Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/V3kzzO7DVB8t0sJkMVYdRXWoRrA.roa
File: V3kzzO7DVB8t0sJkMVYdRXWoRrA.roa (raw, json)
Hash identifier: YH/wu0EsHClaFFo603ihtlbKtTZroQuwUsBHvdXiKJQ=
Subject key identifier: 57:79:33:CC:EE:C3:54:1F:2D:D2:C2:64:31:56:1D:45:75:A8:46:B0
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 018291A633A141862E0068CEAD11F1A4C5D8
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/V3kzzO7DVB8t0sJkMVYdRXWoRrA.roa
Signing time: Fri 12 Aug 2022 10:42:44 +0000
ROA not before: Fri 12 Aug 2022 10:42:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 185.155.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:91:a6:33:a1:41:86:2e:00:68:ce:ad:11:f1:a4:c5:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: Aug 12 10:42:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=577933cceec3541f2dd2c26431561d4575a846b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:02:7d:97:49:ba:a2:0a:e2:82:47:67:64:a1:
84:47:5f:9c:72:fa:d3:a0:b2:2f:59:d6:56:0d:69:
9e:0e:0e:cd:81:92:04:38:20:2a:3b:70:76:d3:29:
fc:e2:00:2b:32:d4:73:35:a9:0f:25:11:82:e9:7a:
59:2e:c0:6b:14:a6:c4:97:c4:f3:a9:fb:88:f6:27:
a2:ec:f2:e6:a9:f3:ea:71:09:da:e4:55:ce:49:dd:
d1:6c:56:06:c9:c7:4f:96:48:66:ff:66:c7:cd:5e:
7d:3e:cc:d0:0c:3d:4d:a6:2d:d2:26:f9:62:ce:84:
7f:df:0b:25:12:7a:88:4a:85:87:d4:f9:49:1d:a5:
0c:3d:4a:09:d9:5c:67:d4:0c:f6:21:8a:e0:ea:d4:
32:82:54:d0:3d:6c:a6:78:d0:13:2d:96:fa:58:9e:
35:05:0d:ec:e6:bf:a1:5c:b5:66:c0:15:0c:73:dd:
1c:f3:b6:45:41:1c:ae:86:d2:2c:43:06:bd:fb:e3:
3f:00:86:8b:7f:b0:3a:0c:87:1e:98:35:0e:e8:e4:
86:b3:dd:4f:e7:47:a8:57:c4:5d:14:0a:cb:ba:0c:
da:b1:fe:2f:4b:6d:66:9c:83:a9:73:06:bf:b3:bc:
52:b3:32:6f:81:9e:36:0e:9b:6a:52:61:18:83:2e:
d7:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:79:33:CC:EE:C3:54:1F:2D:D2:C2:64:31:56:1D:45:75:A8:46:B0
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/V3kzzO7DVB8t0sJkMVYdRXWoRrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.232.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:df:70:03:4b:22:d1:04:84:64:28:7b:2c:d0:08:7c:e6:eb:
f2:42:2a:84:45:8d:2e:be:f5:03:a6:48:79:12:10:81:7b:28:
35:11:f1:29:af:4a:28:1e:dd:e2:96:04:73:f9:1b:34:81:0f:
a7:d3:3f:95:d3:34:8b:00:ce:4e:8d:3e:8e:2c:6b:4c:ed:28:
3c:97:72:79:f8:4e:b3:a0:9a:67:f1:b5:d5:55:67:33:1b:c5:
de:ac:d0:f1:ca:52:9a:3b:d0:08:95:2e:42:07:af:96:9d:8b:
ec:aa:dc:cc:4e:0a:a1:c7:49:ce:1a:c5:14:b3:86:b5:ac:1a:
e8:90:8e:19:89:c8:65:30:ac:d2:3e:15:5e:d3:2c:51:21:92:
74:31:86:73:71:e2:3a:2b:3f:d7:6e:81:f7:fb:15:6f:5d:4d:
34:fa:63:89:88:17:59:ba:7e:88:fa:d0:c1:b4:ad:4c:ee:df:
b6:63:93:59:b7:8e:6f:ee:2c:6c:36:c8:3a:8e:28:56:c9:ab:
8c:8c:ad:ce:4d:41:20:f0:aa:f6:18:93:64:5b:f2:22:68:ce:
ec:a7:40:37:07:ac:55:67:8a:d3:51:03:0b:e9:90:4b:1a:b2:
6d:7c:39:7f:fb:b1:71:c0:7b:df:98:71:60:8a:a9:19:ad:87:
80:fd:a0:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:51 2024 by rpki-client on console-fra.rpki-client.org