Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/swISPDpaG3hmZf2V-a0fIQdjLPY.roa
File: swISPDpaG3hmZf2V-a0fIQdjLPY.roa (raw, json)
Hash identifier: V0mB3NvmnoJE5ESPM/yX1RGqXl98yE1iZtICbdtFmvY=
Subject key identifier: B3:02:12:3C:3A:5A:1B:78:66:65:FD:95:F9:AD:1F:21:07:63:2C:F6
Certificate issuer: /CN=3a34889251e7cb133e906c70891ba1a0495ed860
Certificate serial: 02B656
Authority key identifier: 3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/swISPDpaG3hmZf2V-a0fIQdjLPY.roa
Signing time: Mon 28 Feb 2022 20:04:57 +0000
ROA not before: Mon 28 Feb 2022 20:04:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 185.185.211.0/24 maxlen: 24
185.185.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177750 (0x2b656)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a34889251e7cb133e906c70891ba1a0495ed860
Validity
Not Before: Feb 28 20:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b302123c3a5a1b786665fd95f9ad1f2107632cf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:67:34:69:79:12:16:38:e2:eb:16:ff:c6:98:
73:f7:b7:76:d9:9a:67:0c:b0:7d:de:f8:c1:64:02:
ce:60:ed:1f:3a:ee:6d:1a:bb:1a:c3:1d:fa:3d:8f:
fc:49:9a:ee:ea:0c:b0:3e:fa:5c:a2:29:cd:8d:6d:
1d:32:fd:08:9c:aa:8e:f8:d4:07:42:07:27:6e:91:
0b:ac:01:2d:f3:8f:5f:02:d1:93:d4:12:35:8e:d6:
d9:0a:a9:a1:3c:4c:c6:01:23:48:82:fb:c7:ed:0e:
d2:6a:16:bb:2f:68:70:ef:68:38:48:3d:2c:76:55:
3b:3f:09:dd:c2:ee:5d:d3:8f:d7:f9:b6:f7:f4:bc:
7a:ae:b3:ad:dd:cb:83:ef:bf:b5:41:b8:5c:a5:79:
f3:3f:75:d4:68:8c:13:a3:b7:16:1c:77:88:8d:5c:
4a:de:38:0f:36:cf:4e:80:31:78:fd:d0:82:d2:c2:
8a:f9:64:af:be:98:d4:8c:0c:c0:22:42:4a:3e:50:
27:2d:e2:10:09:e1:e6:c6:52:39:64:8d:af:77:c3:
74:48:8d:b6:25:23:fa:d8:9c:01:57:ce:20:cd:23:
b4:f2:a4:11:92:15:29:99:3c:b7:da:87:f0:1f:5e:
ba:ca:5b:46:c5:03:83:9d:4a:af:70:95:4d:d9:3c:
2a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:02:12:3C:3A:5A:1B:78:66:65:FD:95:F9:AD:1F:21:07:63:2C:F6
X509v3 Authority Key Identifier:
keyid:3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/swISPDpaG3hmZf2V-a0fIQdjLPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.208.0/24
185.185.211.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:e4:2b:e5:0f:57:b8:90:30:6f:8a:77:d4:76:a3:b6:9d:b6:
7a:5c:70:c9:ad:01:a4:0d:c5:45:e6:4f:f3:32:54:98:37:c9:
e4:ea:22:04:2b:97:18:99:fa:b0:ea:63:68:1a:c2:41:77:ef:
0b:0f:1e:a0:f4:a8:cc:25:81:d2:28:6a:ce:f0:38:ae:67:46:
86:5f:f1:2d:ca:e0:f6:e3:4a:81:91:2a:6c:d9:10:4c:88:33:
8d:0e:60:f4:77:4b:82:7d:15:0f:fe:ab:b0:9a:b7:1a:76:e4:
4e:73:28:78:fa:eb:d6:ca:07:a0:ab:af:89:93:14:e0:f1:b6:
00:0c:f6:c9:e9:b5:2a:b8:c6:6a:32:23:47:69:df:b4:07:db:
64:81:a2:1b:8c:dc:e1:d8:a7:ab:33:ee:a1:3d:66:db:e5:36:
dd:71:f3:95:df:2e:b6:2a:0d:e5:cb:70:d1:90:3a:7b:fa:58:
47:3e:fc:af:fc:4f:e9:b3:97:42:28:70:9f:c0:27:79:b8:b7:
b9:4b:2f:ca:e8:82:88:3f:16:95:3c:2b:63:f7:f2:5f:ae:7e:
98:d0:d0:f4:fd:66:58:5a:b7:32:74:80:55:85:8c:01:56:29:
b0:9b:19:15:94:6d:96:0e:98:89:a2:09:e4:45:73:9b:b7:fd:
8f:02:74:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:38 2024 by rpki-client on console-ams.rpki-client.org