Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/baef57-c484-4523-b14e-88ebbf99780b/1/g-Qi3z1MJ5vmtWCkO-p4-9V2FF4.roa
File: g-Qi3z1MJ5vmtWCkO-p4-9V2FF4.roa (raw, json)
Hash identifier: 9WMHTtiXFwtX+E0CwUAqypHtyIigVtCIkEGhIQcCy4w=
Subject key identifier: 83:E4:22:DF:3D:4C:27:9B:E6:B5:60:A4:3B:EA:78:FB:D5:76:14:5E
Certificate issuer: /CN=0e91de17437a0025fd1ede10f710f17a3080b3ab
Certificate serial: 04F3E85C
Authority key identifier: 0E:91:DE:17:43:7A:00:25:FD:1E:DE:10:F7:10:F1:7A:30:80:B3:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpHeF0N6ACX9Ht4Q9xDxejCAs6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/baef57-c484-4523-b14e-88ebbf99780b/1/g-Qi3z1MJ5vmtWCkO-p4-9V2FF4.roa
Signing time: Wed 25 May 2022 13:44:13 +0000
ROA not before: Wed 25 May 2022 13:44:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205763
IP address blocks: 185.207.124.0/24 maxlen: 24
185.207.125.0/24 maxlen: 24
185.207.127.0/24 maxlen: 24
2a0b:2340::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83093596 (0x4f3e85c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e91de17437a0025fd1ede10f710f17a3080b3ab
Validity
Not Before: May 25 13:44:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83e422df3d4c279be6b560a43bea78fbd576145e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:0f:0f:08:42:dd:a6:4f:31:25:b3:43:ec:3f:
c9:3a:c3:a4:af:8f:58:ae:e6:fc:5b:6e:c9:61:6c:
b8:c2:cd:64:04:1a:35:20:bc:36:f1:f9:a4:af:39:
ec:12:0a:27:cd:ae:f6:59:e4:ae:57:13:26:35:d6:
d5:e2:f5:8f:2f:b1:52:58:03:8c:ff:8e:20:a6:67:
5f:4d:74:37:17:93:7d:73:54:65:92:30:d5:67:61:
27:01:4c:40:90:55:97:df:44:35:f0:02:06:d1:d4:
60:c6:6d:ba:cb:be:2a:ed:0c:a2:93:cd:98:e3:92:
b5:23:8f:2e:46:85:47:7f:f5:53:32:79:f0:f7:53:
cb:c6:8e:e7:86:21:d8:16:7d:a0:f1:39:5f:b6:f7:
99:02:41:ae:22:5c:c6:c7:aa:c4:49:a7:b6:ce:7e:
c0:63:7d:7b:ae:75:3c:a9:cf:22:f7:0c:68:bc:ff:
3d:19:e5:62:e3:86:29:ac:b6:95:f8:b4:8d:28:8b:
c9:a2:39:25:b2:13:dd:ba:10:26:2b:d5:5e:cd:20:
98:ed:06:9c:d5:ce:61:27:a0:dc:85:b9:98:32:8c:
6e:92:a9:31:2c:41:ce:98:c5:02:db:0c:57:12:13:
ba:a7:81:10:c7:88:44:6b:f4:c5:7a:06:24:76:a6:
b5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E4:22:DF:3D:4C:27:9B:E6:B5:60:A4:3B:EA:78:FB:D5:76:14:5E
X509v3 Authority Key Identifier:
keyid:0E:91:DE:17:43:7A:00:25:FD:1E:DE:10:F7:10:F1:7A:30:80:B3:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpHeF0N6ACX9Ht4Q9xDxejCAs6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/baef57-c484-4523-b14e-88ebbf99780b/1/g-Qi3z1MJ5vmtWCkO-p4-9V2FF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/baef57-c484-4523-b14e-88ebbf99780b/1/DpHeF0N6ACX9Ht4Q9xDxejCAs6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.124.0/23
185.207.127.0/24
IPv6:
2a0b:2340::/29
Signature Algorithm: sha256WithRSAEncryption
59:19:b9:b8:cd:7c:65:81:68:96:75:61:ec:9b:e7:89:0b:fe:
c0:f6:0f:25:14:5f:eb:ed:bc:89:ab:2c:8b:fc:fb:84:1e:e6:
e3:de:ab:c9:c0:db:97:1a:08:e6:7a:7d:45:3a:4f:0c:bb:df:
7f:2c:83:a5:be:cd:17:46:40:8e:fc:48:45:31:0c:91:7f:15:
d8:a5:83:31:db:af:7f:b0:03:6c:a7:9f:3f:45:24:21:60:ba:
8e:6e:d7:c2:ed:f4:04:f5:36:8f:8c:87:92:df:2d:6b:60:73:
fc:b0:c1:33:02:29:37:9f:63:fb:c0:4e:d7:42:2b:3b:0a:1c:
79:aa:d9:4b:62:37:69:b3:6c:16:7c:ac:1c:eb:ab:a5:88:4e:
c3:a5:e4:10:f1:65:a9:29:a8:10:3e:96:50:9c:1e:c1:e3:4d:
25:30:e9:f0:de:d3:87:50:39:23:97:ac:54:be:0b:53:a0:ed:
1d:e1:5a:53:96:41:86:9c:6c:f4:e7:00:23:84:3e:a5:ba:7f:
fc:35:b8:59:70:c9:0f:2c:ab:50:a5:ff:97:66:2b:30:d7:c3:
a2:b4:01:a0:f8:db:c2:09:9a:cc:83:a7:9f:f9:25:c2:d3:cc:
83:63:45:4c:8b:ab:40:5f:f9:57:f2:31:00:a9:fd:71:19:17:
c1:3b:62:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:24 2024 by rpki-client on console-fra.rpki-client.org