Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/d3c8f7-ff8d-42b8-a762-45377418fbb2/1/kgbb8MmvRVhzoqOyyYcPPmDvwiw.roa
File: kgbb8MmvRVhzoqOyyYcPPmDvwiw.roa (raw, json)
Hash identifier: L6ul7dvt9aT5V4/01F/25KFdX+y1zhVOTx8tBiFukH8=
Subject key identifier: 92:06:DB:F0:C9:AF:45:58:73:A2:A3:B2:C9:87:0F:3E:60:EF:C2:2C
Certificate issuer: /CN=5c32a925c55f1d4e6e40c10f4e8e019b483c1d50
Certificate serial: 0184D8D15616CB6065B1B0318A297E2D2C0B
Authority key identifier: 5C:32:A9:25:C5:5F:1D:4E:6E:40:C1:0F:4E:8E:01:9B:48:3C:1D:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XDKpJcVfHU5uQMEPTo4Bm0g8HVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/d3c8f7-ff8d-42b8-a762-45377418fbb2/1/kgbb8MmvRVhzoqOyyYcPPmDvwiw.roa
Signing time: Sat 03 Dec 2022 16:28:28 +0000
ROA not before: Sat 03 Dec 2022 16:28:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.250.187.0/24 maxlen: 24
185.250.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d8:d1:56:16:cb:60:65:b1:b0:31:8a:29:7e:2d:2c:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c32a925c55f1d4e6e40c10f4e8e019b483c1d50
Validity
Not Before: Dec 3 16:28:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9206dbf0c9af455873a2a3b2c9870f3e60efc22c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:eb:59:5d:a6:b9:60:9d:1d:d1:99:52:1e:d9:
03:d8:a7:3f:42:b8:b0:ab:13:94:19:47:2d:8c:c5:
0b:e5:bd:1f:d2:d8:23:76:51:ac:30:24:6b:e0:ee:
63:fd:b4:89:45:c8:98:79:cf:06:73:52:f9:77:b3:
7d:1a:e4:83:35:bd:39:b4:d1:d0:72:4a:6d:83:35:
4b:11:e1:9e:27:e6:ab:15:10:99:b5:5a:95:9a:c9:
04:8f:e2:41:65:8e:dd:32:ca:9d:74:98:84:f1:f6:
0a:ed:f3:f0:e1:57:50:06:8b:bc:66:1a:56:01:2c:
e3:42:fb:79:01:34:c5:65:55:51:64:7e:06:a5:c6:
4f:07:f4:cd:6d:b2:87:07:39:ff:58:ca:5e:19:3b:
5b:c7:13:f4:52:2d:49:85:46:06:2b:f2:5a:c5:b2:
ca:c1:9d:0c:f0:30:2a:9e:ce:64:df:24:a4:2b:a8:
a7:22:03:58:9e:f4:48:d8:c7:f2:b6:b0:8a:8e:2e:
33:d3:a8:ca:04:96:66:81:65:6b:31:9c:6b:c2:dc:
4a:56:43:bb:10:cc:87:fa:92:9a:b8:13:4b:79:6e:
cc:b9:bb:d5:7d:bd:ba:32:e2:8b:13:ba:66:ad:8d:
52:25:fa:d9:a4:de:e8:98:35:12:f4:1d:77:86:81:
56:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:06:DB:F0:C9:AF:45:58:73:A2:A3:B2:C9:87:0F:3E:60:EF:C2:2C
X509v3 Authority Key Identifier:
keyid:5C:32:A9:25:C5:5F:1D:4E:6E:40:C1:0F:4E:8E:01:9B:48:3C:1D:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XDKpJcVfHU5uQMEPTo4Bm0g8HVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/d3c8f7-ff8d-42b8-a762-45377418fbb2/1/kgbb8MmvRVhzoqOyyYcPPmDvwiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/d3c8f7-ff8d-42b8-a762-45377418fbb2/1/XDKpJcVfHU5uQMEPTo4Bm0g8HVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.186.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:1e:e4:28:26:11:5b:62:72:93:6a:f9:e6:10:16:13:df:0c:
b3:2d:9d:31:52:93:b9:5f:f0:e4:78:63:d6:ac:5b:f1:f8:ff:
45:f2:36:bb:9e:ce:bb:56:08:55:2b:e4:8a:e7:ac:ca:ff:45:
b4:18:39:ca:38:62:0c:36:da:62:1e:f3:6f:d4:72:d3:51:a6:
71:00:02:a9:c1:b5:c1:f8:7f:02:25:61:c7:01:49:88:39:2b:
06:2b:5a:0f:30:40:6f:5e:4e:7b:94:ba:52:b5:ce:c3:ba:99:
d8:92:1f:48:b4:2b:fa:89:78:6e:3e:4d:7f:7f:66:e4:e3:b7:
4c:ff:94:a2:03:68:e9:6f:3e:37:c2:93:86:d0:cd:28:a1:ba:
35:dc:39:db:e7:2d:60:9e:2c:16:e6:43:8f:c9:28:bd:17:d8:
89:fe:82:5d:19:48:d9:4b:c3:d8:8d:5d:ea:60:b0:6d:af:06:
1b:35:1a:99:28:c2:42:25:3f:65:97:ef:89:eb:16:ee:09:d8:
7c:84:7a:1e:e1:55:99:19:02:74:14:2c:1b:ec:46:40:d0:28:
df:1e:27:10:e8:71:e4:db:2d:fe:9d:70:cb:fa:2e:3e:e7:b8:
dc:88:14:ec:47:57:f9:27:4e:22:b7:8c:6f:d6:18:28:a2:4b:
db:9c:5b:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:05 2024 by rpki-client on console-fra.rpki-client.org