Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/d4d8dd-50d8-43c7-9b55-9aa7cd6505e5/1/3RV5YwpWs-VNqtebXWHSfojp3cI.roa
File: 3RV5YwpWs-VNqtebXWHSfojp3cI.roa (raw, json)
Hash identifier: QrLp5TLQ/I3uv6+mnvf8qVDbuNzwooE8Uv0pjlxYteI=
Subject key identifier: DD:15:79:63:0A:56:B3:E5:4D:AA:D7:9B:5D:61:D2:7E:88:E9:DD:C2
Certificate issuer: /CN=a8153b3d5612234fe260fe60bc7ce028062227a3
Certificate serial: 087C6EA2
Authority key identifier: A8:15:3B:3D:56:12:23:4F:E2:60:FE:60:BC:7C:E0:28:06:22:27:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBU7PVYSI0_iYP5gvHzgKAYiJ6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/d4d8dd-50d8-43c7-9b55-9aa7cd6505e5/1/3RV5YwpWs-VNqtebXWHSfojp3cI.roa
Signing time: Sat 01 Jan 2022 05:01:53 +0000
ROA not before: Sat 01 Jan 2022 05:01:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51681
IP address blocks: 185.220.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142372514 (0x87c6ea2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8153b3d5612234fe260fe60bc7ce028062227a3
Validity
Not Before: Jan 1 05:01:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd1579630a56b3e54daad79b5d61d27e88e9ddc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:29:c6:0a:b9:e4:fd:12:5b:39:7c:87:d4:0b:
67:9b:d5:c4:66:a0:aa:10:36:69:c9:bf:ab:64:de:
51:e6:b1:59:9d:1b:fc:2d:43:64:11:d5:a6:29:ed:
8c:e3:f8:c4:b5:ae:2b:97:49:48:90:aa:49:92:f6:
3d:98:76:79:82:87:8e:82:8e:40:5b:50:cd:a2:1b:
da:ba:d5:2d:ba:9d:98:93:9d:16:80:9d:da:35:76:
ea:2e:a8:4c:a6:3a:d8:a2:03:b9:26:68:e0:cb:33:
f7:06:80:34:3b:58:c5:14:dc:d0:02:09:ae:58:69:
1f:10:82:34:ae:19:92:78:9b:01:fe:eb:1e:c9:38:
4d:2f:4c:b6:2c:7e:f2:b7:ba:25:58:55:7c:1d:ee:
4d:5b:62:e3:15:c7:f3:62:62:9e:d2:7b:71:05:b6:
64:38:0a:96:22:ba:8c:07:80:12:90:bf:ee:98:8b:
59:1f:05:e2:0b:97:61:42:4f:37:ab:64:1f:cd:67:
f8:f5:8a:f2:97:f7:10:b2:dd:e5:71:56:28:3c:9e:
3b:88:f2:84:55:78:33:9a:93:06:d8:77:36:20:09:
dc:2e:32:57:1e:6b:8d:ae:33:8f:89:0f:e9:65:f2:
13:51:2a:90:e8:34:f3:31:df:4f:49:02:6b:5a:62:
1d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:15:79:63:0A:56:B3:E5:4D:AA:D7:9B:5D:61:D2:7E:88:E9:DD:C2
X509v3 Authority Key Identifier:
keyid:A8:15:3B:3D:56:12:23:4F:E2:60:FE:60:BC:7C:E0:28:06:22:27:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBU7PVYSI0_iYP5gvHzgKAYiJ6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/d4d8dd-50d8-43c7-9b55-9aa7cd6505e5/1/3RV5YwpWs-VNqtebXWHSfojp3cI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/d4d8dd-50d8-43c7-9b55-9aa7cd6505e5/1/qBU7PVYSI0_iYP5gvHzgKAYiJ6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.11.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:6d:95:47:aa:13:76:ac:a6:f1:18:65:46:50:c3:e0:57:ba:
01:8a:80:03:2a:c4:dc:52:7b:74:01:84:68:a2:f9:98:42:37:
a7:a1:fc:d8:8a:c2:fe:19:46:86:90:b4:2e:96:5c:84:e5:17:
d7:05:6b:ff:cf:8f:fa:32:a6:03:5b:8f:c3:45:5e:58:17:6f:
6f:eb:32:97:b0:fa:e7:16:40:32:e4:8b:ce:73:a7:cb:ed:b1:
5c:28:e8:96:4a:70:27:2a:80:38:02:d5:ab:b9:85:81:2c:66:
93:94:14:5b:c5:6e:b4:48:f2:c9:9c:da:8a:75:22:41:02:46:
ca:62:f2:06:b7:2d:ff:98:8c:3b:0c:e8:4d:18:f6:d4:fe:e1:
58:15:91:ea:6e:ac:19:d8:a6:41:9e:3f:5e:2b:71:13:66:33:
cb:67:f0:6b:48:8a:3e:a0:74:5a:b2:60:3e:12:06:77:ed:a6:
7f:ea:72:09:d3:5b:76:26:62:5d:cd:9e:ca:ba:6e:87:9d:44:
de:bc:f0:73:f8:7d:56:84:15:c1:95:7a:34:21:dd:fe:f9:b4:
1c:38:ba:f2:95:b3:9f:83:62:91:48:78:cc:6e:b5:69:f3:8e:
6c:4b:89:33:f8:a6:ec:ab:52:0d:03:81:d2:bc:95:36:15:80:
e4:df:cf:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:45 2023 by rpki-client on console.sobornost.net