa:44:53:ee:38:36:7b:df:af:e0:d5:99:49:c9:93:9e:
09:97:0d:ed:07:a6:ae:83:98:77:09:75:18:01:23:c8:a1:1b:
d8:58:6b:39:fe:b1:5a:91:7e:e3:4d:13:40:93:e7:e7:97:0d:
96:4c:80:c9:30:a5:26:86:6c:6a:f0:ad:01:85:ec:10:b3:06:
0a:db:29:b5:24:0d:ad:a3:a8:9e:27:4d:28:af:40:ea:38:68:
fe:89:ee:01:96:e6:90:82:9b:da:ff:c7:46:eb:cc:8d:d3:e6:
00:51:97:5e:12:0a:92:04:55:eb:2e:3c:7b:33:fa:83:84:22:
5a:05:16:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:39 2024 by rpki-client on console-fra.rpki-client.org