Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/df96a5-3157-4883-8083-212f893fc835/1/1-PSsvVsHO7C1INDPvUhjg0v6W1M.roa
File: 1-PSsvVsHO7C1INDPvUhjg0v6W1M.roa (raw, json)
Hash identifier: yPa9soh+FVMWOZPhhPA1z5F2uU8Q/GKDw8xSVfzBiyk=
Subject key identifier: F8:F4:AC:BD:5B:07:3B:B0:B5:20:D0:CF:BD:48:63:83:4B:FA:5B:53
Certificate issuer: /CN=1f94d1354e72306a9f7f951f93f52e8d13a40abf
Certificate serial: 013B09
Authority key identifier: 1F:94:D1:35:4E:72:30:6A:9F:7F:95:1F:93:F5:2E:8D:13:A4:0A:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5TRNU5yMGqff5Ufk_UujROkCr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/df96a5-3157-4883-8083-212f893fc835/1/1-PSsvVsHO7C1INDPvUhjg0v6W1M.roa
Signing time: Mon 03 Jan 2022 07:45:11 +0000
ROA not before: Mon 03 Jan 2022 07:45:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205850
IP address blocks: 185.204.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80649 (0x13b09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f94d1354e72306a9f7f951f93f52e8d13a40abf
Validity
Not Before: Jan 3 07:45:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8f4acbd5b073bb0b520d0cfbd4863834bfa5b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4f:fc:20:7a:04:ab:a0:53:8c:e0:51:ac:77:
10:6c:21:73:f3:bc:d6:9f:eb:6b:a9:a4:0a:0f:94:
df:85:bb:20:64:f8:66:d7:58:d7:12:a1:68:96:5f:
82:39:6b:be:34:93:79:0c:47:05:43:0b:07:cd:5f:
1f:5b:7f:0d:29:91:29:a7:9c:f0:40:47:70:12:99:
28:a3:8d:dc:39:80:82:f5:5d:cd:30:8d:98:d9:d1:
90:c6:a0:3f:e8:4e:7c:de:c1:40:72:17:ce:4b:54:
4f:1b:24:ed:b9:30:cd:07:3c:1d:ff:64:89:22:bc:
4e:a6:3b:45:fd:d4:c1:80:2f:5f:70:6b:23:55:b6:
d9:0e:6c:87:33:ba:4d:94:8c:80:24:ad:da:f5:bb:
6e:e4:a5:38:fa:c2:e1:09:c4:ae:a9:23:c0:c7:21:
38:be:9a:15:07:3a:15:84:31:45:fd:4d:c2:35:15:
7e:e8:0d:e7:e3:db:1a:f3:da:75:fd:c4:86:4a:09:
b6:98:23:f6:c4:7a:b7:2f:66:5b:25:ef:15:92:49:
ba:df:84:0f:3c:59:bb:21:2c:b7:e4:84:0c:bc:3a:
b1:3b:9a:48:13:62:65:25:06:a4:37:44:b5:28:2b:
53:7b:3c:fe:a2:d0:bc:dc:09:54:dd:13:8b:f7:85:
07:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F4:AC:BD:5B:07:3B:B0:B5:20:D0:CF:BD:48:63:83:4B:FA:5B:53
X509v3 Authority Key Identifier:
keyid:1F:94:D1:35:4E:72:30:6A:9F:7F:95:1F:93:F5:2E:8D:13:A4:0A:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5TRNU5yMGqff5Ufk_UujROkCr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/df96a5-3157-4883-8083-212f893fc835/1/1-PSsvVsHO7C1INDPvUhjg0v6W1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/df96a5-3157-4883-8083-212f893fc835/1/H5TRNU5yMGqff5Ufk_UujROkCr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.84.0/22
Signature Algorithm: sha256WithRSAEncryption
82:72:5e:10:37:94:77:54:d1:32:55:50:9b:f8:96:13:e4:ac:
d3:9e:c8:64:cd:98:a7:af:83:a8:e8:f3:0a:18:0b:c9:fb:ec:
6a:ef:44:d1:2e:8d:ba:b6:df:06:d4:0a:8b:d9:95:6e:63:33:
f6:70:20:4e:37:2c:9d:1f:de:f8:98:ad:0b:7a:f2:7f:2d:e3:
e7:ae:be:86:79:f3:5c:0f:e8:3b:79:67:f1:5c:40:b2:42:1a:
a8:43:57:e8:a9:6b:07:7e:89:d0:7f:08:a3:b2:a8:68:f8:55:
03:e1:5d:41:48:11:c6:a1:b3:cf:16:11:38:42:ed:9e:58:ad:
4f:62:65:df:8e:0a:51:8d:07:a9:01:2a:8a:c7:94:65:ac:08:
73:a5:5f:0f:af:3e:a6:d3:96:5e:82:fc:07:fe:3c:c8:fd:c2:
0a:e7:f4:1c:6a:34:fe:84:41:b9:ec:dd:e3:92:4f:11:03:14:
32:a4:bc:eb:d5:25:a3:08:f4:64:30:9a:40:8a:df:04:35:ae:
dc:0f:d6:e0:9e:a7:35:0b:84:18:db:a6:25:c5:d8:96:37:f8:
41:9a:ce:31:94:79:cb:f8:59:53:89:d1:b0:95:69:09:08:98:
14:25:02:2c:09:a2:02:8d:0c:0b:0a:07:e0:4f:5d:88:71:3d:
97:00:fb:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:27 2023 by rpki-client on console.sobornost.net