Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3f7e56-0916-47ac-8586-a9388f31b47e/1/gMN_Q6TT7ngSTCe390lpF4VqwoY.roa
File: gMN_Q6TT7ngSTCe390lpF4VqwoY.roa (raw, json)
Hash identifier: fHRQBEbfvZfZuLrGiQ/IBim7XG34zNHbolZEZunMSGc=
Subject key identifier: 80:C3:7F:43:A4:D3:EE:78:12:4C:27:B7:F7:49:69:17:85:6A:C2:86
Certificate issuer: /CN=3cd37ec23719b2f142f46e6f3317664034adf598
Certificate serial: 10FFC5D3
Authority key identifier: 3C:D3:7E:C2:37:19:B2:F1:42:F4:6E:6F:33:17:66:40:34:AD:F5:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNN-wjcZsvFC9G5vMxdmQDSt9Zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3f7e56-0916-47ac-8586-a9388f31b47e/1/gMN_Q6TT7ngSTCe390lpF4VqwoY.roa
Signing time: Sat 01 Jan 2022 08:59:41 +0000
ROA not before: Sat 01 Jan 2022 08:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202391
IP address blocks: 185.104.192.0/24 maxlen: 24
185.83.181.0/24 maxlen: 24
185.83.180.0/24 maxlen: 24
185.83.183.0/24 maxlen: 24
185.170.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 285197779 (0x10ffc5d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cd37ec23719b2f142f46e6f3317664034adf598
Validity
Not Before: Jan 1 08:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80c37f43a4d3ee78124c27b7f7496917856ac286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4d:20:c7:91:25:9e:af:e1:c9:51:59:f4:07:
6e:ba:e3:c1:47:b5:81:a6:b5:ae:f8:6f:59:19:5b:
e4:11:ca:db:c8:91:37:70:63:4a:ff:b3:b6:e2:32:
83:8a:8f:5f:97:1c:a0:66:02:93:92:a0:09:a5:33:
86:6e:96:6c:16:e1:98:2c:3e:1d:18:64:f4:ca:12:
1a:0b:45:7a:c9:ad:94:d9:39:5a:76:42:27:6d:6d:
cd:12:2f:68:1e:eb:80:78:32:2b:f8:7c:94:dc:9e:
a6:f9:08:a6:fa:7b:ac:7a:7a:fc:e8:07:5d:8a:cc:
28:57:00:66:d5:4d:19:23:33:79:9c:40:18:e4:8f:
03:3b:db:b7:ed:ed:56:e2:61:2f:e8:09:a8:83:ca:
2e:2f:9b:f1:6a:89:48:f1:ed:54:c6:98:21:c1:9d:
91:8e:2e:b1:1f:56:cd:b7:50:bd:19:c3:c0:3f:1f:
37:fe:59:30:ad:06:69:e8:ee:d6:c8:78:ba:0e:55:
bf:05:42:c7:25:f5:48:e6:a4:78:3d:25:be:c9:bf:
94:e0:33:30:fe:cf:0a:aa:1e:0f:3e:4e:f0:a2:e0:
34:4d:bd:8a:be:7d:0c:70:30:fc:55:e2:21:f4:41:
33:bd:5c:ce:d2:6f:34:60:5d:0e:47:57:7b:98:a8:
98:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C3:7F:43:A4:D3:EE:78:12:4C:27:B7:F7:49:69:17:85:6A:C2:86
X509v3 Authority Key Identifier:
keyid:3C:D3:7E:C2:37:19:B2:F1:42:F4:6E:6F:33:17:66:40:34:AD:F5:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNN-wjcZsvFC9G5vMxdmQDSt9Zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3f7e56-0916-47ac-8586-a9388f31b47e/1/gMN_Q6TT7ngSTCe390lpF4VqwoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3f7e56-0916-47ac-8586-a9388f31b47e/1/PNN-wjcZsvFC9G5vMxdmQDSt9Zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.180.0/23
185.83.183.0/24
185.104.192.0/24
185.170.236.0/22
Signature Algorithm: sha256WithRSAEncryption
72:a4:e5:c8:bd:28:60:33:3a:f3:9d:99:4a:63:62:ae:02:5d:
4d:29:9b:1f:7c:02:8a:b5:85:b7:26:06:bc:6f:6b:89:44:0e:
ef:f0:b1:d3:dd:8b:37:fb:a9:f7:48:44:9a:4d:7b:bd:96:d8:
4b:d4:43:27:5f:06:47:91:0f:68:cc:2d:7b:20:1b:37:0c:6c:
2e:2b:e2:b4:4e:60:48:bd:aa:41:56:75:bc:50:d9:66:fd:b5:
d4:dd:9c:6e:e8:4f:0d:07:c6:5d:30:85:01:ce:5b:08:08:ee:
5e:ed:f5:54:38:3f:55:96:11:3e:65:fd:0c:76:93:a5:ba:69:
bf:c6:bd:14:24:cf:61:0c:f4:62:00:b6:20:ec:a6:a1:18:0c:
e0:b9:aa:45:96:a6:2c:5d:86:24:03:32:3a:dc:5e:72:6e:af:
1d:33:9f:77:ac:16:8c:3d:38:12:36:0c:96:33:d8:10:c2:bf:
87:6b:4f:29:d4:34:f2:f2:6a:40:df:b0:45:77:cc:a6:b9:5d:
14:b5:18:a7:24:57:51:b0:90:91:09:d3:56:32:77:d1:7e:0a:
83:cf:9a:7e:36:87:a0:22:53:3f:88:ce:2d:cc:87:be:a8:d1:
57:1b:48:e7:f1:ed:78:cd:a5:ad:60:cf:db:8f:b7:b9:9c:44:
5d:c7:fd:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:48 2023 by rpki-client on console-fra.rpki-client.org