Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/6e20ca-a1ef-4ae8-aef1-e4509fb9cf20/1/3cF8dLuvj5tTEhic0SdoKT8_8SY.roa
File: 3cF8dLuvj5tTEhic0SdoKT8_8SY.roa (raw, json)
Hash identifier: VMi/fbzpvyOIhvv7U7p/D7yHJzLNLeUIPHHzvJikSC0=
Subject key identifier: DD:C1:7C:74:BB:AF:8F:9B:53:12:18:9C:D1:27:68:29:3F:3F:F1:26
Certificate issuer: /CN=ed536c19a691c2f544220a9521474a8765e59cf1
Certificate serial: 02D84EB1
Authority key identifier: ED:53:6C:19:A6:91:C2:F5:44:22:0A:95:21:47:4A:87:65:E5:9C:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7VNsGaaRwvVEIgqVIUdKh2XlnPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/6e20ca-a1ef-4ae8-aef1-e4509fb9cf20/1/3cF8dLuvj5tTEhic0SdoKT8_8SY.roa
Signing time: Thu 17 Feb 2022 12:25:04 +0000
ROA not before: Thu 17 Feb 2022 12:25:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211612
IP address blocks: 185.206.83.128/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47730353 (0x2d84eb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed536c19a691c2f544220a9521474a8765e59cf1
Validity
Not Before: Feb 17 12:25:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddc17c74bbaf8f9b5312189cd12768293f3ff126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2c:94:49:d8:16:a2:d6:7b:1b:36:a3:08:68:
99:96:80:63:ff:19:78:54:5e:8d:08:7b:e1:63:2a:
50:55:ec:de:b3:1b:08:f2:13:97:9f:b4:11:09:0e:
9a:ea:51:fd:fb:0e:b0:89:4b:08:09:8e:d5:7e:f7:
ef:f1:62:08:b9:0c:f1:b8:10:e7:7a:c8:9a:28:0f:
8a:2c:21:b4:bb:90:99:36:95:ee:0d:a5:4e:ff:b8:
88:4b:b2:ad:2b:df:e8:a2:fe:59:b9:de:31:c0:25:
98:da:50:90:35:2a:df:89:ab:b8:d4:27:d8:48:c4:
1e:fc:bf:78:61:24:9a:dc:70:ad:02:65:0d:3b:41:
3c:29:2e:6d:a9:e9:09:b8:e5:69:ac:1e:58:06:c8:
b9:78:63:bd:9e:10:0d:ae:13:8c:21:fc:d1:64:11:
c3:33:82:5b:df:33:58:42:be:95:8d:4b:1f:aa:8f:
a7:eb:c0:48:99:3a:a3:44:8a:42:ef:76:b9:09:23:
d6:80:77:de:13:3b:82:81:ba:03:61:bf:c3:d3:05:
c7:0e:09:fd:d7:02:33:9c:d3:fb:66:06:0a:cc:ae:
cf:f8:f3:7f:b3:3c:51:10:8a:99:ee:a0:5f:ca:2e:
0b:8c:13:d3:ed:27:24:fe:a1:b7:b9:39:51:da:5d:
91:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C1:7C:74:BB:AF:8F:9B:53:12:18:9C:D1:27:68:29:3F:3F:F1:26
X509v3 Authority Key Identifier:
keyid:ED:53:6C:19:A6:91:C2:F5:44:22:0A:95:21:47:4A:87:65:E5:9C:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7VNsGaaRwvVEIgqVIUdKh2XlnPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/6e20ca-a1ef-4ae8-aef1-e4509fb9cf20/1/3cF8dLuvj5tTEhic0SdoKT8_8SY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/6e20ca-a1ef-4ae8-aef1-e4509fb9cf20/1/7VNsGaaRwvVEIgqVIUdKh2XlnPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.83.128/26
Signature Algorithm: sha256WithRSAEncryption
3b:22:1f:b9:ee:c8:cc:1d:76:a6:b6:f6:2a:75:62:79:28:1d:
e8:82:82:23:d3:7b:b5:d1:c1:da:68:00:58:6a:38:f0:78:37:
02:6c:2b:4c:c9:8a:d7:8b:20:28:ff:38:0e:92:bc:51:d3:24:
f6:7b:0d:50:09:9f:b5:64:5f:af:50:53:5f:0b:b1:32:99:be:
4e:41:c4:aa:2d:f2:68:df:d1:9d:2a:ef:28:2e:93:f8:2c:ae:
0c:ed:73:3c:fb:e2:55:1e:10:3d:a7:8e:bd:82:cf:50:f9:a3:
ea:33:61:3b:6f:e0:83:a7:f9:ce:fe:95:c2:98:2f:f9:b2:0b:
5e:bc:43:87:42:4c:b2:e2:0e:ec:f4:98:35:9b:21:52:af:fe:
78:17:9a:66:47:97:d7:71:3a:7d:e4:5e:db:a4:7e:db:d6:c1:
51:df:d0:87:dc:11:25:c2:2e:e6:1a:13:92:9f:0b:e2:cb:2a:
07:f5:ed:5a:d7:c8:54:ca:7f:6a:5b:f4:76:68:69:1f:a7:e1:
ff:52:30:a6:d5:a0:13:df:2b:f4:1a:f4:4d:80:e8:04:3d:4b:
0b:f9:36:d8:ba:72:79:22:90:18:26:a4:e3:45:a0:8c:0a:29:
9f:5e:47:21:07:bf:c3:d3:04:b2:c0:36:97:7a:2a:00:a9:a9:
17:8e:ea:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:48 2023 by rpki-client on console-fra.rpki-client.org