Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/i0TEP7SWyZDu9MUacwTVKXa1u3k.roa
File: i0TEP7SWyZDu9MUacwTVKXa1u3k.roa (raw, json)
Hash identifier: 4oAvuptNO8YCpCuv1InHp7fn4vv9VBqZlZ3VoR/c6vI=
Subject key identifier: 8B:44:C4:3F:B4:96:C9:90:EE:F4:C5:1A:73:04:D5:29:76:B5:BB:79
Certificate issuer: /CN=9e9e6887ea7572a6411306c87b0cc089397a6354
Certificate serial: 03FDA3C4
Authority key identifier: 9E:9E:68:87:EA:75:72:A6:41:13:06:C8:7B:0C:C0:89:39:7A:63:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/np5oh-p1cqZBEwbIewzAiTl6Y1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/i0TEP7SWyZDu9MUacwTVKXa1u3k.roa
Signing time: Tue 31 May 2022 06:58:13 +0000
ROA not before: Tue 31 May 2022 06:58:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213145
IP address blocks: 188.125.175.0/24 maxlen: 24
185.117.99.0/24 maxlen: 24
185.117.123.0/24 maxlen: 24
185.117.120.0/22 maxlen: 24
185.117.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66954180 (0x3fda3c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e9e6887ea7572a6411306c87b0cc089397a6354
Validity
Not Before: May 31 06:58:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b44c43fb496c990eef4c51a7304d52976b5bb79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:06:47:06:a8:8c:ab:82:51:1d:df:00:d3:0c:
6c:c3:a6:ad:47:e2:1d:1d:9f:1d:9e:56:6f:fb:8d:
3a:64:2e:2b:cd:b6:83:92:b3:60:ac:75:86:8c:4c:
9b:7a:8b:4a:05:45:b0:e4:dc:b4:56:e9:04:67:c8:
3c:40:51:c5:da:c7:84:23:55:e3:94:fc:54:07:12:
fd:63:12:67:39:ac:56:cf:8d:b6:c3:ff:58:5d:44:
6c:6c:ec:e0:ce:74:fa:bb:b4:8d:4c:66:93:6d:74:
0c:a0:19:5f:94:9f:2f:2d:44:24:f0:c8:74:7a:f2:
19:2a:89:a8:fd:cb:28:b3:d3:a0:d2:43:c1:ac:23:
49:05:2c:db:fe:98:a0:1b:1f:26:c4:f5:9f:2d:52:
0c:ba:77:e6:74:be:1f:4d:16:d7:00:20:0b:66:4a:
1d:8e:d7:02:9f:d3:66:83:b7:fd:aa:ee:7a:2b:42:
44:3e:83:a6:af:a0:c7:bb:bb:93:5a:1d:c2:94:17:
c1:10:af:9a:d3:ee:ea:e9:c8:77:ab:a6:55:54:70:
0e:47:a1:96:6c:29:00:db:5f:9c:20:f6:74:74:d8:
68:83:0f:54:f2:27:98:7c:3b:5a:9d:05:8e:e7:09:
68:cf:32:d8:c6:0f:fc:06:57:3e:a3:cc:35:4b:95:
a2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:44:C4:3F:B4:96:C9:90:EE:F4:C5:1A:73:04:D5:29:76:B5:BB:79
X509v3 Authority Key Identifier:
keyid:9E:9E:68:87:EA:75:72:A6:41:13:06:C8:7B:0C:C0:89:39:7A:63:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/np5oh-p1cqZBEwbIewzAiTl6Y1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/i0TEP7SWyZDu9MUacwTVKXa1u3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/np5oh-p1cqZBEwbIewzAiTl6Y1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.99.0/24
185.117.120.0/22
188.125.175.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:f7:63:a8:7e:94:f2:fa:fe:07:e9:06:b0:6d:52:f7:f1:ef:
4a:65:cd:8c:14:78:9e:a0:7b:7c:49:63:49:1b:b7:7d:bf:3e:
be:d4:7b:81:5a:c0:c7:62:0e:1e:4d:b1:3e:44:c6:02:80:cd:
8a:62:a7:77:b0:cb:6a:ed:32:8f:c8:20:00:94:3c:ba:ef:78:
21:d4:39:88:0e:69:0e:0e:ff:c4:78:d1:cf:98:f4:1d:20:fc:
62:e7:50:81:47:9e:36:41:66:44:c2:d2:33:e5:68:ea:15:ae:
62:ca:d0:47:95:34:c3:90:23:b3:4d:86:8f:d0:54:cd:cb:3a:
82:8d:9b:d6:07:96:48:63:78:38:36:74:08:10:27:1a:1a:df:
5e:14:9d:89:3a:3b:f7:b1:9c:e0:2d:49:70:1d:a4:08:73:01:
2d:b5:90:5a:6c:30:df:c3:2c:b1:6e:9e:64:9e:27:3a:15:db:
ff:f4:17:36:3f:02:d6:c1:0c:c3:07:ca:73:db:fa:97:b1:af:
68:60:33:f6:bb:98:ad:36:2d:4c:70:6a:f4:fb:35:9b:86:d6:
3a:f2:f1:03:23:9a:9b:fa:2f:49:94:00:23:ac:52:e7:e6:ef:
14:57:ec:8f:f2:c9:81:f1:da:3f:b6:39:24:74:9d:bf:a6:4c:
54:fb:b0:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:01 2024 by rpki-client on console-fra.rpki-client.org