Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/c533b2-ae9d-4470-b982-f540439a4ae2/1/Jm6ZJ1VGGoizi2h1rxfRcEpdbqw.roa
File: Jm6ZJ1VGGoizi2h1rxfRcEpdbqw.roa (raw, json)
Hash identifier: lZraFDRhwQ2JzDpNUAnb+eMqIf7424J8IEkjLqYC13Q=
Subject key identifier: 26:6E:99:27:55:46:1A:88:B3:8B:68:75:AF:17:D1:70:4A:5D:6E:AC
Certificate issuer: /CN=9a5f0d912b5e747ae568d808a04029b4ebc66e47
Certificate serial: 01DA97
Authority key identifier: 9A:5F:0D:91:2B:5E:74:7A:E5:68:D8:08:A0:40:29:B4:EB:C6:6E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ml8NkStedHrlaNgIoEAptOvGbkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/c533b2-ae9d-4470-b982-f540439a4ae2/1/Jm6ZJ1VGGoizi2h1rxfRcEpdbqw.roa
Signing time: Mon 04 Apr 2022 13:40:20 +0000
ROA not before: Mon 04 Apr 2022 13:40:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12637
IP address blocks: 185.228.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121495 (0x1da97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a5f0d912b5e747ae568d808a04029b4ebc66e47
Validity
Not Before: Apr 4 13:40:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=266e992755461a88b38b6875af17d1704a5d6eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:82:ed:14:5a:33:8c:96:a5:61:19:38:ff:e9:
69:f9:c1:f2:7b:cd:10:9b:0f:df:1d:c6:c9:45:09:
68:7f:15:ab:c3:cf:c4:45:f5:59:38:ca:57:2d:f0:
cb:bb:3d:5c:a2:36:56:b9:03:13:1a:f4:31:80:45:
c2:24:40:a5:90:25:3b:8c:ff:57:90:6a:f3:1e:bd:
98:7b:6c:c6:9e:34:e8:6f:c9:51:00:79:24:a9:c0:
a9:82:fc:c4:fe:0c:1a:60:70:62:6d:ea:20:d3:86:
8e:e4:ea:87:07:18:cd:94:a7:9c:9c:9a:f0:6a:51:
d8:c3:a4:f5:b3:a6:cc:31:21:1e:14:91:31:1f:43:
80:28:f2:4d:f0:1e:ac:af:8c:01:12:38:60:01:1d:
d2:58:7b:2d:c2:7e:69:e3:99:e8:87:d4:58:a3:18:
91:78:68:1a:77:b5:e6:ea:70:d1:cc:b1:9c:13:2b:
19:65:42:42:39:d1:11:e6:f4:87:59:94:56:e9:12:
e0:b0:95:1b:bd:0a:41:d7:cb:f9:84:d4:82:36:e0:
b2:fc:66:ad:d3:f0:ae:e7:1a:a8:c8:1a:a5:7d:57:
d4:d4:d7:18:ac:68:b2:62:30:83:f2:c5:a2:d5:4e:
42:47:fd:cc:0c:00:8e:69:b6:8d:ad:38:b9:27:50:
48:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:6E:99:27:55:46:1A:88:B3:8B:68:75:AF:17:D1:70:4A:5D:6E:AC
X509v3 Authority Key Identifier:
keyid:9A:5F:0D:91:2B:5E:74:7A:E5:68:D8:08:A0:40:29:B4:EB:C6:6E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ml8NkStedHrlaNgIoEAptOvGbkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c533b2-ae9d-4470-b982-f540439a4ae2/1/Jm6ZJ1VGGoizi2h1rxfRcEpdbqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c533b2-ae9d-4470-b982-f540439a4ae2/1/ml8NkStedHrlaNgIoEAptOvGbkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.250.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:1a:19:36:ea:98:7b:70:b4:fc:dd:63:19:b0:64:f2:70:f0:
0b:5d:bf:c3:ed:95:4a:5b:2e:71:10:e0:79:34:1a:bc:15:2e:
a7:e5:85:c7:17:3e:8c:0f:94:b4:5a:03:5a:db:59:90:0f:31:
e0:14:cb:6f:76:76:80:b3:94:60:4d:c8:68:57:85:b5:60:4a:
29:2a:55:d9:a0:b3:ad:18:b1:af:14:83:67:a8:d3:dc:0f:4a:
94:e6:f8:f5:86:23:c2:69:3b:c2:21:d1:53:15:f1:50:be:61:
af:f6:66:95:54:54:09:9b:44:6c:b5:ad:5b:ab:37:6b:b3:0f:
0c:c6:09:77:07:4f:c4:48:b7:84:ea:76:71:aa:7e:0e:b2:8f:
be:a1:54:4c:09:29:2e:3f:33:6d:37:8f:5d:f7:c2:c1:c5:19:
88:88:68:8c:c7:63:1e:d8:a0:0c:56:21:61:ea:fe:6a:77:67:
65:7a:9e:74:48:ef:b3:19:a1:c7:39:21:69:c6:b4:eb:e3:77:
66:d1:e0:7b:4b:40:93:3f:3d:24:0b:3b:85:2c:c1:0e:eb:5a:
5a:29:7c:0d:33:4b:f6:15:79:f2:e2:64:a5:cd:7b:0d:f4:98:
df:e0:4b:01:1a:ef:01:ef:6e:03:46:e6:c4:77:f4:ca:49:d5:
17:89:a6:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net