Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/gpHWOk_wyPaZSu3MXs13Y67_3M0.roa
File: gpHWOk_wyPaZSu3MXs13Y67_3M0.roa (raw, json)
Hash identifier: NfACW/mYc1mwka0RpXSAWG25OBFFPxP4cUJe40it8Yg=
Subject key identifier: 82:91:D6:3A:4F:F0:C8:F6:99:4A:ED:CC:5E:CD:77:63:AE:FF:DC:CD
Certificate issuer: /CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Certificate serial: 0FE56201
Authority key identifier: B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/gpHWOk_wyPaZSu3MXs13Y67_3M0.roa
Signing time: Fri 03 Jun 2022 19:31:20 +0000
ROA not before: Fri 03 Jun 2022 19:31:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64413
IP address blocks: 185.233.15.0/24 maxlen: 24
185.233.14.0/24 maxlen: 24
185.233.13.0/24 maxlen: 24
185.233.12.0/24 maxlen: 24
185.237.10.0/24 maxlen: 24
185.237.9.0/24 maxlen: 24
185.237.8.0/24 maxlen: 24
185.237.11.0/24 maxlen: 24
185.189.123.0/24 maxlen: 24
185.189.122.0/24 maxlen: 24
185.189.121.0/24 maxlen: 24
185.189.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266691073 (0xfe56201)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Validity
Not Before: Jun 3 19:31:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8291d63a4ff0c8f6994aedcc5ecd7763aeffdccd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a8:ba:26:0e:56:b3:4e:38:bd:6a:32:d7:8f:
af:57:db:90:66:68:c7:83:92:ea:36:a2:f6:32:7c:
2d:33:de:a4:2c:a0:3f:1e:e9:30:ba:64:18:5a:05:
6f:86:db:01:29:93:59:b2:07:ee:4f:17:b8:50:21:
01:81:e7:40:23:a7:e0:61:0e:61:e0:e9:e8:fc:0d:
13:8e:ac:05:f1:bb:72:b1:21:7f:65:01:54:1f:80:
75:04:f4:0f:fa:90:9a:9f:5f:d4:8d:77:6d:92:d1:
47:67:7e:3e:aa:b2:53:c1:a9:d3:cb:b3:7c:08:2d:
3c:10:07:5c:c5:af:1b:04:41:6a:11:71:95:8f:cc:
0e:2e:c8:9d:04:2b:4b:8c:83:f0:7e:bc:5a:ae:3d:
ba:34:61:11:bd:20:c0:3f:7c:a2:df:68:11:cc:a3:
16:2f:98:dc:9a:f6:72:01:b8:7c:2a:1c:5a:0b:5a:
07:b2:4e:14:63:b1:02:e6:35:66:8e:50:d8:28:79:
d7:20:ed:29:aa:f1:d0:dd:4a:20:c2:1a:4d:b6:2a:
7f:de:9c:8d:fa:50:e1:a0:7e:0a:dd:c0:3d:b7:32:
1c:1c:17:7b:2f:89:d5:9c:05:bb:13:ea:4b:11:64:
64:98:fb:91:3c:be:1e:9b:00:3c:44:ac:df:57:8b:
fe:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:91:D6:3A:4F:F0:C8:F6:99:4A:ED:CC:5E:CD:77:63:AE:FF:DC:CD
X509v3 Authority Key Identifier:
keyid:B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/gpHWOk_wyPaZSu3MXs13Y67_3M0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/ttFBGNvSJymNqoDHrKsR7qbWPiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.120.0/22
185.233.12.0/22
185.237.8.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:6b:06:a1:eb:5e:7e:24:37:30:cb:74:f7:c3:44:e8:45:7b:
22:fa:27:27:45:ea:16:18:97:96:72:0f:14:62:3d:ac:5f:05:
b5:08:ab:22:3e:80:38:5d:dd:58:b3:05:c9:df:38:50:69:85:
9a:c7:2a:5d:e2:ea:02:eb:57:80:56:2b:6e:69:6b:4d:02:ef:
99:f9:0b:0b:8e:6b:38:ac:56:e6:aa:55:63:c7:96:07:80:a3:
74:b6:6b:9d:ef:d2:81:2f:eb:94:a2:1a:a9:83:d5:69:a3:47:
91:d7:2a:1c:65:22:8a:af:cc:93:d3:4b:4e:b0:55:14:a6:58:
a8:07:1a:ba:47:9d:e9:df:77:89:45:06:ae:22:41:23:70:21:
04:3f:37:3f:95:cb:55:5a:7f:a4:eb:20:7c:c1:8d:fa:99:b1:
ea:7b:3c:25:96:48:54:b6:45:4c:11:8c:7d:13:6f:ab:17:40:
55:6c:4f:3a:2f:cf:cb:20:48:6d:4c:39:58:c6:e1:62:ba:9b:
5b:94:8f:be:43:3a:0a:dd:67:87:95:40:ef:f6:69:e2:1d:81:
b5:49:a9:ac:fc:4d:66:88:30:69:bf:23:26:f8:b4:6e:35:8f:
a7:18:4a:21:04:ad:e8:ed:56:ec:c7:c7:d6:f2:3b:63:eb:c9:
d3:97:df:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:23 2024 by rpki-client on console-fra.rpki-client.org