Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/rRxEhXGs5aFvCJDfkSJ34FFs_vA.roa
File: rRxEhXGs5aFvCJDfkSJ34FFs_vA.roa (raw, json)
Hash identifier: RByb2t0ohjg0mw+2hDQoj1gnOcaO07URDTc+ipr/gpA=
Subject key identifier: AD:1C:44:85:71:AC:E5:A1:6F:08:90:DF:91:22:77:E0:51:6C:FE:F0
Certificate issuer: /CN=9e9e6887ea7572a6411306c87b0cc089397a6354
Certificate serial: 040A11E8
Authority key identifier: 9E:9E:68:87:EA:75:72:A6:41:13:06:C8:7B:0C:C0:89:39:7A:63:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/np5oh-p1cqZBEwbIewzAiTl6Y1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/rRxEhXGs5aFvCJDfkSJ34FFs_vA.roa
Signing time: Wed 01 Jun 2022 12:02:20 +0000
ROA not before: Wed 01 Jun 2022 12:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213145
IP address blocks: 188.125.175.0/24 maxlen: 24
188.125.173.0/24 maxlen: 24
185.117.99.0/24 maxlen: 24
185.117.123.0/24 maxlen: 24
185.117.120.0/22 maxlen: 24
185.117.122.0/24 maxlen: 24
188.125.172.0/24 maxlen: 24
188.125.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67768808 (0x40a11e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e9e6887ea7572a6411306c87b0cc089397a6354
Validity
Not Before: Jun 1 12:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad1c448571ace5a16f0890df912277e0516cfef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ff:c5:2a:2a:d7:02:37:0e:ba:69:7a:83:1b:
3f:4e:c8:e9:f2:a3:4c:7b:42:49:3b:22:fc:ff:51:
25:e5:c1:82:aa:bf:b3:6e:b9:d3:e6:95:b8:4b:d6:
08:5c:d0:fd:9e:43:33:b0:63:65:4e:b0:93:59:dc:
a1:f9:82:bc:a9:81:c5:a8:89:32:d8:1e:2c:c9:7e:
88:c7:48:27:d9:09:d5:fc:8f:d8:50:8b:f3:0d:47:
0b:7c:1f:c9:92:96:0d:bc:de:15:7f:65:31:a3:75:
13:c5:03:fb:01:2c:28:d1:50:c0:f2:17:68:9c:5b:
f8:22:1f:70:f0:3a:d7:0e:55:98:62:bf:aa:9a:66:
46:99:3e:81:46:04:d5:d8:7e:59:ad:c6:b3:9b:fe:
d1:e8:9c:e2:d4:91:47:bb:ae:c9:fa:c6:9e:ac:8d:
10:a7:9a:35:2f:4f:c4:e5:b2:81:62:4e:1d:05:f3:
40:27:bc:bf:0b:7a:e3:66:4b:9d:ab:28:e1:d1:d2:
bc:c7:bb:f1:e0:f9:d1:f5:ec:03:9c:8c:a3:47:26:
4b:34:2e:1a:c8:69:df:d5:15:a0:97:ca:98:9e:b6:
f1:07:95:d1:aa:9d:24:a6:3f:e2:b3:ce:76:bb:1c:
85:a0:17:2e:cf:d3:04:8d:7c:f2:27:1f:78:f0:33:
83:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:1C:44:85:71:AC:E5:A1:6F:08:90:DF:91:22:77:E0:51:6C:FE:F0
X509v3 Authority Key Identifier:
keyid:9E:9E:68:87:EA:75:72:A6:41:13:06:C8:7B:0C:C0:89:39:7A:63:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/np5oh-p1cqZBEwbIewzAiTl6Y1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/rRxEhXGs5aFvCJDfkSJ34FFs_vA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/np5oh-p1cqZBEwbIewzAiTl6Y1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.99.0/24
185.117.120.0/22
188.125.171.0-188.125.173.255
188.125.175.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:b8:43:3e:b9:4f:60:9e:37:fa:13:c3:62:39:4a:01:68:c9:
2f:f0:52:32:31:9d:0f:27:f0:2a:99:ec:b8:f5:7a:f3:3d:69:
e6:7d:27:eb:b9:95:a3:0b:12:9d:fb:08:7a:ee:da:fc:51:ab:
de:cc:84:ad:58:19:29:cb:83:05:8d:67:de:d2:bf:71:4e:51:
07:9c:d4:b0:60:1a:f3:31:cb:d0:31:d9:23:60:9f:29:76:51:
be:cb:63:78:2d:2d:9a:c5:25:b2:81:76:c9:fe:f6:89:d7:4f:
b1:d4:4d:d6:b3:b4:a4:a9:12:0a:3c:1a:c8:19:f7:85:ae:96:
80:68:92:81:94:87:08:9b:58:7f:82:c8:b5:57:dc:79:7c:f5:
f1:52:55:d0:3e:80:1b:e6:d2:5b:93:65:20:6d:0f:18:cb:4d:
a3:c8:0d:57:e8:1e:db:74:20:b7:c9:26:47:4f:2b:5b:6c:fd:
e1:6f:3c:ab:b2:e4:0a:09:43:90:53:47:06:5f:0d:9e:38:43:
76:6c:d0:c2:91:51:2a:98:0f:aa:fe:93:19:6e:12:fb:28:92:
5f:65:6c:15:10:5e:e8:f7:d4:ee:ed:aa:6c:4e:a5:be:f1:10:
5a:b2:4d:45:ec:ad:01:86:40:51:93:ca:32:a0:13:17:e6:58:
93:7c:75:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:01 2024 by rpki-client on console-fra.rpki-client.org