Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/Tr7HZUs0NoTUEIJnVLdLetvO3jU.roa
File: Tr7HZUs0NoTUEIJnVLdLetvO3jU.roa (raw, json)
Hash identifier: hu5VD6KNSO9lDTsTDUTyzrPrQu6z1PCB2tyoqFCz5MU=
Subject key identifier: 4E:BE:C7:65:4B:34:36:84:D4:10:82:67:54:B7:4B:7A:DB:CE:DE:35
Certificate issuer: /CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Certificate serial: 1241F149
Authority key identifier: CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/Tr7HZUs0NoTUEIJnVLdLetvO3jU.roa
Signing time: Sat 01 Jan 2022 05:58:56 +0000
ROA not before: Sat 01 Jan 2022 05:58:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204639
IP address blocks: 185.44.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 306311497 (0x1241f149)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Validity
Not Before: Jan 1 05:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ebec7654b343684d410826754b74b7adbcede35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ec:18:c4:6a:24:ac:cf:6a:3b:90:de:cd:f4:
2b:f3:72:03:78:c6:a2:92:ff:c0:92:a8:8e:41:fc:
3c:28:dc:65:b0:a9:fe:6a:a9:6a:8f:c8:ef:c1:07:
d3:82:2a:29:a4:d5:fc:10:4f:30:5a:85:03:c0:b4:
5a:80:06:29:b6:89:fb:57:79:c0:6d:79:2f:47:ea:
08:eb:c8:1e:15:d7:a9:0e:d3:42:3e:fe:69:d2:a2:
da:51:79:2b:e0:43:f8:b8:17:82:4d:f8:45:fd:e0:
02:90:b2:70:bf:ad:f2:0d:43:f1:c7:8e:95:07:ae:
24:d5:91:d3:dc:96:6f:85:f4:ae:1f:e3:cd:8a:5f:
e3:80:1d:b8:3f:bd:d9:54:20:81:71:7d:ed:f3:69:
cd:08:08:3d:95:91:55:44:2a:2a:6f:93:12:d8:e6:
6f:cc:95:cd:74:9f:35:82:6f:0f:af:49:11:cb:fe:
c9:63:6e:51:b2:4b:2b:3f:5a:99:d3:c7:00:5f:30:
a3:fb:cb:b3:a0:e9:d4:96:b5:18:5d:aa:24:0e:5b:
3d:a7:4b:14:fc:6b:79:a5:c2:34:48:82:8a:23:43:
6f:f1:c7:4d:dc:5c:d9:58:90:e2:0b:c8:ff:36:cc:
9f:39:ae:49:c8:72:5c:e7:bc:d7:c9:91:19:00:d3:
a7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:BE:C7:65:4B:34:36:84:D4:10:82:67:54:B7:4B:7A:DB:CE:DE:35
X509v3 Authority Key Identifier:
keyid:CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/Tr7HZUs0NoTUEIJnVLdLetvO3jU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/y5UvnDOcq9FCNNAMhKJS1-xxoqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.118.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:43:16:2a:23:98:bd:28:d2:b8:58:4d:57:7c:6e:a8:96:22:
68:64:c0:c5:37:2f:8d:de:64:ae:b9:ba:be:01:4e:3e:67:34:
ee:36:22:df:2a:d9:9f:14:10:b2:a4:98:ae:e6:9d:50:1f:6a:
09:ee:9f:8d:8a:cb:a8:ff:c2:3a:a7:18:7b:3f:a6:13:a7:0d:
93:55:2d:f3:2b:72:5f:b7:31:a4:2e:ce:eb:2a:44:9b:c6:a4:
21:fa:46:77:96:32:39:a3:6d:25:d4:a5:20:74:31:18:22:79:
39:f4:0b:e1:95:36:19:60:f5:40:16:b3:4b:c1:c4:49:79:8e:
9c:ef:97:24:fd:5d:81:60:1f:2b:04:7a:be:a0:50:fa:f4:64:
0f:6c:63:3e:b0:f3:21:08:66:33:ed:b3:5e:1c:2a:3d:45:78:
ea:dc:96:c0:11:4b:d0:fa:e5:90:9f:72:12:4f:c0:68:07:e5:
05:85:fd:e1:38:ef:f6:47:2b:3c:35:c6:a7:e6:f6:05:a1:05:
81:2c:32:13:00:ae:5c:20:d8:4b:2e:b0:19:59:da:ce:90:f1:
a4:ed:8b:d0:fe:c4:00:c2:16:55:9b:fa:5f:6e:14:92:e7:dc:
2e:4f:01:97:5b:14:14:0e:25:f0:03:83:a6:94:5d:cb:ec:a3:
37:69:25:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:41 2024 by rpki-client on console-ams.rpki-client.org