Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1defca-e125-4b00-9252-9fe86dea862a/1/afgRv1yi4P7ZPKfGzoHfqordRNc.roa
File: afgRv1yi4P7ZPKfGzoHfqordRNc.roa (raw, json)
Hash identifier: MrVvg5Aylz4ri6Y6Q/rcGGqeZZ6v5+nInJWs2aIGOF0=
Subject key identifier: 69:F8:11:BF:5C:A2:E0:FE:D9:3C:A7:C6:CE:81:DF:AA:8A:DD:44:D7
Certificate issuer: /CN=5b456c9f7f79b987196c468402396a187c156d7c
Certificate serial: 08C8C4B9
Authority key identifier: 5B:45:6C:9F:7F:79:B9:87:19:6C:46:84:02:39:6A:18:7C:15:6D:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W0Vsn395uYcZbEaEAjlqGHwVbXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1defca-e125-4b00-9252-9fe86dea862a/1/afgRv1yi4P7ZPKfGzoHfqordRNc.roa
Signing time: Sat 01 Jan 2022 02:58:14 +0000
ROA not before: Sat 01 Jan 2022 02:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60855
IP address blocks: 185.24.184.0/24 maxlen: 24
185.24.184.0/23 maxlen: 23
185.24.186.0/24 maxlen: 24
185.24.186.0/23 maxlen: 23
185.24.185.0/24 maxlen: 24
185.24.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147375289 (0x8c8c4b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b456c9f7f79b987196c468402396a187c156d7c
Validity
Not Before: Jan 1 02:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69f811bf5ca2e0fed93ca7c6ce81dfaa8add44d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:88:7a:fe:2a:97:3b:e6:16:7e:cb:6c:ae:73:
fd:9b:08:e6:ae:ec:49:4b:50:67:ac:a1:7f:e2:e1:
f0:f7:3c:fc:11:2a:6b:e9:65:cd:d0:26:ce:97:68:
c5:bb:6e:da:34:b3:b5:dd:81:6e:e0:b4:cc:0f:b0:
05:b4:2b:b5:1c:ab:47:80:09:2f:78:24:f3:e8:4a:
5f:75:0f:a4:e7:3d:5c:3f:46:ba:e8:e7:39:00:03:
cb:b9:b7:61:e6:d1:69:01:f6:51:63:50:34:4e:fe:
10:74:ef:45:77:3b:5c:1a:28:3b:23:d4:42:23:1c:
41:e5:46:7b:0c:ec:4f:cd:be:56:31:79:bb:bd:be:
b9:b2:f0:57:38:23:0d:77:77:a0:a0:7f:44:e5:68:
b4:23:c4:ff:b2:a8:a4:7c:28:82:b4:a1:95:c0:c5:
b4:a3:65:26:47:ae:01:55:c3:9d:a2:c6:22:78:b0:
01:75:c5:d2:3a:d3:92:e9:b3:bf:02:9c:b6:24:53:
28:1c:5a:89:0e:57:95:67:86:50:1a:10:5f:68:3e:
a1:9e:eb:a2:b8:b3:c6:7e:90:ff:50:c5:f0:98:3d:
0d:2d:0b:11:68:01:21:70:c0:ee:96:d5:51:00:47:
82:a8:cc:51:58:1b:db:b9:cf:e4:c2:41:f5:85:11:
cf:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F8:11:BF:5C:A2:E0:FE:D9:3C:A7:C6:CE:81:DF:AA:8A:DD:44:D7
X509v3 Authority Key Identifier:
keyid:5B:45:6C:9F:7F:79:B9:87:19:6C:46:84:02:39:6A:18:7C:15:6D:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W0Vsn395uYcZbEaEAjlqGHwVbXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1defca-e125-4b00-9252-9fe86dea862a/1/afgRv1yi4P7ZPKfGzoHfqordRNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1defca-e125-4b00-9252-9fe86dea862a/1/W0Vsn395uYcZbEaEAjlqGHwVbXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.184.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:34:e0:38:d1:0c:4e:8b:5f:c3:45:39:3e:2b:08:97:33:d7:
ed:6f:22:83:b5:01:ce:b2:18:df:22:40:dc:f5:8d:c9:50:3c:
8a:e6:1d:93:25:65:c1:df:a6:b5:a6:da:41:bc:69:2d:77:a5:
3c:98:a7:e6:32:34:43:ff:53:b2:01:fe:28:d6:e6:98:f4:1c:
49:1a:42:80:7f:20:08:4c:55:91:79:bb:ce:87:27:ef:f3:27:
2a:af:a4:1e:8d:e1:b0:6c:60:2d:5c:a6:47:9d:71:7e:6d:73:
de:1a:de:89:fb:c5:1f:ef:84:57:43:48:f7:4a:3a:80:61:51:
46:3e:26:e6:4b:a8:7b:cc:ec:00:4f:ec:cf:05:b1:60:24:72:
77:c2:0d:67:f1:b6:0e:57:f6:6c:b7:5e:86:3a:dc:d4:5d:49:
2b:0d:0c:12:60:b2:33:00:6e:2e:5a:63:b8:59:c2:0e:08:0c:
60:b3:10:c2:b7:8a:9f:00:2e:b2:55:80:66:19:42:f5:43:8a:
65:97:b2:de:b7:63:80:5d:03:e7:02:3d:61:16:c6:f9:5b:93:
c9:f9:4a:41:0d:3a:f5:33:26:8a:78:1a:05:c8:af:00:cf:e5:
e7:48:e3:2d:a3:70:a8:44:4e:28:c3:bf:5f:07:80:ea:6a:e2:
09:7f:6a:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org