Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0205f2-df2a-41d6-bc2d-72827fe6d7af/1/YgM5vgYejyWmzpb9mZ26HTqda0E.roa
File: YgM5vgYejyWmzpb9mZ26HTqda0E.roa (raw, json)
Hash identifier: 8OoroupRJko0i490a/wwUBwgNroW5DzCtBvaCYa2+Ys=
Subject key identifier: 62:03:39:BE:06:1E:8F:25:A6:CE:96:FD:99:9D:BA:1D:3A:9D:6B:41
Certificate issuer: /CN=7e058377510a3a9245ce72cbe88e0efa19719204
Certificate serial: 0198798F
Authority key identifier: 7E:05:83:77:51:0A:3A:92:45:CE:72:CB:E8:8E:0E:FA:19:71:92:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fgWDd1EKOpJFznLL6I4O-hlxkgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0205f2-df2a-41d6-bc2d-72827fe6d7af/1/YgM5vgYejyWmzpb9mZ26HTqda0E.roa
Signing time: Sat 01 Jan 2022 09:01:03 +0000
ROA not before: Sat 01 Jan 2022 09:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42468
IP address blocks: 185.83.211.0/24 maxlen: 24
185.83.208.0/24 maxlen: 24
185.83.209.0/24 maxlen: 24
185.83.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26769807 (0x198798f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e058377510a3a9245ce72cbe88e0efa19719204
Validity
Not Before: Jan 1 09:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=620339be061e8f25a6ce96fd999dba1d3a9d6b41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:fb:28:16:3c:3a:a6:04:d1:70:14:78:b8:e3:
36:87:f6:aa:0e:65:72:d3:12:ab:56:53:bc:36:c7:
42:44:5e:37:8e:49:7a:d0:63:b9:89:ed:89:5b:47:
56:77:be:8c:6a:db:2d:45:9e:22:80:8f:5d:43:c1:
ea:c1:5e:1d:5b:09:68:3e:e6:fa:98:41:56:49:70:
5c:7f:bd:7c:39:27:d1:3d:6a:fb:e1:5e:64:ba:6a:
5e:5b:71:6b:c1:90:ac:57:a2:47:11:79:c1:10:2d:
ea:fd:ec:75:a5:aa:36:04:92:26:dc:78:44:16:a7:
21:36:69:22:b0:97:57:db:92:59:90:c7:9e:eb:bc:
f2:2b:fa:a0:97:3d:1c:74:de:bf:34:cb:6d:45:66:
e5:12:c7:1a:ba:55:ec:77:73:54:32:ac:10:e7:28:
e5:a6:d7:02:e8:ad:0c:03:95:e4:9d:1e:43:fb:00:
d6:a0:40:be:06:6c:e6:48:8c:18:40:8a:d3:36:70:
9a:e8:73:c9:fb:20:b6:d2:ce:d6:5b:d8:80:cf:e2:
18:d9:05:d9:52:2f:00:9c:fe:6a:73:cf:aa:b5:d8:
4b:12:99:e3:62:e4:0c:34:14:a2:43:71:fb:ca:bc:
e8:26:d8:cb:87:a4:ff:83:46:a0:5d:0c:ed:e3:2f:
6d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:03:39:BE:06:1E:8F:25:A6:CE:96:FD:99:9D:BA:1D:3A:9D:6B:41
X509v3 Authority Key Identifier:
keyid:7E:05:83:77:51:0A:3A:92:45:CE:72:CB:E8:8E:0E:FA:19:71:92:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fgWDd1EKOpJFznLL6I4O-hlxkgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0205f2-df2a-41d6-bc2d-72827fe6d7af/1/YgM5vgYejyWmzpb9mZ26HTqda0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0205f2-df2a-41d6-bc2d-72827fe6d7af/1/fgWDd1EKOpJFznLL6I4O-hlxkgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.208.0/22
Signature Algorithm: sha256WithRSAEncryption
17:16:8b:5e:9e:56:36:20:31:9d:ab:a5:64:a1:70:2f:58:e1:
6b:f6:92:96:39:54:55:87:b5:8c:0e:5c:53:37:41:12:c8:1c:
a3:df:7c:13:d9:a2:fb:1a:5a:68:82:bb:db:f3:97:84:f4:cb:
d0:32:6f:8e:1e:5e:b7:41:33:12:94:cb:b0:e1:e5:48:dc:8e:
b2:ca:07:3c:a5:6e:28:dc:84:8b:3b:7b:c8:6f:b7:10:21:58:
63:c8:f7:ab:e9:e9:ba:85:6f:d3:47:07:cd:c9:7c:15:0b:55:
bd:f0:2a:e3:89:27:5f:01:f9:29:8b:4f:8b:a0:f4:3f:07:bf:
4d:7c:d1:44:ed:eb:f6:c5:3d:1c:19:82:4d:a4:2d:1a:32:79:
c6:4a:2e:3e:eb:8c:2c:04:35:20:3c:6f:b8:25:16:09:04:50:
64:5c:25:60:91:53:d2:a9:f0:c8:4d:be:3a:81:f9:3a:1a:88:
78:56:64:b1:46:99:12:03:f9:c2:3d:24:0a:ef:23:c1:bc:b8:
62:87:1c:0d:46:19:f4:3d:68:cf:59:25:d6:c1:0f:e4:be:c2:
36:f9:6d:fa:d9:d8:7c:ca:1a:c0:4f:33:19:9a:17:4b:3e:d2:
46:00:3a:86:76:d9:35:c8:6a:11:c1:6d:f3:03:95:cd:6a:d5:
b5:7c:0f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:27 2024 by rpki-client on console-fra.rpki-client.org