Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/WDb7dwDma9C_prW5AYBXMvNZjhM.roa
File: WDb7dwDma9C_prW5AYBXMvNZjhM.roa (raw, json)
Hash identifier: 37KCX6xvtYC0kfxgjSImYkCkpZmsFwjBibunV+vMOm4=
Subject key identifier: 58:36:FB:77:00:E6:6B:D0:BF:A6:B5:B9:01:80:57:32:F3:59:8E:13
Certificate issuer: /CN=e168e36ba577ed47e6928729691991e4e7f235da
Certificate serial: 018312E38474CA6F2B2A2427F6B4387F3F0D
Authority key identifier: E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/WDb7dwDma9C_prW5AYBXMvNZjhM.roa
Signing time: Tue 06 Sep 2022 13:00:43 +0000
ROA not before: Tue 06 Sep 2022 13:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205655
IP address blocks: 185.211.11.0/24 maxlen: 24
2a0b:60c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:12:e3:84:74:ca:6f:2b:2a:24:27:f6:b4:38:7f:3f:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e168e36ba577ed47e6928729691991e4e7f235da
Validity
Not Before: Sep 6 13:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5836fb7700e66bd0bfa6b5b901805732f3598e13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b8:72:e4:0f:b8:37:da:29:62:74:d8:89:f5:
1c:5e:7b:e0:a5:40:88:82:8e:a7:8b:de:f9:dc:4f:
bd:72:6e:e0:db:14:28:c2:87:ae:40:1c:78:53:86:
af:77:c6:17:fe:e6:27:0c:09:ca:b4:6f:f1:46:d3:
8e:6d:c2:97:b0:89:ec:23:63:e4:53:c6:71:37:99:
e1:91:39:de:53:92:06:87:f3:21:d8:f5:22:79:a7:
80:1c:16:8c:a2:a6:b4:b7:b9:55:a3:5d:03:1a:68:
33:20:64:f9:d1:d2:c1:8a:16:10:a9:e5:63:d1:d7:
c1:ae:74:dd:ee:d5:8d:ec:32:14:18:41:61:b5:bf:
90:42:fa:a2:a3:1d:8a:82:cb:62:b7:87:46:ba:38:
2f:c9:17:99:fb:67:c1:d2:3d:e7:22:d1:f5:f6:a7:
cc:01:d8:fd:2b:b3:bc:87:91:8c:9d:f6:d1:9e:c4:
57:d3:fd:85:c1:b0:ea:31:54:31:f2:30:e2:4a:32:
e1:0a:00:de:b2:8d:39:3f:da:8e:0d:27:85:c3:ba:
5f:ac:7e:b3:74:31:c7:26:ab:13:86:ee:f2:78:1e:
fc:c4:f9:f2:66:97:9d:d8:c5:d2:86:21:e9:c7:2f:
47:9b:3d:fe:85:90:8d:79:64:d1:4e:62:4e:fc:03:
33:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:36:FB:77:00:E6:6B:D0:BF:A6:B5:B9:01:80:57:32:F3:59:8E:13
X509v3 Authority Key Identifier:
keyid:E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/WDb7dwDma9C_prW5AYBXMvNZjhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/4Wjja6V37UfmkocpaRmR5OfyNdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.11.0/24
IPv6:
2a0b:60c0::/29
Signature Algorithm: sha256WithRSAEncryption
4f:09:52:91:96:bf:a1:f6:91:c3:8c:02:92:05:e2:79:e1:97:
a4:de:0c:12:43:3a:97:0f:3e:65:6e:57:e0:4f:d8:af:e9:d9:
50:13:c0:d0:91:74:0a:51:27:ef:29:84:8b:e2:c7:41:f8:ff:
09:00:65:93:7a:bf:d6:98:02:64:12:bf:3c:36:e0:a6:86:bd:
11:2f:9d:02:b2:55:43:2b:a9:99:bb:67:1f:57:a7:2c:b7:01:
e3:81:5a:0f:6f:89:a5:92:cd:7b:cc:76:78:40:66:ee:78:7f:
f5:4b:15:b2:6e:99:bb:8e:89:0c:70:0d:dc:bb:9d:75:c6:a6:
33:4e:40:9c:2a:14:64:00:7d:24:0e:e9:52:1c:6a:c2:bb:13:
14:74:7d:73:cb:97:8f:59:99:17:ef:8e:e6:e1:cf:bd:69:cd:
98:68:d4:90:f3:0e:03:bc:76:9a:89:3c:1d:c7:59:ed:44:70:
d1:28:73:52:35:88:c1:6e:de:9e:ac:ec:1a:88:66:bf:10:58:
42:d5:6c:cb:62:d8:99:58:07:47:25:ae:3d:7a:d9:88:21:36:
93:a7:6b:32:d8:44:8a:74:4a:2f:aa:4c:47:e2:4d:6e:87:95:
cd:f9:6e:21:e6:46:d3:bb:ad:f7:10:bc:90:c5:4b:59:3e:21:
c0:a9:5f:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:20 2024 by rpki-client on console-fra.rpki-client.org