Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/d52eac-c7e2-4881-88e3-471d42c2d806/1/kwY3bxrQuHU79N2veufFgDcgyXk.roa
File: kwY3bxrQuHU79N2veufFgDcgyXk.roa (raw, json)
Hash identifier: SDa61pEGURjVmNpnHv1kdyHRq631tSEZKKXHArajTm0=
Subject key identifier: 93:06:37:6F:1A:D0:B8:75:3B:F4:DD:AF:7A:E7:C5:80:37:20:C9:79
Certificate issuer: /CN=49179e7cf60488c3ef5b770d21aeb147da4c7cee
Certificate serial: 0381F007
Authority key identifier: 49:17:9E:7C:F6:04:88:C3:EF:5B:77:0D:21:AE:B1:47:DA:4C:7C:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SReefPYEiMPvW3cNIa6xR9pMfO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/d52eac-c7e2-4881-88e3-471d42c2d806/1/kwY3bxrQuHU79N2veufFgDcgyXk.roa
Signing time: Sat 01 Jan 2022 15:07:08 +0000
ROA not before: Sat 01 Jan 2022 15:07:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44400
IP address blocks: 185.204.181.0/24 maxlen: 24
185.204.180.0/24 maxlen: 24
185.204.180.0/22 maxlen: 22
185.204.183.0/24 maxlen: 24
185.204.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58847239 (0x381f007)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49179e7cf60488c3ef5b770d21aeb147da4c7cee
Validity
Not Before: Jan 1 15:07:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9306376f1ad0b8753bf4ddaf7ae7c5803720c979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f0:67:57:c4:93:30:c8:93:ad:2a:2a:68:35:
19:08:7a:de:56:d1:e3:cf:0e:de:aa:b6:f8:5b:49:
5e:37:07:53:5a:1e:73:f9:74:6d:8a:75:d0:f1:34:
be:9f:26:bf:23:18:89:27:a1:91:79:75:2d:db:f7:
60:dd:f2:46:d1:ba:65:6e:34:e7:ef:41:b1:a9:a4:
bf:db:03:b3:b2:7e:10:0c:04:8a:7c:60:a4:e8:6a:
d6:31:03:6f:ff:7b:40:c7:77:83:c6:87:96:1b:d8:
36:23:dd:c2:28:d3:24:a0:56:23:08:27:9e:69:29:
79:ad:11:81:a0:a9:86:6a:ec:ac:5a:a1:2a:7a:7d:
73:83:9c:69:16:48:56:0f:84:45:df:04:3e:f2:22:
0f:aa:20:d9:41:72:06:ab:4e:6f:0a:2f:1f:67:36:
bf:6b:30:a1:a0:3a:9f:b0:e7:4a:2d:64:99:3c:ff:
6d:fe:2a:9e:71:1a:27:93:bb:47:f2:bb:cf:7e:d8:
94:cc:6a:a8:e0:bb:85:ec:6e:43:07:a9:1f:f1:64:
cc:d4:0d:da:89:a6:59:8e:64:11:44:e2:92:2a:3d:
07:14:b9:07:0f:83:e0:8b:9e:ca:52:99:1c:ff:b1:
85:77:29:bf:12:fb:64:6c:35:08:e4:25:5d:1a:34:
d8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:06:37:6F:1A:D0:B8:75:3B:F4:DD:AF:7A:E7:C5:80:37:20:C9:79
X509v3 Authority Key Identifier:
keyid:49:17:9E:7C:F6:04:88:C3:EF:5B:77:0D:21:AE:B1:47:DA:4C:7C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SReefPYEiMPvW3cNIa6xR9pMfO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/d52eac-c7e2-4881-88e3-471d42c2d806/1/kwY3bxrQuHU79N2veufFgDcgyXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/d52eac-c7e2-4881-88e3-471d42c2d806/1/SReefPYEiMPvW3cNIa6xR9pMfO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.180.0/22
Signature Algorithm: sha256WithRSAEncryption
35:3b:d8:09:cf:4e:2c:8e:c6:7d:88:70:28:21:72:37:11:9a:
63:1e:75:a3:a1:40:fc:6b:01:10:dd:01:db:7d:fe:4f:56:e9:
a9:e1:73:0b:97:ca:21:b4:59:dd:d5:e2:2b:d3:83:51:65:86:
e8:6e:a9:a7:13:1a:98:43:de:aa:14:3d:b0:ec:5b:0f:30:36:
ec:0c:d2:59:60:66:9a:42:d1:23:99:bd:e8:71:b6:69:29:e2:
b1:71:24:ea:5a:82:60:46:1e:7d:d8:e6:f8:33:9c:0c:68:14:
a7:07:16:51:84:51:64:1c:3f:65:d7:65:c2:75:41:95:b7:11:
07:0e:8a:17:83:3b:1a:f7:ce:99:e4:b6:b8:f8:09:42:56:d0:
a9:77:f8:3d:b3:fc:d6:01:dc:88:71:b9:ea:00:9e:2e:72:d8:
3e:25:15:24:32:83:69:f8:ea:65:3e:01:7b:82:4d:7e:26:b1:
50:55:2b:de:1a:18:84:9c:f4:e7:f4:90:33:20:aa:d8:28:96:
45:3b:75:41:fa:16:67:fb:da:23:bc:52:03:71:5b:7c:a5:bd:
49:b6:f5:93:1f:0b:55:70:8b:70:5f:e1:d9:32:37:ba:54:d5:
05:f7:4c:30:84:5b:0f:26:70:2f:e3:d8:4c:18:f4:a3:c7:e3:
15:64:26:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:50 2024 by rpki-client on console-fra.rpki-client.org