Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/H1wMjvk76qAHHZqApjyeGehmY9M.roa
File: H1wMjvk76qAHHZqApjyeGehmY9M.roa (raw, json)
Hash identifier: IxjyDmtjIhpYEuXyZ8jJgfn2TsHXsMNkkcVECoAJOFQ=
Subject key identifier: 1F:5C:0C:8E:F9:3B:EA:A0:07:1D:9A:80:A6:3C:9E:19:E8:66:63:D3
Certificate issuer: /CN=cddb6f10030e276f8316276f40b3d4a4184d94dd
Certificate serial: 028BD7
Authority key identifier: CD:DB:6F:10:03:0E:27:6F:83:16:27:6F:40:B3:D4:A4:18:4D:94:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdtvEAMOJ2-DFidvQLPUpBhNlN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/H1wMjvk76qAHHZqApjyeGehmY9M.roa
Signing time: Mon 28 Feb 2022 13:10:23 +0000
ROA not before: Mon 28 Feb 2022 13:10:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60706
IP address blocks: 185.26.197.0/24 maxlen: 24
185.26.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166871 (0x28bd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddb6f10030e276f8316276f40b3d4a4184d94dd
Validity
Not Before: Feb 28 13:10:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f5c0c8ef93beaa0071d9a80a63c9e19e86663d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:89:b1:fd:91:83:13:73:72:06:18:be:15:32:
57:f1:cf:77:0e:82:b5:cc:96:e7:f7:b5:86:7d:dd:
6e:9d:d7:ea:f9:62:50:e7:57:89:21:e1:0c:f6:7d:
f5:90:2d:c1:df:0b:b1:68:84:30:e1:43:76:6a:4b:
7e:09:d1:d0:cb:f5:95:f8:07:d1:b1:54:65:a3:82:
d5:1d:16:5b:a2:ce:4e:ee:8f:1b:1e:88:9c:1f:b6:
dc:bc:b5:1b:3d:7d:8b:fb:5a:87:67:49:60:1c:f8:
95:f8:eb:32:93:36:b0:f6:43:25:d6:04:58:34:57:
31:ca:0f:c6:e0:50:2e:19:27:d3:68:44:68:25:7a:
e8:a9:22:30:a5:f2:4b:67:8d:b0:1d:02:16:df:af:
92:f8:97:43:80:30:25:7d:5d:03:cb:af:fe:25:ff:
97:74:f8:2f:7b:30:f3:81:17:7e:49:52:cd:05:16:
74:1f:48:44:e3:dc:ea:c8:f6:68:a9:46:1c:40:02:
fe:f2:ad:42:b0:19:3c:f1:ed:c8:31:72:2b:7f:f0:
9c:dd:df:7f:30:13:34:36:8f:2e:4f:41:25:32:5c:
72:4c:22:f7:42:af:f6:8a:42:0f:80:1a:bd:fb:d5:
23:55:b9:79:20:5d:86:53:ee:7a:aa:a1:5f:ff:db:
41:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:5C:0C:8E:F9:3B:EA:A0:07:1D:9A:80:A6:3C:9E:19:E8:66:63:D3
X509v3 Authority Key Identifier:
keyid:CD:DB:6F:10:03:0E:27:6F:83:16:27:6F:40:B3:D4:A4:18:4D:94:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdtvEAMOJ2-DFidvQLPUpBhNlN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/H1wMjvk76qAHHZqApjyeGehmY9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/zdtvEAMOJ2-DFidvQLPUpBhNlN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.196.0/23
Signature Algorithm: sha256WithRSAEncryption
76:b2:1e:b4:4c:ae:5a:bd:9f:49:63:f8:6d:e7:97:9c:74:fa:
90:b1:8b:56:4b:f4:fd:35:68:94:04:40:47:27:b1:1b:72:e6:
01:28:04:96:5b:f4:e1:39:c8:77:cf:60:18:54:64:da:ff:67:
2d:8a:8a:60:bc:36:65:c0:e0:c9:92:a4:f9:86:0b:96:66:cb:
bf:80:58:7d:b0:98:a3:86:af:b6:5b:56:e7:cf:13:e4:6a:29:
9a:dd:13:a1:2d:ea:97:cb:f8:f6:8c:f7:49:1c:fb:66:e7:e0:
e4:45:5b:76:94:37:5c:73:98:67:a3:cb:c5:9c:4f:be:dc:7d:
28:51:c4:5f:a3:96:d6:89:53:cf:7e:4e:be:d6:9d:bc:c2:21:
0d:31:9c:46:5e:6e:59:65:c8:e4:e9:7e:95:cf:cf:25:6a:22:
38:d4:be:29:6b:3c:b5:9a:cc:19:db:33:e5:6e:b8:8c:e9:0c:
1b:2f:8e:7d:28:2d:38:4f:db:55:58:82:48:ee:2c:59:6a:8e:
81:f7:1c:6c:f2:0c:9d:8d:8d:cb:62:ac:06:6a:cc:e5:09:f1:
f7:4a:4f:42:03:ec:30:41:ee:c3:ac:61:ea:7c:27:d8:2e:5d:
5e:08:75:0e:d3:bf:17:0c:c1:c7:6f:2c:89:08:46:5b:b8:01:
f0:2a:6f:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:28 2024 by rpki-client on console-ams.rpki-client.org