Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/1-n6HgUZEhFLSThhCsxeMWaDPzk.roa
File: 1-n6HgUZEhFLSThhCsxeMWaDPzk.roa (raw, json)
Hash identifier: ZJbskBUSJePgT8traahLuLOR4Vtf1vyKg+sbsVSpTzQ=
Subject key identifier: D7:E9:FA:1E:05:19:12:11:4B:49:38:61:0A:CC:5E:31:66:83:3F:39
Certificate issuer: /CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Certificate serial: 26BADB
Authority key identifier: B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/1-n6HgUZEhFLSThhCsxeMWaDPzk.roa
Signing time: Fri 08 Apr 2022 12:59:19 +0000
ROA not before: Fri 08 Apr 2022 12:59:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41378
IP address blocks: 104.207.32.0/24 maxlen: 24
104.207.32.0/23 maxlen: 23
104.207.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2538203 (0x26badb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Validity
Not Before: Apr 8 12:59:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7e9fa1e051912114b4938610acc5e3166833f39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:05:3b:c9:b8:fd:f9:45:87:4f:00:fc:ed:26:
cf:0c:dc:a1:55:cf:0b:0c:e7:4a:99:5b:3d:a4:3b:
d4:45:2e:62:f1:9d:07:c1:5e:3e:3b:a9:c9:4a:9d:
07:c3:70:e8:bf:86:71:a5:22:ca:b8:d3:ab:5e:c6:
19:04:8b:5f:0a:ee:48:32:c7:fe:8b:16:4e:28:b6:
dd:59:60:af:8c:e8:bf:5d:6d:2e:cb:be:37:76:02:
b4:ea:40:56:40:a9:ff:80:e2:62:c6:f6:c6:e0:4f:
99:bf:a9:77:66:c9:64:ca:d6:62:b1:4b:2a:53:4a:
98:40:84:c3:c2:9d:6b:15:1e:0f:eb:d1:f0:3a:b1:
fc:4d:85:37:05:8a:8b:51:4d:1d:d3:f3:26:a7:a8:
a0:25:d7:d5:94:7f:2e:7d:34:f5:77:3a:dc:31:ca:
cb:de:1c:3d:75:64:8d:bd:b2:a0:fe:9f:14:6d:fc:
ec:2d:92:97:d9:9d:c9:03:d2:2c:d5:85:be:cc:ce:
98:8c:7a:87:32:07:bf:d4:38:a0:68:3c:41:de:1c:
ac:e8:ed:91:04:2e:f4:4e:a5:3c:29:fb:6a:af:08:
fd:62:19:8f:60:bf:e9:53:12:d1:bb:cb:22:5b:f6:
6c:9b:8f:cd:07:aa:36:bd:0f:ed:87:9f:ed:79:42:
e3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:E9:FA:1E:05:19:12:11:4B:49:38:61:0A:CC:5E:31:66:83:3F:39
X509v3 Authority Key Identifier:
keyid:B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/1-n6HgUZEhFLSThhCsxeMWaDPzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.207.32.0/23
Signature Algorithm: sha256WithRSAEncryption
28:cd:d7:7e:7c:81:30:57:84:a9:93:16:16:6e:5e:38:f9:c3:
ac:72:68:38:d5:11:7d:c8:af:01:64:9a:bd:31:94:15:6c:e7:
b5:1e:9e:61:f7:65:97:cc:3b:2a:40:cd:0a:8d:fa:7e:37:1c:
5a:c5:b2:82:7f:96:1d:58:a2:fe:90:91:17:26:ed:35:27:62:
39:81:a7:08:47:7f:d7:c1:cc:04:57:e3:1f:22:34:7c:b4:88:
0d:f1:da:67:9c:00:e2:a8:51:60:61:db:87:94:6a:db:f7:aa:
20:a4:8c:94:2e:10:cf:13:a7:3c:db:06:26:dd:5c:21:cd:46:
7a:ea:9d:75:73:16:d2:03:c5:3a:4c:b6:32:3e:4a:1c:4f:27:
d7:5b:e6:66:e6:ae:f2:4d:db:e4:67:db:47:bd:99:88:2b:85:
75:56:61:a7:ee:24:54:77:c6:c6:95:72:86:e3:3b:08:ed:97:
26:43:0e:f4:49:35:53:7e:93:86:a9:32:70:22:a9:48:7b:05:
24:d9:4b:c2:4b:ab:ba:4f:67:78:02:0a:45:f9:20:cb:49:d6:
c0:95:0c:76:a4:85:22:6b:e2:46:cf:15:8e:32:b7:9a:0c:37:
71:a4:22:4c:02:a8:1b:ff:29:0e:e8:e1:67:f4:61:87:df:79:
9f:c9:3a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:52 2023 by rpki-client on console.sobornost.net