Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/H_8ngfMYGIuD1vft5QqdThAHshc.roa
File: H_8ngfMYGIuD1vft5QqdThAHshc.roa (raw, json)
Hash identifier: BwJ6dRhwgd1IsXAxkB2GoaxtpLqzeAZ/Z2eJARvK918=
Subject key identifier: 1F:FF:27:81:F3:18:18:8B:83:D6:F7:ED:E5:0A:9D:4E:10:07:B2:17
Certificate issuer: /CN=75c88b1c41fbeb5dabef743c57acdffc4fa74699
Certificate serial: 01CA2A72
Authority key identifier: 75:C8:8B:1C:41:FB:EB:5D:AB:EF:74:3C:57:AC:DF:FC:4F:A7:46:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dciLHEH7612r73Q8V6zf_E-nRpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/H_8ngfMYGIuD1vft5QqdThAHshc.roa
Signing time: Sat 01 Jan 2022 11:05:09 +0000
ROA not before: Sat 01 Jan 2022 11:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211694
IP address blocks: 185.244.237.0/24 maxlen: 24
2a10:a240::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30026354 (0x1ca2a72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75c88b1c41fbeb5dabef743c57acdffc4fa74699
Validity
Not Before: Jan 1 11:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fff2781f318188b83d6f7ede50a9d4e1007b217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f8:88:c6:fc:de:d4:ca:95:3b:4f:e5:75:43:
6b:ee:03:3b:3e:5d:99:ab:6a:3f:8a:49:37:38:9f:
c9:aa:60:a7:ee:93:e6:e6:cc:a3:9b:6e:29:bf:c6:
ad:4b:89:d9:3d:37:54:0a:b2:ac:3a:ee:52:2d:84:
b5:81:73:06:7c:96:1e:53:8d:09:4d:07:73:af:df:
c8:eb:43:0a:05:94:62:28:f7:62:8a:15:1e:56:44:
96:ef:8e:1c:0f:b1:e3:15:62:5d:41:82:68:99:6d:
40:79:5b:f3:69:85:b9:6e:03:5a:0e:72:3f:a5:8e:
f4:9d:ba:dc:ff:7c:46:a9:fc:e4:43:5e:8e:78:0e:
40:fe:8f:f8:4c:2f:b8:a9:9e:6d:56:2f:a0:a3:0c:
e7:77:46:29:cf:2a:e0:7e:51:a3:89:f2:b1:c4:30:
05:1d:8f:61:0e:75:e4:22:17:0a:05:54:ed:b9:a3:
49:ac:24:fa:6d:83:cf:d4:0f:12:61:ca:9d:6e:d4:
45:6c:4a:9a:ea:d0:89:a6:b3:ab:77:d5:f6:14:60:
e0:0d:26:f8:69:71:b8:ef:c4:a7:ab:8e:c6:74:ad:
55:d0:fa:19:92:3a:4c:c7:39:0d:18:39:19:ef:ad:
c8:b4:74:b7:e8:06:4f:24:ce:a8:55:42:b6:54:81:
31:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:FF:27:81:F3:18:18:8B:83:D6:F7:ED:E5:0A:9D:4E:10:07:B2:17
X509v3 Authority Key Identifier:
keyid:75:C8:8B:1C:41:FB:EB:5D:AB:EF:74:3C:57:AC:DF:FC:4F:A7:46:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dciLHEH7612r73Q8V6zf_E-nRpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/H_8ngfMYGIuD1vft5QqdThAHshc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/dciLHEH7612r73Q8V6zf_E-nRpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.237.0/24
IPv6:
2a10:a240::/29
Signature Algorithm: sha256WithRSAEncryption
aa:45:83:2f:6a:ff:49:59:20:00:93:b9:44:a6:af:37:03:46:
db:da:73:f2:c9:0a:e3:7e:37:a4:ce:2c:28:23:21:b7:0e:ad:
58:62:37:3b:3e:82:1a:a6:8b:73:77:0e:ff:cf:1e:0f:fd:78:
e2:f8:4d:0a:61:9d:d6:ba:7c:28:74:9e:bf:b8:74:35:b9:47:
af:84:83:37:45:3a:bb:5b:d5:96:0c:f5:ef:e6:2e:43:4c:72:
41:2e:49:70:a1:4e:ba:7e:d5:dc:6c:cb:c3:bb:2b:e2:a5:aa:
b5:14:08:9e:10:47:8a:19:3d:84:6f:be:cb:36:a3:6a:d2:70:
98:29:88:4b:68:d7:8b:fd:86:1a:39:6e:7a:ad:c8:d8:7b:41:
55:fd:65:1e:af:38:d1:30:7f:45:66:ba:f9:2c:06:b8:ce:92:
1b:e2:e9:77:fe:80:bb:be:4e:40:67:e3:2c:5a:08:a7:4f:46:
2c:c0:b5:5c:45:0a:e3:b4:2c:9d:73:94:ec:cc:ba:e5:02:fb:
44:c6:74:d9:f9:27:43:88:90:75:9d:64:a0:3e:14:85:b0:f2:
f5:34:27:00:bb:01:46:51:a6:f8:5b:2d:93:36:c8:bb:ca:7f:
bb:e0:2a:67:71:b6:d3:81:a4:f1:22:14:6f:72:06:5b:30:c8:
b9:d0:ee:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:24 2024 by rpki-client on console-ams.rpki-client.org