Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/cz3ht1NU6Vs2ZGnAzaKee56Yv_Q.roa
File: cz3ht1NU6Vs2ZGnAzaKee56Yv_Q.roa (raw, json)
Hash identifier: 34rnLCr/sdMyXF8wvq9qUMqxHCNjjyM8sKLpT3gXenc=
Subject key identifier: 73:3D:E1:B7:53:54:E9:5B:36:64:69:C0:CD:A2:9E:7B:9E:98:BF:F4
Certificate issuer: /CN=8c7fd3dbdc3a9b9531e686b5b07645c328b1b51a
Certificate serial: 0181CDBA9402E5763A54C78A05B15293085C
Authority key identifier: 8C:7F:D3:DB:DC:3A:9B:95:31:E6:86:B5:B0:76:45:C3:28:B1:B5:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jH_T29w6m5Ux5oa1sHZFwyixtRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/cz3ht1NU6Vs2ZGnAzaKee56Yv_Q.roa
Signing time: Tue 05 Jul 2022 09:39:25 +0000
ROA not before: Tue 05 Jul 2022 09:39:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 185.104.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:cd:ba:94:02:e5:76:3a:54:c7:8a:05:b1:52:93:08:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c7fd3dbdc3a9b9531e686b5b07645c328b1b51a
Validity
Not Before: Jul 5 09:39:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=733de1b75354e95b366469c0cda29e7b9e98bff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:eb:ac:9d:c9:59:ae:18:f1:bc:8f:e6:48:41:
80:a4:68:7b:87:e9:61:e9:f1:32:8f:2b:35:73:94:
a2:79:17:b8:ff:f2:f1:ea:f6:1a:bc:b0:f1:60:92:
93:6e:25:79:dd:74:a6:af:3c:d7:05:73:59:c2:e4:
0d:7c:4c:3e:60:47:f0:9c:6b:65:f5:f6:6d:c6:25:
17:e0:64:0c:8a:6a:ec:71:f7:04:b6:eb:8b:68:6d:
a5:02:45:e0:35:59:87:d7:43:47:de:a4:ff:27:ec:
ba:da:da:ab:5e:2d:ae:2b:f3:98:7a:39:eb:eb:1b:
ee:d2:56:a1:bf:10:ec:ae:8d:16:a0:6a:cb:bb:9c:
36:cb:50:73:4d:14:25:a8:dc:ee:90:ff:79:9b:36:
3e:a0:57:aa:75:2f:84:42:21:79:4b:03:f8:09:06:
85:44:f1:f6:ba:d4:8d:cf:ae:71:14:4b:f0:e0:fe:
7b:55:8b:1e:c0:89:65:67:9d:95:51:4b:bc:80:0a:
de:b1:40:06:c2:6d:39:0f:38:21:e4:c6:a2:6b:12:
ce:c3:79:fc:04:3c:c7:6e:8e:96:46:cf:a7:e4:ab:
7f:b6:a2:1b:44:6c:43:e5:8c:ad:d1:08:aa:e6:3c:
2e:ea:da:9d:60:33:53:0e:66:60:34:65:a3:d4:6a:
17:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:3D:E1:B7:53:54:E9:5B:36:64:69:C0:CD:A2:9E:7B:9E:98:BF:F4
X509v3 Authority Key Identifier:
keyid:8C:7F:D3:DB:DC:3A:9B:95:31:E6:86:B5:B0:76:45:C3:28:B1:B5:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jH_T29w6m5Ux5oa1sHZFwyixtRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/cz3ht1NU6Vs2ZGnAzaKee56Yv_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/jH_T29w6m5Ux5oa1sHZFwyixtRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.190.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:e7:0a:bc:79:7d:4b:7d:a2:c1:6f:b3:aa:12:93:c0:23:ed:
e7:61:00:63:f3:32:fd:2c:d8:59:d4:81:e7:c6:aa:12:2d:68:
e3:53:48:c5:b5:bc:16:14:1e:2e:6e:6a:c5:29:9f:37:13:00:
cf:28:27:4f:8e:6c:c4:c2:2c:83:3d:56:7b:f9:90:bc:87:fd:
dc:d9:ba:5d:98:84:c6:41:55:fc:37:90:2f:f9:0e:78:ba:4f:
19:7c:20:b8:ff:79:ce:9e:f9:7c:6e:49:6b:a0:8f:9e:6d:b7:
23:77:dc:3d:57:e5:9e:5b:b0:d4:5e:a4:59:f9:c5:19:b5:7e:
50:7d:9f:76:12:85:73:d3:c3:e4:7b:66:7c:f5:56:a2:70:79:
40:ad:8e:c8:24:d6:11:1c:1f:4c:3a:25:b4:29:51:e7:4f:8f:
f3:96:2d:bf:9d:e0:e6:9b:e2:bc:75:39:a5:c9:f4:9e:bb:f0:
bc:0d:38:29:7f:1c:a5:3d:65:e8:b9:8f:44:cd:64:35:d5:21:
bf:40:1b:47:ae:1c:32:f0:69:d7:e9:1f:77:2a:1a:93:86:d4:
f4:3a:1e:c9:f1:bf:90:86:19:20:5e:d8:7c:1b:53:f1:95:b0:
da:18:01:71:e4:c2:75:d3:35:24:d9:4a:ca:5c:cb:2b:6a:46:
1a:ef:a7:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:43 2023 by rpki-client on console.sobornost.net