Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/DxH7bhrkkhe2DUPdU9BULCJEFkc.roa
File: DxH7bhrkkhe2DUPdU9BULCJEFkc.roa (raw, json)
Hash identifier: EV8mXmRUpzHjoINIbdqSOwEqmSCIrr+jVwlAU38PyyA=
Subject key identifier: 0F:11:FB:6E:1A:E4:92:17:B6:0D:43:DD:53:D0:54:2C:22:44:16:47
Certificate issuer: /CN=fad0fb39d6b11fd15fcbb4163403155d1d455c05
Certificate serial: 0291D9EA
Authority key identifier: FA:D0:FB:39:D6:B1:1F:D1:5F:CB:B4:16:34:03:15:5D:1D:45:5C:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/DxH7bhrkkhe2DUPdU9BULCJEFkc.roa
Signing time: Sat 01 Jan 2022 14:54:57 +0000
ROA not before: Sat 01 Jan 2022 14:54:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204568
IP address blocks: 185.209.70.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43112938 (0x291d9ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad0fb39d6b11fd15fcbb4163403155d1d455c05
Validity
Not Before: Jan 1 14:54:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f11fb6e1ae49217b60d43dd53d0542c22441647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f4:c6:a8:66:47:a2:28:fa:8c:c4:f2:2e:78:
a6:17:9e:c6:65:df:7a:00:e5:97:f0:b4:20:3e:f9:
87:cf:12:16:39:38:bd:b4:73:be:d5:cc:8c:5e:af:
40:3c:37:19:f4:01:7c:7a:9e:35:95:64:54:e5:ca:
ab:0c:93:da:8e:33:50:16:84:9f:09:cb:ed:e5:1c:
f8:36:d1:cc:b1:bb:f9:78:82:e0:3a:85:e7:f9:97:
39:6e:45:cb:77:40:3d:33:34:12:80:37:49:19:08:
ee:07:9e:dc:f5:b8:f7:07:a9:98:59:22:07:1c:8b:
73:f1:3b:12:cb:f5:27:4b:4e:70:72:d9:16:31:6f:
ee:61:ef:85:e2:33:5d:c2:dd:1d:74:44:22:9a:8d:
57:67:15:48:c2:a2:36:3d:61:0b:63:70:19:3b:d2:
fd:b5:a0:04:78:8e:0a:4b:ff:1b:3a:9f:36:29:0f:
a2:bf:19:18:48:f0:53:08:5a:c9:7e:3a:14:b9:4d:
c4:a2:7f:2e:dd:52:a7:46:b7:e1:1b:1a:07:a7:47:
ee:e5:e1:54:4a:b1:7b:2a:46:78:61:28:59:14:f8:
33:b4:f9:d3:63:bb:b9:1d:78:84:18:59:c4:84:36:
7d:b2:99:7d:22:a5:79:8e:3b:7a:b4:ee:49:ed:e4:
99:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:11:FB:6E:1A:E4:92:17:B6:0D:43:DD:53:D0:54:2C:22:44:16:47
X509v3 Authority Key Identifier:
keyid:FA:D0:FB:39:D6:B1:1F:D1:5F:CB:B4:16:34:03:15:5D:1D:45:5C:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/DxH7bhrkkhe2DUPdU9BULCJEFkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.70.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:21:1a:ef:28:ff:95:70:b4:52:97:76:61:cf:75:d8:d1:4e:
44:72:8f:81:e6:79:e6:44:31:ae:13:40:5d:81:95:cd:30:17:
69:73:99:38:e0:36:87:93:92:68:62:8e:1c:09:fd:bf:0c:fd:
71:d9:9d:66:4e:68:bf:97:d5:f5:c4:75:12:3f:32:4e:5b:cc:
7d:35:3b:a9:fb:61:39:ee:2c:de:b7:5c:d3:fe:45:a4:16:68:
80:4d:54:1d:01:7c:6b:51:ad:22:67:dc:0f:fb:ba:b1:15:2d:
46:23:02:a3:da:74:f1:ef:f2:2f:29:94:40:08:0c:56:42:0d:
f8:d5:65:6c:9e:3b:b0:8c:79:89:65:88:3a:de:62:1a:8c:5f:
2f:40:b5:d6:2b:47:cf:1c:c8:65:0c:48:0c:46:5d:df:21:1b:
19:84:4c:bb:04:ec:7e:02:dd:71:fd:fd:50:27:7e:0d:69:17:
11:c4:c3:e0:61:34:48:88:c2:b1:b6:17:40:ea:5f:e9:ab:1b:
67:e9:ad:05:34:7e:6d:80:55:1d:6d:c3:f8:be:47:3f:f3:06:
f8:f0:8f:00:49:e5:f2:26:81:93:ec:69:89:c9:9e:25:f0:5f:
36:df:f8:fe:d2:96:ee:04:23:99:10:16:1c:d9:5f:d6:2a:dc:
01:8a:2e:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:34 2023 by rpki-client on console.sobornost.net