Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/d38767-2fc5-4c50-a27f-7429b22772c3/1/1uIvnxacD7WnjhGfb2Vll1v_Nz8.roa
File: 1uIvnxacD7WnjhGfb2Vll1v_Nz8.roa (raw, json)
Hash identifier: EpY9ntQB4gSuVLaLu4QhZgyKr73g7zCcICwFgZKk10g=
Subject key identifier: D6:E2:2F:9F:16:9C:0F:B5:A7:8E:11:9F:6F:65:65:97:5B:FF:37:3F
Certificate issuer: /CN=50480549481968d43406127653f780abbf9a117b
Certificate serial: 03F1445B
Authority key identifier: 50:48:05:49:48:19:68:D4:34:06:12:76:53:F7:80:AB:BF:9A:11:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UEgFSUgZaNQ0BhJ2U_eAq7-aEXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/d38767-2fc5-4c50-a27f-7429b22772c3/1/1uIvnxacD7WnjhGfb2Vll1v_Nz8.roa
Signing time: Sat 01 Jan 2022 06:05:41 +0000
ROA not before: Sat 01 Jan 2022 06:05:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34971
IP address blocks: 185.136.177.0/24 maxlen: 24
185.136.176.0/24 maxlen: 24
185.136.176.0/22 maxlen: 24
2a06:fdc0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66143323 (0x3f1445b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50480549481968d43406127653f780abbf9a117b
Validity
Not Before: Jan 1 06:05:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6e22f9f169c0fb5a78e119f6f6565975bff373f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:fe:f7:16:b9:e4:84:c6:ce:3b:72:53:45:b4:
8e:54:0a:05:17:1e:c6:02:c2:ba:39:40:c7:f8:8f:
ec:87:d1:06:95:39:f0:0a:f6:36:92:51:54:1b:3d:
c2:f5:36:6b:b9:ae:f0:bd:dc:74:94:e9:68:9d:c7:
1f:3c:04:d4:29:b2:83:d6:8e:f0:62:62:0b:a7:fe:
7a:09:a9:4b:46:ff:c3:56:54:6d:d7:9b:c2:d5:35:
cd:f7:06:7a:f0:58:fe:4f:e5:93:9e:17:91:74:31:
48:2d:d7:7f:e4:d8:19:c4:3b:71:af:e0:c5:bb:bd:
42:86:a7:6d:eb:5c:bf:f4:e9:93:f0:83:0b:64:34:
c9:04:62:4e:6e:d8:a4:59:5b:d1:69:8a:37:c3:95:
3b:c0:7a:cd:b6:f2:d9:14:cc:a9:98:80:1f:17:9e:
f5:d0:b4:8c:36:0d:9a:21:bf:d5:30:15:47:14:8b:
ac:ab:9b:90:4e:9c:44:84:01:7e:58:1d:29:c8:73:
d8:02:ac:bc:4d:84:bb:57:e5:90:74:04:54:3f:47:
9e:8a:1f:5e:ac:8d:b9:12:37:37:1a:a6:8b:c7:67:
65:9d:2c:58:68:b1:97:29:ee:ef:d9:b1:92:15:72:
7b:65:5e:49:d1:98:95:3e:76:02:9c:5b:90:fc:90:
df:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E2:2F:9F:16:9C:0F:B5:A7:8E:11:9F:6F:65:65:97:5B:FF:37:3F
X509v3 Authority Key Identifier:
keyid:50:48:05:49:48:19:68:D4:34:06:12:76:53:F7:80:AB:BF:9A:11:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UEgFSUgZaNQ0BhJ2U_eAq7-aEXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d38767-2fc5-4c50-a27f-7429b22772c3/1/1uIvnxacD7WnjhGfb2Vll1v_Nz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d38767-2fc5-4c50-a27f-7429b22772c3/1/UEgFSUgZaNQ0BhJ2U_eAq7-aEXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.176.0/22
IPv6:
2a06:fdc0::/32
Signature Algorithm: sha256WithRSAEncryption
04:fb:dd:98:9e:66:df:15:f0:46:6c:3c:7e:8a:dc:d7:f5:38:
9b:20:b1:38:19:ba:d1:67:f4:ca:5d:2c:f2:61:b5:98:15:f0:
87:53:8d:90:db:0f:87:09:d3:7e:89:8f:69:ac:32:34:2f:00:
31:ae:26:d6:39:a0:06:d7:5d:da:ad:8d:3b:e2:db:dc:7f:06:
ef:bd:30:c6:53:66:7d:5f:2b:bd:7d:1b:fe:84:1f:78:49:82:
aa:ce:ef:df:e8:a7:9e:6c:e7:5b:33:0f:99:46:8c:d0:cd:1c:
68:17:81:31:1d:a7:85:fa:46:5f:88:25:9d:47:ab:db:b9:f2:
fa:b9:e5:55:3c:03:8f:c9:32:df:ad:fa:c0:46:d4:be:af:aa:
83:66:0a:81:2f:e3:80:62:ae:ac:5c:8d:af:f7:7b:cc:4a:c6:
ca:9b:2b:53:b6:b9:45:5f:9f:49:3c:1f:d5:70:67:41:33:93:
8f:64:a4:14:99:13:c5:ab:19:35:53:fa:9d:78:3c:7b:a3:ae:
df:eb:bd:db:4d:11:2a:2a:b5:08:b8:88:75:cf:b8:cd:9e:bd:
01:13:e4:49:b5:ab:25:ee:09:ea:b5:2a:47:40:b2:ba:02:86:
61:dd:8e:2c:ac:65:63:2d:a3:61:d5:3a:fd:99:00:d0:a1:25:
c2:5c:34:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:27 2024 by rpki-client on console-fra.rpki-client.org